Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json)
Hash identifier: O5lS1y5pRFTMVDIolkRvyS0KBFSbawPuXFNr+V1O+pA=
Subject key identifier: 75:45:2D:C0:6E:CD:A0:E4:2A:05:A9:52:0F:A3:87:85:6F:85:53:EE
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 019DB38FB2AD13C1C4FB4B0C94352FDC8312
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
Manifest number: 18D6
Signing time: Wed 22 Apr 2026 05:00:32 +0000
Manifest this update: Wed 22 Apr 2026 05:00:32 +0000
Manifest next update: Thu 23 Apr 2026 05:00:32 +0000
Files and hashes: 1: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: YIRoJcgGI21wrMAYHvI0sFlEllgtGAOmuJtpe67zYmA=)
2: LPjmn9PolMemZlvU3gzZjHmr9fw.roa (hash: hJNmZuxOH01P3sPwMJ+PO3mkfbGrlehVtU6QgCrjEhc=)
3: POj4_0IjkoRQHzWCydUSaXOI1sk.roa (hash: OXXoe1i5VmrRsJ4ZrhX2i51+dmFyvJThd+6tYO7luGY=)
4: ZcmPuUcJ-uWadMEb7d7DH0U6Sng.roa (hash: VM0I5pmXHbVnNBlqkwc8P5AQG5ppgz3fNLG8j2PWjI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b3:8f:b2:ad:13:c1:c4:fb:4b:0c:94:35:2f:dc:83:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: Apr 22 05:00:32 2026 GMT
Not After : Apr 23 05:00:32 2026 GMT
Subject: CN=75452dc06ecda0e42a05a9520fa387856f8553ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fd:cf:b1:d7:7d:43:d8:d0:d6:31:6a:e6:7e:
92:dc:b3:d8:f9:a3:f1:d5:9b:59:b8:e9:60:ae:ac:
29:a5:db:6a:12:62:62:24:06:3c:c2:c7:7f:6c:6d:
65:92:03:f4:e4:8e:2c:88:65:94:52:c1:cd:01:06:
eb:28:8f:65:b5:13:15:d1:d0:b8:f1:8c:d1:0f:56:
f5:2a:98:94:d9:1e:95:75:45:dc:5c:22:d7:8e:1f:
fb:9d:3e:17:e1:d9:55:aa:4f:1e:5a:6c:57:1d:68:
bf:70:f0:1f:1b:9b:30:46:88:50:33:4a:a8:2a:67:
be:13:06:c3:21:bf:fc:60:94:23:eb:97:74:8c:2b:
9c:be:94:ad:84:74:e7:d5:08:fb:2b:d1:7a:2d:24:
ec:3e:aa:8a:35:38:93:c3:35:be:68:7c:c8:86:44:
53:f1:cb:6f:73:3c:f9:b5:71:bb:ae:d2:b1:f3:82:
57:db:ca:99:fe:33:6c:6a:b9:99:4f:17:0f:e0:72:
71:a3:21:ea:62:16:87:95:ec:3e:78:4e:88:97:2a:
9f:9b:2b:93:ae:27:e2:c7:f2:e3:1b:42:0e:7a:16:
2c:91:7a:95:5f:e7:5e:bf:9c:03:ec:20:39:4f:b1:
f5:a6:61:aa:db:1c:bf:3a:10:68:fd:48:b2:3f:4f:
2b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:45:2D:C0:6E:CD:A0:E4:2A:05:A9:52:0F:A3:87:85:6F:85:53:EE
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:27:dc:4a:dd:87:6f:7e:d6:e4:4d:9d:ca:ca:3a:e8:dd:54:
