Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
File: ChCKKMcHsOXCwubCE31Fh5EUu5I.mft (raw, json)
Hash identifier: maCd3ldGAfV/UUkjnIZNpX758VAIazxyNX94/0gYIkg=
Subject key identifier: E4:F2:59:D1:CE:78:A4:88:0B:68:C8:C5:42:E6:A6:01:34:D0:DE:21
Authority key identifier: 0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
Certificate issuer: /CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Certificate serial: 019E314E18B7D37B118C528F4188821B2044
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
Manifest number: 0B0A
Signing time: Sat 16 May 2026 15:01:02 +0000
Manifest this update: Sat 16 May 2026 15:01:02 +0000
Manifest next update: Sun 17 May 2026 15:01:02 +0000
Files and hashes: 1: ChCKKMcHsOXCwubCE31Fh5EUu5I.crl (hash: vvOi1Jh/gQP+wcWQngaKOF0pKuuhEaIf0Z6KHbvoBOM=)
2: Fp4UEgpqLjFgWOhGK_G7aio72NU.roa (hash: YSrfGKlIuE0FqJ0gu+vKGaGUCKaaLtU+2IoC/r0Bjwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:18:b7:d3:7b:11:8c:52:8f:41:88:82:1b:20:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Validity
Not Before: May 16 15:01:02 2026 GMT
Not After : May 17 15:01:02 2026 GMT
Subject: CN=e4f259d1ce78a4880b68c8c542e6a60134d0de21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0e:c5:a7:88:98:d7:c0:fa:a9:47:c9:2d:4d:
f2:b3:55:a2:1c:b4:69:4e:17:3b:70:12:28:e1:bb:
82:45:42:51:08:5f:9e:5b:63:0a:ca:e4:d0:b3:1d:
ab:5f:21:a0:06:e7:0b:1b:2c:48:b1:f1:d0:ea:99:
a8:f9:aa:95:47:64:ae:dc:d5:d2:c3:29:0b:43:4e:
3c:ef:49:82:4a:75:3a:99:9c:b2:6d:93:0c:89:d8:
dc:e2:d3:98:07:7a:f0:d5:3b:47:0c:fc:49:84:2b:
87:16:a7:d6:2e:20:27:eb:b0:54:1f:0f:a3:a9:a1:
23:7f:4a:83:ee:3c:75:60:dc:bb:f3:86:a6:18:37:
15:72:c9:f6:7f:f5:a5:1d:68:05:b0:ed:38:67:ec:
bc:44:45:6e:4c:34:03:22:b7:ff:50:9a:cd:b1:c2:
6c:b9:c3:89:87:1b:a1:38:cf:31:bf:97:f6:b6:f2:
fa:72:51:95:1b:ea:3b:b1:f7:4c:7a:49:93:3d:1f:
59:00:61:14:cf:46:4a:8f:57:7e:8d:5b:28:d1:e0:
53:d4:40:25:d6:ce:d6:76:61:ac:f8:5b:a0:8c:63:
3e:d9:f9:2d:39:25:c5:35:37:0a:2e:f3:56:2c:cc:
49:30:ce:5f:eb:98:85:12:b7:68:5a:fd:8a:d1:aa:
bb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F2:59:D1:CE:78:A4:88:0B:68:C8:C5:42:E6:A6:01:34:D0:DE:21
X509v3 Authority Key Identifier:
keyid:0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:df:c2:b8:84:64:84:a2:a5:37:a4:14:e8:16:ae:23:85:25:
d5:0c:13:a9:25:ec:9f:9a:09:2b:4b:f3:ca:8c:57:ed:8f:3b:
d6:96:4b:d6:e4:d0:88:43:c7:09:7c:0a:63:94:71:03:a4:3a:
a5:1b:92:c9:8b:c3:ac:e8:29:9d:64:bd:34:d1:f8:05:67:45:
cd:d6:42:42:19:f4:7c:b2:69:5c:c9:e9:d8:14:af:96:29:cd:
ef:5c:51:68:fd:e7:02:a1:d7:6f:37:39:5c:74:cf:80:fc:b9:
bd:6e:5c:46:83:e4:bf:4f:2d:e1:71:b3:c5:15:71:7a:ad:ff:
86:37:df:ce:70:7e:b8:8b:2f:f6:3e:bc:7b:ed:4c:34:ee:e2:
f4:60:13:bf:95:91:fe:09:c8:2a:61:3d:10:b8:86:34:ca:71:
29:62:1e:1f:1e:8a:d8:85:9d:f7:86:a2:ef:cf:f5:70:a8:91:
08:25:e9:8f:a1:27:1c:67:da:51:42:25:d0:52:db:f6:20:5f:
e3:b9:8f:e9:d1:92:11:4a:80:98:41:b4:f4:96:11:df:9f:52:
7e:86:75:cb:48:dc:63:1a:9e:d2:1b:f3:da:d3:21:8e:a5:d1:
b2:0e:d1:07:94:95:2d:fe:be:18:e0:23:15:50:0e:d9:de:1b:
09:3a:dd:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:56:34 2026 by rpki-client