Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
File: aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json)
Hash identifier: V2cIyQEfZSWrFEZzWBfW4KK5TGBaHERnH8949cYTp+4=
Subject key identifier: C7:AA:A5:D4:8C:48:4C:95:AB:AE:06:F5:4A:02:49:AB:F7:19:38:F0
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 019D3865DE1E5BCC0B10859DE87265EAF01B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
Manifest number: 13C2
Signing time: Sun 29 Mar 2026 07:01:33 +0000
Manifest this update: Sun 29 Mar 2026 07:01:33 +0000
Manifest next update: Mon 30 Mar 2026 07:01:33 +0000
Files and hashes: 1: H3BcLlLdlK5OktIlKB08CLOJceQ.roa (hash: gCov3Lq4RydmSmoM9Ym4TkvogcYAidCIuxal3h4GAM8=)
2: K01hEvp_oFx3qc2-IUwd8VFE1hI.roa (hash: cm5jfcRdjk0yhdi3HnxUE7FN1POO9527wRj/2D2vjMs=)
3: P6dX7w5DhwlzNU979iFd9YDU0uI.roa (hash: UBskImMtpaHQaupcjp821thacxNepjpaa64/vY6YASM=)
4: UTSVX3B31qE6acA-2M3EInvqjqs.roa (hash: 2V2E0vmwbEv4vLiGDwB2fco3T0rwdLt7wl4GPwkBEC8=)
5: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: JxslBGEZGu+nkCPMM7q7aS9rfQWF/Ohq31UnqeLxG8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:de:1e:5b:cc:0b:10:85:9d:e8:72:65:ea:f0:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Mar 29 07:01:33 2026 GMT
Not After : Mar 30 07:01:33 2026 GMT
Subject: CN=c7aaa5d48c484c95abae06f54a0249abf71938f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a8:2b:91:a0:e9:d9:c5:05:eb:10:60:3d:47:
99:54:7e:89:f5:37:2b:c2:0d:55:61:b3:6b:07:29:
83:24:e7:69:ba:d7:11:98:41:ec:b6:3a:8c:e7:01:
75:fc:32:12:1c:0d:15:b9:39:9c:9d:b2:43:ce:7e:
e2:7b:a2:30:83:6a:ec:88:2e:74:52:e1:6b:14:d7:
6c:d4:4f:e0:f2:11:63:01:fd:3b:6c:7c:62:b2:50:
33:13:09:8c:cb:09:93:b4:68:ae:ff:e2:6b:70:98:
70:17:c9:9c:86:99:46:d7:72:4e:1b:8f:2c:7f:ee:
cd:f7:ae:2d:74:78:f9:99:0a:a9:56:f7:b2:1a:85:
87:ea:a1:92:95:6f:df:a6:a7:32:a8:f7:43:d9:79:
c5:2f:ce:3c:2c:c4:14:77:f5:b3:26:bb:78:45:73:
fd:b4:a7:cc:7e:dd:3b:35:c4:1a:c8:71:5c:02:5f:
33:86:71:71:8d:94:b0:84:23:86:bd:b1:7e:48:45:
54:5e:d3:69:18:57:3d:96:48:a9:30:dd:44:9e:8c:
e8:74:90:ce:0d:69:60:95:d5:57:60:1e:3d:5b:7b:
ef:2a:dd:93:74:61:f0:80:57:de:7e:d4:d7:64:60:
37:53:09:c1:69:b3:d5:ed:34:c9:8e:45:24:90:41:
18:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:AA:A5:D4:8C:48:4C:95:AB:AE:06:F5:4A:02:49:AB:F7:19:38:F0
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:23:09:0e:ca:fb:e0:6d:0d:e6:9e:2a:e8:46:a5:6c:4e:73:
12:59:ac:5c:00:b2:62:b8:4e:13:72:ba:6e:db:a5:14:09:63:
75:af:c7:97:25:31:42:1c:ca:6c:e1:cd:51:f1:cd:3d:f3:2a:
01:73:79:8b:36:0f:6e:ba:c7:9b:90:60:8f:ee:da:05:f3:46:
78:18:f0:43:11:8d:3c:b2:91:8c:cf:c7:d4:49:7e:fc:e6:a6:
97:54:46:be:02:3a:7b:af:89:af:d2:91:53:a2:e1:a6:8b:9f:
7e:74:65:a9:9e:fb:55:1c:02:7e:54:82:17:bc:b7:7d:e2:9b:
7f:fa:20:8a:bd:5e:89:a3:71:4a:95:b6:3c:e1:e8:74:a3:0f:
1c:60:e1:b2:19:c7:53:ab:23:66:e5:50:6d:01:fb:34:d2:ed:
49:06:6d:ac:a3:82:22:12:61:27:93:47:c0:6b:f4:8e:da:64:
8a:23:0d:56:84:0e:84:ad:df:ac:25:08:24:06:66:ff:d9:9c:
db:93:66:cb:65:d3:fc:4b:ec:79:2c:40:0d:ca:1e:0f:f1:2c:
75:6b:fd:a1:60:6a:4b:8d:45:db:f4:c3:22:f0:32:4c:5a:44:
41:14:9f:7d:74:77:c6:11:5b:47:52:03:f8:57:ca:92:55:36:
5d:7f:51:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:54 2026 by rpki-client