Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: G5r4EaABxqdCzEWCr3DvgwMD91v5CLQQPnGRUS0n4mk=
Subject key identifier: 95:81:F3:9E:A9:68:71:3E:71:F5:BE:78:BF:33:1D:C8:44:E0:E2:45
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 019EEFA29A574F9AE47C064DE98D343F23B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 0367
Signing time: Mon 22 Jun 2026 14:01:11 +0000
Manifest this update: Mon 22 Jun 2026 14:01:11 +0000
Manifest next update: Tue 23 Jun 2026 14:01:11 +0000
Files and hashes: 1: F6Ed_v2GXlo2fPW9wme1LoJTt5Y.roa (hash: PVB5gLKN9XpK2cpVIIGfT9xr8RhREdDb3biV7KQ2JYE=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: Bpap3kIQCMeZj7xjCaIHnAH2gtiC8A4VnoMCwIO5gIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 14:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ef:a2:9a:57:4f:9a:e4:7c:06:4d:e9:8d:34:3f:23:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: Jun 22 14:01:11 2026 GMT
Not After : Jun 23 14:01:11 2026 GMT
Subject: CN=9581f39ea968713e71f5be78bf331dc844e0e245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2b:d7:85:51:96:85:cf:6a:f0:51:de:ef:e4:
e1:d6:fa:08:11:22:ab:0c:98:ff:4b:fc:ee:d6:53:
9c:ba:f5:8c:2c:af:ea:9f:90:be:8f:52:f8:be:7c:
b4:a6:ae:14:43:46:00:c2:19:6f:94:f0:3a:b2:4e:
84:e3:a4:88:b7:ec:f7:47:62:62:71:1c:5b:3e:2b:
6b:1e:31:12:ba:81:a6:29:ff:fa:59:5a:87:a1:f4:
82:16:61:fb:13:43:d6:83:d8:ef:c2:fe:27:b3:86:
79:da:b0:52:3f:f1:61:ed:8b:9f:8a:1c:e4:02:3a:
fb:93:99:20:e3:67:66:1e:a1:f6:00:18:25:08:12:
07:39:16:38:73:3f:44:03:0e:10:13:a3:6f:fe:23:
de:03:ed:a9:39:d1:af:ec:6f:39:3d:dc:1d:63:8a:
10:79:27:25:01:8a:85:c4:71:87:27:ec:05:27:ee:
9c:6b:28:3b:c0:c0:9a:e7:c0:d1:81:b7:9d:bc:40:
44:13:92:94:5e:65:82:e3:09:8b:4d:9e:5e:12:99:
f5:dd:59:35:8a:dc:94:c8:99:2f:d4:93:fe:d6:e4:
ac:c6:79:98:02:35:4b:0b:3a:8c:32:13:78:57:75:
68:04:df:cf:b2:b9:3b:8a:9e:40:5b:e1:f6:2a:18:
f1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:81:F3:9E:A9:68:71:3E:71:F5:BE:78:BF:33:1D:C8:44:E0:E2:45
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:45:7a:3b:99:92:71:c0:73:41:50:a8:99:d2:3b:fa:1b:2b:
d6:d1:7d:34:68:dd:d2:c2:cc:7d:58:01:17:b0:44:1e:ce:8e:
59:5d:36:2e:74:35:78:a6:b9:bc:bb:b8:d8:78:cf:9a:3c:0c:
9b:4c:e8:d7:b2:97:c0:df:9e:41:54:3b:c7:8e:c7:05:88:f6:
84:2c:5e:cb:e8:ea:cd:b8:47:d9:02:02:a9:26:9c:e4:54:99:
5e:51:7d:7f:d0:09:dd:69:93:8b:5c:25:be:c7:35:fc:62:8c:
e3:86:01:3a:7a:3d:74:32:67:cc:ee:23:89:8e:59:a1:c9:70:
86:c0:dc:78:0c:cd:9d:d8:3e:4d:88:5e:85:53:cb:e6:2b:a1:
36:35:be:d3:69:db:a4:f2:e9:b4:c4:2a:92:45:8a:5c:92:88:
42:e3:0c:75:de:21:04:cc:53:3e:fb:c2:14:cb:1e:b7:0c:47:
26:7e:33:9d:08:ac:bf:19:cb:cc:fd:e6:4c:9c:24:4e:f9:06:
bc:5b:98:88:00:13:35:a3:ba:2e:53:8a:e0:61:25:fb:8d:56:
49:cb:0e:6c:61:30:a0:bd:d1:53:ca:0f:1b:e7:9c:8e:c3:47:
64:db:26:68:a8:a6:de:7f:d5:d0:dc:0d:b6:d6:74:70:5f:ea:
2f:59:57:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7voppXT5rkfAZN6Y00PyOwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NWIwN2MyODlkZjZiYzljNzYyZGI0MzI5YmEwY2UzYzUy
OWZlY2IwHhcNMjYwNjIyMTQwMTExWhcNMjYwNjIzMTQwMTExWjAzMTEwLwYDVQQD
Eyg5NTgxZjM5ZWE5Njg3MTNlNzFmNWJlNzhiZjMzMWRjODQ0ZTBlMjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuivXhVGWhc9q8FHe7+Th1voIESKr
DJj/S/zu1lOcuvWMLK/qn5C+j1L4vny0pq4UQ0YAwhlvlPA6sk6E46SIt+z3R2Ji
cRxbPitrHjESuoGmKf/6WVqHofSCFmH7E0PWg9jvwv4ns4Z52rBSP/Fh7Yufihzk
Ajr7k5kg42dmHqH2ABglCBIHORY4cz9EAw4QE6Nv/iPeA+2pOdGv7G85PdwdY4oQ
eSclAYqFxHGHJ+wFJ+6cayg7wMCa58DRgbedvEBEE5KUXmWC4wmLTZ5eEpn13Vk1
ityUyJkv1JP+1uSsxnmYAjVLCzqMMhN4V3VoBN/Psrk7ip5AW+H2KhjxDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJWB856paHE+cfW+eL8zHchE4OJFMB8GA1UdIwQY
MBaAFIZbB8KJ32vJx2LbQym6DOPFKf7LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80ZDFhYjYtNDY1Yi00Mjc2LWJjNGEt
MmFmYTMwM2U0OTVkLzEvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80ZDFhYjYtNDY1Yi00Mjc2LWJjNGEtMmFmYTMwM2U0OTVk
LzEvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEUV6O5mS
ccBzQVComdI7+hsr1tF9NGjd0sLMfVgBF7BEHs6OWV02LnQ1eKa5vLu42HjPmjwM
m0zo17KXwN+eQVQ7x47HBYj2hCxey+jqzbhH2QICqSac5FSZXlF9f9AJ3WmTi1wl
vsc1/GKM44YBOno9dDJnzO4jiY5ZoclwhsDceAzNndg+TYhehVPL5iuhNjW+02nb
pPLptMQqkkWKXJKIQuMMdd4hBMxTPvvCFMsetwxHJn4znQisvxnLzP3mTJwkTvkG
vFuYiAATNaO6LlOK4GEl+41WScsObGEwoL3RU8oPG+ecjsNHZNsmaKim3n/V0NwN
ttZ0cF/qL1lXoQ==
-----END CERTIFICATE-----
Generated at Mon Jun 22 23:21:17 2026 by rpki-client