Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: i//N+Y0YqOPW65S32VJL084fv6si7jwbC9qrdrlVm4A=
Subject key identifier: 7A:C3:B8:CC:C7:38:77:24:A0:A9:F7:26:56:C0:48:A7:D3:95:B8:8A
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 019E07E4B8B230E6CAE29DA0E272DC223CFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 02EF
Signing time: Fri 08 May 2026 14:01:30 +0000
Manifest this update: Fri 08 May 2026 14:01:30 +0000
Manifest next update: Sat 09 May 2026 14:01:30 +0000
Files and hashes: 1: F6Ed_v2GXlo2fPW9wme1LoJTt5Y.roa (hash: PVB5gLKN9XpK2cpVIIGfT9xr8RhREdDb3biV7KQ2JYE=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: 98MwkgfCzPFDGABxye3cz8XBk/zv3EZW167YbLpwaY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 May 2026 14:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:07:e4:b8:b2:30:e6:ca:e2:9d:a0:e2:72:dc:22:3c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: May 8 14:01:30 2026 GMT
Not After : May 9 14:01:30 2026 GMT
Subject: CN=7ac3b8ccc7387724a0a9f72656c048a7d395b88a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:53:f8:51:82:00:36:bf:6b:bf:cd:22:ce:54:
3c:1b:08:b8:6f:b6:20:19:d0:9d:72:77:9d:28:01:
cd:39:79:e6:4d:5e:5d:9e:15:61:a6:1e:45:fa:d5:
e4:1f:08:03:19:d6:7f:b6:11:a7:d0:37:c5:24:4e:
76:9b:78:9b:54:0e:5d:fb:9a:0f:a3:d9:d3:d2:17:
03:ad:b3:38:9e:f4:db:85:d6:92:cf:55:0f:ae:29:
f0:be:4d:24:b6:ba:f5:07:6b:0b:8e:aa:af:9c:ed:
cc:2f:5e:c0:5b:70:05:ab:83:31:f4:d2:23:02:39:
0b:e2:01:21:8c:36:7c:9f:24:c8:29:f9:95:29:76:
fc:7f:39:1a:d8:25:a2:36:a7:27:f1:ba:ed:7d:37:
cc:0d:78:9c:21:15:20:3e:19:db:75:f7:3c:2f:a2:
c9:93:f2:bb:d2:6c:8d:a3:39:6c:83:4e:6f:46:fa:
d3:95:ee:44:14:4d:19:75:05:aa:62:d6:32:ee:35:
f6:41:48:0f:32:fa:0f:67:7e:85:8c:db:4e:13:8f:
81:f9:10:cd:9e:56:0e:82:57:e0:23:9b:26:32:0a:
66:fa:87:5f:41:f0:88:cf:d9:ba:a5:16:8a:fb:8b:
80:13:22:98:f8:36:6e:9c:6e:ca:4e:c5:dd:c3:12:
b8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C3:B8:CC:C7:38:77:24:A0:A9:F7:26:56:C0:48:A7:D3:95:B8:8A
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f1:ca:36:ef:d8:57:d8:01:d2:ed:e7:41:74:80:77:33:5d:
9f:aa:9e:d3:63:68:9e:40:7e:fd:28:d9:8a:77:07:c6:2c:7f:
c8:b6:77:28:8a:ac:6b:4a:d1:33:c7:70:07:fe:af:8c:4f:3c:
ee:d8:52:00:8b:c7:8f:2b:aa:e5:a6:33:ec:bd:e9:b2:3d:ad:
ed:38:c3:02:49:31:62:a3:29:14:3b:fa:23:bd:3d:de:e3:ba:
06:23:1c:6d:6a:79:1b:3a:b3:73:61:41:aa:0e:db:55:e7:1f:
3d:99:ee:66:7d:26:86:5d:f9:43:66:6d:72:c2:67:d0:e7:5a:
68:bb:5c:32:92:94:b6:4d:c0:dc:3c:b3:6a:b7:1b:4e:a9:4f:
fa:4b:69:30:95:e5:d6:ff:86:a1:b2:91:40:ad:14:24:3d:f4:
97:39:5f:25:61:10:a2:4b:ef:93:d0:d7:01:e6:d5:0f:ed:48:
e9:41:1c:e3:f9:10:22:d8:1e:fb:03:f4:da:c1:b1:82:31:c4:
a7:9e:ca:cf:25:25:26:6e:14:64:36:91:cf:cd:87:42:c2:eb:
46:eb:d6:7c:2c:86:f7:83:69:0c:1e:f0:59:27:49:de:99:3e:
dd:ef:1f:d9:b0:ef:75:85:cd:27:e1:be:06:dc:6b:21:03:d3:
b6:ff:b1:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 8 20:10:56 2026 by rpki-client