Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: opEltOQjwTtE12Xa3fTh3nIEohO63lP6v2woxhFxnWg=
Subject key identifier: 0E:84:6A:2A:ED:7D:B6:F1:CD:20:2A:1F:F4:FA:E2:36:85:B9:A7:5F
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 019D37F74549B8CBD66217A46AB26FE4C268
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 1820
Signing time: Sun 29 Mar 2026 05:00:45 +0000
Manifest this update: Sun 29 Mar 2026 05:00:45 +0000
Manifest next update: Mon 30 Mar 2026 05:00:45 +0000
Files and hashes: 1: 9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa (hash: tKJRFaY2YcR7s8GJcJFATvbLWJiSSXElLCi1btrAeAw=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: SmOdhSozvMudfvTOOQHk9TAU4qb6acH3gzcg8G0Vj6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:45:49:b8:cb:d6:62:17:a4:6a:b2:6f:e4:c2:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Mar 29 05:00:45 2026 GMT
Not After : Mar 30 05:00:45 2026 GMT
Subject: CN=0e846a2aed7db6f1cd202a1ff4fae23685b9a75f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3f:c5:94:7d:8a:ec:a7:de:25:0c:9b:97:4d:
5e:c9:b4:cb:f6:d7:5c:a8:3e:64:b3:11:33:3f:ac:
28:8a:3e:32:d8:b1:c0:ca:78:8e:8d:b1:bc:05:b7:
1e:1c:2f:6f:ce:00:51:65:4f:b9:73:7d:de:f4:6b:
78:b7:b4:ce:40:e6:f3:f6:89:c2:dd:a7:75:42:de:
63:42:18:82:30:7e:04:b7:6e:3d:04:a5:c5:e7:ec:
47:f2:76:a2:00:b6:f4:aa:f6:b0:bb:91:b3:b3:2e:
12:92:d5:49:a6:46:4e:9b:9f:60:0d:ea:8c:a8:96:
e8:f1:30:29:a1:32:29:88:0c:69:1c:fd:57:f5:73:
5b:d3:4e:b8:23:e6:db:64:cb:9a:29:a9:66:9d:0e:
8b:a6:d3:74:1c:b7:9c:f5:01:8d:44:a0:8a:98:c0:
91:d2:be:f9:82:fb:00:f8:46:61:0c:aa:43:f9:fe:
55:d3:60:03:82:08:e6:04:79:bb:da:9f:26:b7:5b:
42:db:c0:61:3f:f0:4b:96:29:a6:f1:23:8c:18:92:
16:8c:9f:0e:0c:22:21:4a:91:a2:1a:84:e1:dd:cd:
27:ce:eb:f2:0a:ab:ac:14:14:a4:f3:8d:92:f3:ef:
d6:67:99:e0:0d:87:e1:39:09:68:46:3a:05:e5:1b:
da:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:84:6A:2A:ED:7D:B6:F1:CD:20:2A:1F:F4:FA:E2:36:85:B9:A7:5F
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:08:e0:d8:e3:35:38:db:49:68:5f:51:e0:d4:b6:5e:c9:5e:
5e:f8:07:61:e3:bd:ed:4b:eb:b1:53:16:15:0f:c3:19:04:87:
0c:83:e5:f4:a9:40:74:79:ff:97:45:5e:84:c2:be:53:3a:e7:
e2:91:ea:6d:4d:13:34:30:77:67:b0:51:99:4b:62:f2:43:64:
d9:24:0c:28:88:42:2c:ac:29:06:4b:66:b1:fa:f3:49:85:8f:
84:1f:84:07:12:8c:2d:86:73:b3:8e:2b:cb:53:8b:46:0b:fb:
52:d1:24:24:d0:3a:8f:a5:95:34:23:1b:07:1e:29:44:cf:cc:
47:a2:4e:4b:3a:e0:e1:6a:83:f2:de:bc:c2:12:94:76:ac:67:
2f:75:60:46:ba:f3:b3:d5:71:21:ca:c3:8c:d1:78:6d:f5:7c:
ff:4f:1a:04:dc:14:04:6e:e4:4b:cf:ec:de:99:56:1c:e1:70:
8a:1b:ac:bd:66:dc:af:9e:79:46:cb:d0:45:5d:56:48:4d:54:
0d:c6:a5:a3:8c:72:99:13:af:e3:51:97:ee:cd:0b:1d:38:4a:
84:f1:11:aa:13:19:75:b4:1f:b8:ca:bc:ba:39:d9:5c:6b:60:
85:07:bd:65:57:48:0f:26:b3:ab:74:71:89:45:48:5b:1d:02:
26:22:f1:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:04:03 2026 by rpki-client