Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json)
Hash identifier: +aknKm1wNhzaYgXVUv0kc1bAstq8hYAL2KKU/LWd9Ec=
Subject key identifier: 7B:67:3E:E5:5C:9A:D2:31:60:0E:FE:8A:05:93:0E:A4:E7:B8:7C:FF
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 019E9D3C9229A876D17AB3E80C1A8C8F2C4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
Manifest number: 194F
Signing time: Sat 06 Jun 2026 14:00:52 +0000
Manifest this update: Sat 06 Jun 2026 14:00:52 +0000
Manifest next update: Sun 07 Jun 2026 14:00:52 +0000
Files and hashes: 1: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: xtinkBDR+yHsC8BCmZUX0Vx+51JMD8J56YPoGVn4/AY=)
2: LPjmn9PolMemZlvU3gzZjHmr9fw.roa (hash: hJNmZuxOH01P3sPwMJ+PO3mkfbGrlehVtU6QgCrjEhc=)
3: POj4_0IjkoRQHzWCydUSaXOI1sk.roa (hash: OXXoe1i5VmrRsJ4ZrhX2i51+dmFyvJThd+6tYO7luGY=)
4: ZcmPuUcJ-uWadMEb7d7DH0U6Sng.roa (hash: VM0I5pmXHbVnNBlqkwc8P5AQG5ppgz3fNLG8j2PWjI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9d:3c:92:29:a8:76:d1:7a:b3:e8:0c:1a:8c:8f:2c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: Jun 6 14:00:52 2026 GMT
Not After : Jun 7 14:00:52 2026 GMT
Subject: CN=7b673ee55c9ad231600efe8a05930ea4e7b87cff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:04:b2:ff:fc:57:a2:fb:29:b8:e8:0e:37:
16:69:20:43:12:cb:83:2e:d3:63:69:89:3b:04:6c:
47:87:85:22:b8:c8:86:54:d8:1b:80:6e:d7:5e:61:
3b:15:fc:73:34:f9:3a:90:31:9b:2d:72:e7:e6:d2:
d1:78:c4:23:9f:a4:36:cc:1c:39:3a:48:3a:bf:d0:
35:42:ad:c0:10:00:42:5a:e5:0a:fe:38:16:67:3a:
bf:99:01:48:7d:30:fd:0c:a7:b0:e7:63:d0:e5:8d:
23:f4:b6:b9:7b:ec:70:1e:ed:76:d7:a7:8a:c3:35:
d4:6e:0d:2a:8c:82:98:f1:c4:58:57:3c:c4:3e:ad:
69:07:3b:50:ee:5a:cb:4a:b6:32:22:8a:98:b4:09:
d0:0d:aa:e5:8e:53:fc:48:fe:e9:61:42:b1:c4:42:
df:ef:ed:bc:be:48:f9:4e:b3:d5:04:a0:f4:0e:8b:
57:d3:a5:ea:e0:69:a8:01:44:aa:b1:87:f1:9c:dd:
cf:50:2b:3d:bb:59:98:33:86:c8:dd:fd:c4:06:ec:
32:04:0b:ce:19:29:e6:f3:ac:db:08:02:69:e4:c7:
98:08:a3:5d:32:d9:06:1a:09:4b:06:43:58:d2:bc:
9d:ba:43:b2:d6:18:b1:f4:9a:26:91:0c:fd:81:36:
8e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:67:3E:E5:5C:9A:D2:31:60:0E:FE:8A:05:93:0E:A4:E7:B8:7C:FF
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:52:ad:7c:37:53:12:a2:2e:18:6f:ac:30:ee:48:82:b5:cf:
e0:8f:4f:1e:0c:01:53:69:61:68:ad:ca:be:2b:36:0f:bc:92:
85:71:f1:78:d8:7b:a9:65:4a:e8:15:0f:3f:80:58:d5:1e:41:
42:cc:22:c9:1d:24:b2:85:1c:05:3a:50:9a:f0:d1:bb:65:db:
bd:38:63:7e:1c:fa:64:17:5c:32:06:18:b4:fe:c1:24:1d:2e:
5b:d8:94:64:56:7e:2d:8a:f9:0f:9a:df:90:c7:9f:52:2b:c3:
49:22:f1:c5:ea:c6:ab:f8:5c:62:d1:79:ec:fe:09:1e:c6:dd:
bd:ee:af:bc:15:ac:e7:dd:6d:80:ef:91:e8:72:de:51:80:ea:
cc:b9:2a:40:9c:05:f7:b0:a2:ec:6e:e6:15:32:e0:4c:3a:20:
f9:a3:26:78:ea:83:11:0c:f3:dd:3a:4d:d8:57:c0:e0:dd:b7:
1e:11:11:b2:2a:6c:04:b7:ee:9c:b0:bd:e4:f1:a0:32:b8:b0:
2a:27:4d:fc:d5:46:91:95:41:4f:4d:a0:da:55:92:97:8f:c8:
b6:a1:64:44:79:b2:b5:13:64:9e:a9:e0:64:84:fe:42:31:30:
e7:6f:bc:bc:10:43:3b:0d:e8:60:a7:a3:d1:19:4f:23:88:e7:
ed:ee:d2:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 20:34:41 2026 by rpki-client