Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: vcg9MnVffcP8sTSxvU9M2nc0PmhYJ1GlXmB2GeMOsNM=
Subject key identifier: 64:E1:8A:F9:78:86:D0:1E:3C:44:F4:26:F2:E5:66:89:01:FB:EC:5D
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019EA9098FD1551A66A16D434E1A88BC10D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0D0F
Signing time: Mon 08 Jun 2026 21:00:36 +0000
Manifest this update: Mon 08 Jun 2026 21:00:36 +0000
Manifest next update: Tue 09 Jun 2026 21:00:36 +0000
Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: subuA+1gjOm9u711QtCHGD1paHdQiXNy/1j2layWn9A=)
2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 19:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a9:09:8f:d1:55:1a:66:a1:6d:43:4e:1a:88:bc:10:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Jun 8 21:00:36 2026 GMT
Not After : Jun 9 21:00:36 2026 GMT
Subject: CN=64e18af97886d01e3c44f426f2e5668901fbec5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:35:58:0d:37:fb:55:b3:3e:3e:de:a0:40:d1:
b0:bf:3c:5c:93:e3:04:5b:7c:0e:d2:ee:1a:51:17:
41:5f:11:c2:eb:41:e0:3d:17:17:89:1d:48:f6:e8:
16:ed:fb:89:31:bc:55:ed:cc:d6:97:d1:53:5c:0b:
c8:a4:54:2d:00:8e:56:26:53:f0:2e:e6:d4:a2:5e:
77:ec:3a:a2:1e:cb:52:fa:30:86:08:5f:ee:0b:38:
c8:46:9c:9a:a4:23:79:c0:d3:d2:88:cd:03:23:fe:
5f:86:7d:df:cf:9f:02:8c:fb:6a:34:31:07:d6:b4:
dd:39:19:3d:85:08:2b:45:79:3b:da:14:ad:99:74:
fa:4c:cf:d5:03:75:4a:26:98:55:5c:37:f2:a7:a9:
d3:09:e6:69:b0:06:55:2a:9d:23:07:5d:6c:44:f8:
ea:f9:57:10:d6:18:4d:7d:cf:bf:e9:45:e6:60:cf:
41:f7:d8:25:5c:1e:65:41:d7:8d:06:74:1a:83:27:
ba:73:03:55:24:82:01:17:8d:af:d7:cd:de:47:1d:
74:62:80:93:7a:82:ab:c8:fe:1a:29:fa:2c:df:5c:
a2:f7:df:45:9f:e7:f4:98:2e:94:10:a1:36:38:3f:
d3:96:82:f6:e6:7e:b5:bd:47:75:c3:16:57:6a:24:
bb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E1:8A:F9:78:86:D0:1E:3C:44:F4:26:F2:E5:66:89:01:FB:EC:5D
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:10:2a:d1:19:be:02:a0:cc:15:97:da:98:b6:44:08:1c:b2:
9f:a6:45:c7:c1:61:f1:1b:09:02:f8:19:9a:f7:b4:8d:cc:21:
b9:6f:33:00:b2:ff:3c:94:ea:9e:e3:49:b6:4f:46:bc:d3:a9:
85:17:66:00:f9:13:3d:78:4f:59:5d:c0:44:f1:f4:f0:a5:01:
23:b9:65:29:ed:26:14:82:de:81:06:8b:e9:36:8d:d2:4a:4a:
f9:7a:c7:f9:9b:92:ae:75:64:fa:d1:9e:9e:47:9c:9f:fd:d1:
5a:b7:a3:7e:91:76:ff:77:a5:bc:82:52:7f:be:73:be:d0:0f:
cb:57:28:b4:75:19:f0:69:90:03:99:c1:b6:84:c4:9a:91:fd:
e0:21:4e:b3:14:0b:e2:a3:bd:c7:86:1b:2e:c9:f4:80:4a:8f:
94:e2:0f:52:45:86:b1:7c:5e:44:f9:1a:8c:16:df:64:c7:8c:
f9:46:86:61:72:d9:1b:bf:d8:7b:1d:49:86:96:67:33:98:3d:
b0:10:21:61:c9:d6:9c:44:ae:88:b5:bc:60:7f:24:3a:81:bb:
1d:d4:0a:86:1c:3f:4c:71:2c:dd:9c:32:95:69:59:65:ed:8e:
d4:1c:27:a5:6d:71:cd:31:32:35:03:34:d2:19:1c:96:db:94:
c6:b6:7f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 9 03:27:30 2026 by rpki-client