Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
File: hLWkCydKlj5e0-8C6DmcubG7DHs.mft (raw, json)
Hash identifier: 0KAuiDVGCD56oxOGMh0L/eFrKKFhzvJAHYlQAa4D93Q=
Subject key identifier: AC:48:37:EB:93:2A:79:5D:84:D3:7E:6D:1C:A4:CA:CC:2B:10:86:97
Authority key identifier: 84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
Certificate issuer: /CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Certificate serial: 019EB80E9F169D3980865C8993849193AEBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
Manifest number: 1957
Signing time: Thu 11 Jun 2026 19:00:26 +0000
Manifest this update: Thu 11 Jun 2026 19:00:26 +0000
Manifest next update: Fri 12 Jun 2026 19:00:26 +0000
Files and hashes: 1: hLWkCydKlj5e0-8C6DmcubG7DHs.crl (hash: XhZf2XRr9ykE6g1mj9yFXhDoi9nCf1jv/ktl3a20hXw=)
2: heDWIjAtV4Dfu6bhg1J9nZcl5qo.roa (hash: zW/+lZ7RfSWqiEzqmlzW/11hnbmw6v/qc+vi/mY5ysc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0e:9f:16:9d:39:80:86:5c:89:93:84:91:93:ae:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Validity
Not Before: Jun 11 19:00:26 2026 GMT
Not After : Jun 12 19:00:26 2026 GMT
Subject: CN=ac4837eb932a795d84d37e6d1ca4cacc2b108697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:bc:08:44:af:23:59:5c:94:ad:16:fd:7f:
ed:a9:f1:b7:3e:55:7b:07:3a:a0:89:98:eb:0b:37:
32:b1:fb:6e:11:32:86:a9:3a:bb:a3:cb:da:48:7f:
f9:1e:82:6d:f9:55:0a:10:71:1d:46:ac:8b:1b:ea:
07:77:09:6e:5c:b9:28:cd:bf:fe:48:54:f9:3c:0e:
b8:95:69:a7:7e:72:c5:0d:4a:2e:ce:30:92:df:b8:
da:2d:fb:7f:d4:6d:95:fc:39:ca:ac:32:47:58:f3:
cc:a0:d9:18:e3:10:44:5b:7b:9c:f4:12:65:d2:63:
95:69:c0:01:23:3f:09:e4:5f:35:0d:e6:a2:4a:ce:
23:fb:ca:97:67:cb:8c:d7:0b:47:00:30:73:b7:ce:
2c:61:d4:6c:44:36:07:75:d4:48:07:57:e5:bd:47:
0a:36:79:4f:14:4d:22:52:ae:e5:78:f7:b2:2f:4b:
e6:5b:da:92:b0:ee:bf:03:5a:33:82:07:6c:3b:fc:
85:b7:f9:f4:27:20:af:4c:27:77:34:ad:34:94:38:
b8:6c:89:7b:c3:37:11:f4:60:a3:fc:41:33:fa:55:
03:08:37:73:8d:3d:63:07:86:d5:28:63:37:e3:24:
a2:c4:27:b8:f9:11:f3:0e:ab:e3:5c:2a:83:b8:f9:
d5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:48:37:EB:93:2A:79:5D:84:D3:7E:6D:1C:A4:CA:CC:2B:10:86:97
X509v3 Authority Key Identifier:
keyid:84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:c9:0b:48:00:ad:f3:80:41:21:ec:04:84:10:d6:31:34:3c:
51:37:58:92:8a:9f:ae:44:3d:58:40:ed:7b:e6:e8:fc:bc:73:
4d:ad:a1:6b:8e:b3:d8:f6:b6:86:a0:af:ae:ec:51:6e:cf:8c:
75:fc:f7:d7:d3:fb:c0:aa:79:4d:d8:96:3a:47:31:12:9b:e4:
7f:fa:51:3d:5b:18:05:d3:0e:74:90:17:e8:50:13:92:52:79:
49:f9:08:22:95:0a:a6:98:20:c2:37:2e:b6:f7:c3:32:73:eb:
9b:b0:5e:c6:f6:16:27:ad:ba:63:35:5a:8f:3c:33:fa:85:b8:
85:25:5d:5c:b4:50:f0:6f:8a:bf:05:6c:8f:b2:74:ba:20:6a:
60:94:cc:d7:b7:d7:cc:c5:3f:7e:57:47:8c:4f:b0:b8:c5:ec:
5f:52:8c:fe:07:05:40:2d:93:3b:ba:32:f3:3a:f9:19:bf:71:
cf:75:70:92:73:97:48:bc:cf:31:fb:21:06:d9:06:c4:83:0f:
73:bc:0a:ac:d1:c9:d0:bc:1e:3a:1f:05:eb:42:9f:69:0e:37:
fa:1e:90:be:ee:e1:bb:6d:1d:2f:f3:8c:cc:86:ef:7e:d1:ea:
46:65:dc:2b:76:85:ed:04:b4:96:22:25:3d:c0:2c:15:a6:e0:
9c:72:02:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64Dp8WnTmAhlyJk4SRk66/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjVhNDBiMjc0YTk2M2U1ZWQzZWYwMmU4Mzk5Y2I5YjFi
YjBjN2IwHhcNMjYwNjExMTkwMDI2WhcNMjYwNjEyMTkwMDI2WjAzMTEwLwYDVQQD
EyhhYzQ4MzdlYjkzMmE3OTVkODRkMzdlNmQxY2E0Y2FjYzJiMTA4Njk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTW8CESvI1lclK0W/X/tqfG3PlV7
BzqgiZjrCzcysftuETKGqTq7o8vaSH/5HoJt+VUKEHEdRqyLG+oHdwluXLkozb/+
SFT5PA64lWmnfnLFDUouzjCS37jaLft/1G2V/DnKrDJHWPPMoNkY4xBEW3uc9BJl
0mOVacABIz8J5F81DeaiSs4j+8qXZ8uM1wtHADBzt84sYdRsRDYHddRIB1flvUcK
NnlPFE0iUq7lePeyL0vmW9qSsO6/A1ozggdsO/yFt/n0JyCvTCd3NK00lDi4bIl7
wzcR9GCj/EEz+lUDCDdzjT1jB4bVKGM34ySixCe4+RHzDqvjXCqDuPnVNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKxIN+uTKnldhNN+bRykyswrEIaXMB8GA1UdIwQY
MBaAFIS1pAsnSpY+XtPvAug5nLmxuwx7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8zZDk3NzctYzk5Ni00NmZjLTlkNjct
YTcyMGFmODYxZmVlLzEvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8zZDk3NzctYzk5Ni00NmZjLTlkNjctYTcyMGFmODYxZmVl
LzEvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIckLSACt
84BBIewEhBDWMTQ8UTdYkoqfrkQ9WEDte+bo/LxzTa2ha46z2Pa2hqCvruxRbs+M
dfz319P7wKp5TdiWOkcxEpvkf/pRPVsYBdMOdJAX6FATklJ5SfkIIpUKppggwjcu
tvfDMnPrm7BexvYWJ626YzVajzwz+oW4hSVdXLRQ8G+KvwVsj7J0uiBqYJTM17fX
zMU/fldHjE+wuMXsX1KM/gcFQC2TO7oy8zr5Gb9xz3VwknOXSLzPMfshBtkGxIMP
c7wKrNHJ0LweOh8F60KfaQ43+h6Qvu7hu20dL/OMzIbvftHqRmXcK3aF7QS0liIl
PcAsFabgnHICLQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 05:04:14 2026 by rpki-client