Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: 4jzdKrxStxcyk+hBbEz/VjIjmmODjjOsEYrhJlymTSk=
Subject key identifier: 45:08:D7:31:61:C9:D8:6D:C6:32:2F:7A:54:36:4A:89:7F:F4:E3:D2
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 019E330629063F921C308E694E34405BFA69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 18A2
Signing time: Sat 16 May 2026 23:01:42 +0000
Manifest this update: Sat 16 May 2026 23:01:42 +0000
Manifest next update: Sun 17 May 2026 23:01:42 +0000
Files and hashes: 1: 9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa (hash: tKJRFaY2YcR7s8GJcJFATvbLWJiSSXElLCi1btrAeAw=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: SxKgaP7yx/ywll9PdyFZCqObG0LYWtQlTqVlQ6mLDFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:33:06:29:06:3f:92:1c:30:8e:69:4e:34:40:5b:fa:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: May 16 23:01:42 2026 GMT
Not After : May 17 23:01:42 2026 GMT
Subject: CN=4508d73161c9d86dc6322f7a54364a897ff4e3d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3c:9e:d4:3a:8b:cf:e5:ad:be:77:0a:b3:0c:
c8:d3:db:9e:0f:b1:d4:8c:e1:9e:4e:f3:c0:f0:3f:
5d:69:85:81:d8:8d:e0:d4:8e:9f:61:d3:e4:81:e3:
21:14:33:14:43:1a:50:01:b0:65:eb:ba:7c:38:51:
b7:89:b5:b2:51:b0:57:a2:ba:80:9a:2f:7c:ef:1c:
96:ef:81:90:bc:b1:82:ad:8e:b6:cf:58:dd:76:fb:
1e:d8:75:73:1a:5a:ad:38:b4:64:df:36:58:06:e6:
c7:a4:4e:ba:4f:46:99:93:bf:30:c1:3c:f5:f1:7d:
8f:3f:83:e4:3b:f4:1a:4a:be:ce:fe:47:95:0c:fe:
b8:1c:19:77:2e:19:c7:a6:22:a5:bd:c3:9b:42:b8:
7e:65:15:9c:fb:e1:a6:7e:ba:75:df:c5:7b:8d:fe:
d4:0b:3b:c3:d5:68:f6:53:9d:37:24:93:56:ec:de:
1f:84:13:b0:74:91:d3:bd:cb:84:ae:e1:2d:d8:88:
04:f2:93:24:36:43:cc:ae:60:b5:91:a4:5f:d6:ec:
96:4b:58:4e:39:e3:30:d4:ca:e8:e3:d2:92:9c:ec:
de:b7:e8:b1:35:6c:1e:7e:b8:d1:b4:96:5d:e3:25:
b2:1a:7d:81:da:3c:19:76:ad:2d:0b:a6:42:84:19:
48:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:08:D7:31:61:C9:D8:6D:C6:32:2F:7A:54:36:4A:89:7F:F4:E3:D2
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7b:67:13:dc:09:9f:b2:23:18:5b:98:98:68:bd:f3:80:ec:
29:90:01:31:53:4c:c3:9e:87:21:a0:cb:9c:31:89:2e:6b:c6:
05:df:10:46:c2:be:fe:94:f5:b5:63:54:2e:9f:18:91:40:b7:
a0:67:06:a9:b9:a5:2b:9c:f9:2f:39:97:90:18:95:96:cc:0f:
20:69:f3:1f:29:ca:ee:8a:f7:92:00:62:e5:f5:39:ec:c6:c4:
3b:6e:9b:3b:2e:8b:a2:c3:7d:90:78:86:67:d4:e0:56:39:0c:
2f:92:2a:05:b7:25:4a:b5:03:7e:2b:5e:e7:b3:f8:92:52:6e:
cf:4d:34:9d:06:e0:79:6f:1b:1e:97:06:49:94:77:44:52:9f:
69:79:39:0a:a6:c1:da:0f:ab:16:87:4d:06:10:f1:12:e7:a0:
32:5b:53:a8:d8:62:3f:c6:7b:8b:96:8f:62:c8:e3:43:f7:c1:
6b:ae:8f:11:be:fc:47:4e:87:8d:02:1b:04:af:c3:f5:cb:32:
78:5d:60:1c:d1:88:a0:eb:69:be:53:45:cd:13:88:73:f7:2d:
b2:fc:2f:f4:9a:7b:85:b9:8a:4c:64:a7:1c:32:a8:b3:e4:ab:
61:5e:47:26:dd:4d:85:34:6c:38:33:77:f0:b7:98:28:f3:09:
1f:35:ef:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 08:23:52 2026 by rpki-client