77:45:0a:b6:59:3c:c7:ca:78:7a:1d:2a:7f:2f:f6:f5:9e:9d:
58:01:0f:39:88:06:e4:43:41:00:c0:bb:e0:fd:21:68:61:ad:
b1:87:23:15:87:64:b4:c6:26:da:cc:87:87:b6:91:b6:b4:d9:
05:0e:f4:12:0b:d3:c3:da:e1:64:a2:fd:2d:23:49:9c:60:dd:
28:ed:38:32:15:fc:e6:4f:6c:23:ec:43:e3:1f:a2:27:0a:fe:
bc:96:0a:f6:37:cc:d5:04:bb:12:61:8b:dd:3d:bc:cb:e2:e1:
41:35:68:52:1e:b1:22:04:77:1e:60:c0:7d:71:99:15:af:36:
e5:9c:b0:08:65:ad:4c:f2:ad:f2:e1:e1:96:7d:44:34:54:c7:
ba:c3:7c:bb:73:9a:6f:34:2b:2b:b2:e6:de:a1:08:0b:92:2c:
d4:54:32:3a:34:83:a5:12:67:ed:34:92:a0:e3:cb:17:e9:89:
87:c9:f6:1e:df:1d:bd:ef:bf:f9:fa:af:0c:f8:53:c8:b1:88:
f2:86:b5:53:7c:fa:52:9c:f3:db:ae:00:b4:29:58:26:e3:48:
e3:bb:92:68:6c:25:47:61:5a:03:42:7c:e1:a0:17:8c:54:92:
f6:0f:5d:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2zj7KtE8HE+0sMlDUv3IMSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNTE0MDk4YTVhOTczNmNkYTQzMDNlMDQ5NWU5NDY1MjM5
MGFhOTEwHhcNMjYwNDIyMDUwMDMyWhcNMjYwNDIzMDUwMDMyWjAzMTEwLwYDVQQD
Eyg3NTQ1MmRjMDZlY2RhMGU0MmEwNWE5NTIwZmEzODc4NTZmODU1M2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyf3Psdd9Q9jQ1jFq5n6S3LPY+aPx
1ZtZuOlgrqwppdtqEmJiJAY8wsd/bG1lkgP05I4siGWUUsHNAQbrKI9ltRMV0dC4
8YzRD1b1KpiU2R6VdUXcXCLXjh/7nT4X4dlVqk8eWmxXHWi/cPAfG5swRohQM0qo
Kme+EwbDIb/8YJQj65d0jCucvpSthHTn1Qj7K9F6LSTsPqqKNTiTwzW+aHzIhkRT
8ctvczz5tXG7rtKx84JX28qZ/jNsarmZTxcP4HJxoyHqYhaHlew+eE6IlyqfmyuT
rifix/LjG0IOehYskXqVX+dev5wD7CA5T7H1pmGq2xy/OhBo/UiyP08r8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHVFLcBuzaDkKgWpUg+jh4VvhVPuMB8GA1UdIwQY
MBaAFB5RQJilqXNs2kMD4ElelGUjkKqRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8zNWRmY2ItZDkyZC00OGZlLTlkYWQt
ODU0MzgxNjg2YzdiLzEvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8zNWRmY2ItZDkyZC00OGZlLTlkYWQtODU0MzgxNjg2Yzdi
LzEvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPifcSt2H
b37W5E2dyso66N1Ud0UKtlk8x8p4eh0qfy/29Z6dWAEPOYgG5ENBAMC74P0haGGt
sYcjFYdktMYm2syHh7aRtrTZBQ70EgvTw9rhZKL9LSNJnGDdKO04MhX85k9sI+xD
4x+iJwr+vJYK9jfM1QS7EmGL3T28y+LhQTVoUh6xIgR3HmDAfXGZFa825ZywCGWt
TPKt8uHhln1ENFTHusN8u3OabzQrK7Lm3qEIC5Is1FQyOjSDpRJn7TSSoOPLF+mJ
h8n2Ht8dve+/+fqvDPhTyLGI8oa1U3z6Upzz264AtClYJuNI47uSaGwlR2FaA0J8
4aAXjFSS9g9dhg==
-----END CERTIFICATE-----
Generated at Wed Apr 22 11:28:01 2026 by rpki-client