Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: N2fn5VeFRW5dya48h85Mk3l5itrhQkLHh+UFEWAZ7zE=
Subject key identifier: 32:CC:FA:39:70:55:5E:28:4B:E8:76:B5:70:66:9A:A4:52:EC:B5:15
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 019D1E388A102E285D2360145A0EDDB0FFC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 0276
Signing time: Tue 24 Mar 2026 05:01:54 +0000
Manifest this update: Tue 24 Mar 2026 05:01:54 +0000
Manifest next update: Wed 25 Mar 2026 05:01:54 +0000
Files and hashes: 1: F6Ed_v2GXlo2fPW9wme1LoJTt5Y.roa (hash: PVB5gLKN9XpK2cpVIIGfT9xr8RhREdDb3biV7KQ2JYE=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: +O5T48HMm8JT1/1i+0sYmf0NPxacy2UefqtkepQ5GbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 25 Mar 2026 05:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1e:38:8a:10:2e:28:5d:23:60:14:5a:0e:dd:b0:ff:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: Mar 24 05:01:54 2026 GMT
Not After : Mar 25 05:01:54 2026 GMT
Subject: CN=32ccfa3970555e284be876b570669aa452ecb515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:94:38:0a:28:31:ec:1b:20:10:7c:86:01:71:
21:47:da:be:6c:9f:d9:67:29:82:bf:4b:3a:0c:e0:
7d:f0:2a:17:92:a0:17:57:5b:4b:09:7e:5c:16:ab:
0c:81:94:6c:e1:fd:a5:66:4e:cf:09:fe:0c:45:ba:
2d:7d:03:51:b5:cc:5a:f4:20:7b:c2:56:26:94:62:
18:ce:25:09:72:0d:60:c2:74:13:ff:99:9b:16:38:
e2:c1:7a:53:05:81:62:34:51:6b:9c:0e:49:d1:11:
1f:e2:68:7b:c8:e3:c7:21:67:96:32:8d:b7:43:ba:
cf:97:fa:fd:99:73:fb:d5:1c:30:cb:64:8b:03:be:
b4:7a:3e:81:88:7f:61:a1:e5:41:4a:00:17:5b:2e:
a8:fc:1b:8f:02:8b:5a:9f:39:11:f7:f7:00:24:26:
1d:90:30:0d:10:26:34:89:d6:ec:19:0d:6b:77:4e:
07:2d:10:3f:84:af:00:a8:a9:ad:31:00:35:16:61:
50:28:60:11:5d:a8:cc:a6:d3:7b:65:4f:5d:1e:a7:
e4:c2:04:48:bf:cd:8c:1d:7d:d2:78:96:62:e3:70:
f0:45:53:e1:f0:27:f9:b7:9e:fb:3b:87:8f:15:68:
78:0c:fc:82:bf:26:d7:94:08:b9:79:fc:5a:b0:fc:
09:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CC:FA:39:70:55:5E:28:4B:E8:76:B5:70:66:9A:A4:52:EC:B5:15
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:45:0c:22:21:1e:eb:16:2c:1b:e4:54:19:c0:f3:c1:75:08:
27:4a:b3:8f:61:ee:8b:0a:f6:bd:cd:a9:7b:3f:2e:9a:ec:82:
ec:f4:66:b1:6f:60:e0:35:07:26:32:48:55:55:f6:cf:1a:6b:
7a:84:e4:03:50:a3:3a:52:eb:f5:1f:a7:2e:73:7f:35:ed:81:
d5:02:20:a8:db:09:55:b6:c0:12:9f:f7:08:89:da:e0:35:6a:
02:31:44:28:c4:7f:d8:8b:c4:75:dc:77:3b:0a:28:4e:aa:2a:
c5:e0:5c:f1:9d:22:ae:34:1d:ca:62:34:53:32:76:12:3a:84:
ee:6c:de:7a:62:c1:69:5e:8b:99:9e:b0:c9:41:16:7e:18:8f:
39:52:0c:21:53:4b:ff:10:9e:ba:e2:07:e1:cf:c6:22:a7:40:
9c:08:45:cf:60:65:84:24:de:67:37:e3:ec:bb:6f:15:ee:fa:
f8:fc:4b:72:a1:1f:17:0d:4b:7e:28:75:2e:f1:5f:96:8b:df:
da:d0:4d:4d:57:4d:e0:fb:c8:94:8b:df:1a:fd:94:51:01:8a:
c8:40:28:e6:b8:63:5b:77:aa:44:58:64:1e:97:57:5b:68:99:
f4:97:e8:84:00:3a:11:af:8c:7d:2c:8f:00:a2:d3:14:0c:d3:
c3:50:9c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 14:45:26 2026 by rpki-client