Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: cv017tmt5qiemGq8auUXbxY2YKg5rfKGI/dToWmGcts=
Subject key identifier: D8:63:EB:DF:0D:00:B4:36:DC:A1:99:1C:CD:B2:88:2A:84:FB:1E:8D
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 019D37F796F57FE1A7959C3DAED7F98557CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 12CB
Signing time: Sun 29 Mar 2026 05:01:05 +0000
Manifest this update: Sun 29 Mar 2026 05:01:05 +0000
Manifest next update: Mon 30 Mar 2026 05:01:05 +0000
Files and hashes: 1: 4dg4kAKJ8YSOGy8c68PKhEx34vE.roa (hash: ry2ttY5wtlmGli2qcFEKHyBaFD3fHmgeyUWAJ6+46jE=)
2: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: ufE8wQVclxDs2E7gFmw4m4YI+jEUqcj6oy3PVwA9VYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:96:f5:7f:e1:a7:95:9c:3d:ae:d7:f9:85:57:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Mar 29 05:01:05 2026 GMT
Not After : Mar 30 05:01:05 2026 GMT
Subject: CN=d863ebdf0d00b436dca1991ccdb2882a84fb1e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ef:d0:3a:d5:a4:17:03:be:fa:f4:94:3a:22:
f5:2f:1f:9e:f7:89:ab:11:68:bc:1a:da:37:92:fd:
92:16:a3:0a:44:1b:90:49:b8:0d:0e:60:b0:b0:56:
ea:1a:b9:1a:a3:df:1e:6b:39:02:e7:f7:55:4a:2e:
da:80:49:41:d6:f8:2f:4c:41:4b:32:5f:da:3f:42:
48:d1:ca:a8:d9:46:ef:90:96:bc:d4:73:f6:49:63:
17:2f:9a:bb:6e:3f:59:2e:69:30:0a:6f:0c:49:49:
1a:07:ff:5f:e3:08:28:97:78:32:d8:f1:30:1b:79:
ab:30:65:88:2b:22:d7:ae:38:08:25:35:ea:97:f6:
0e:90:0b:9a:a4:2b:9a:3f:5d:72:eb:38:fc:54:fc:
9e:0b:1f:5f:0a:4f:de:49:b2:22:a3:b8:bd:ff:01:
99:bf:ba:e9:96:b7:00:2b:8f:f3:52:01:3d:2c:a8:
b0:b9:0e:3c:06:e3:d4:80:17:65:55:0c:cd:b2:ba:
dc:02:2b:84:30:ec:0c:07:19:3e:e3:5b:68:fc:e0:
8b:4c:c6:ab:7f:b6:ab:df:bc:b9:3f:c5:36:1d:a2:
80:1e:fd:94:fc:a6:93:cb:bd:26:27:13:fa:ba:69:
f9:e4:30:78:2e:88:b0:4b:b3:f0:38:dc:80:8d:ca:
69:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:63:EB:DF:0D:00:B4:36:DC:A1:99:1C:CD:B2:88:2A:84:FB:1E:8D
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:dc:f7:ef:48:40:ea:c4:14:e1:83:d3:f7:52:48:ec:97:d6:
37:21:7e:f5:2f:44:c0:71:0e:5a:fe:fb:4e:dc:ba:65:03:a5:
94:eb:91:16:50:6a:68:b4:d9:eb:d3:13:55:9b:05:8e:33:94:
e1:16:1f:56:e7:87:3c:51:45:7e:1a:a7:3f:79:4d:d3:84:7a:
60:1e:ad:9c:72:e1:85:da:23:b6:00:07:22:0f:9e:c5:ff:58:
f0:d5:b9:57:b7:87:65:2b:ce:da:9a:ab:e3:f0:d4:07:9f:82:
3c:dd:65:97:a0:1c:2f:59:53:07:3c:bc:66:44:99:c4:01:57:
24:fd:9c:72:7e:ae:e6:b4:73:6c:15:7b:5b:62:e1:e3:56:34:
75:f2:c2:42:ac:ed:be:98:87:b9:cf:57:b9:a7:8b:13:f7:9b:
41:c6:6c:3c:c2:8a:64:77:13:3b:91:26:a2:c5:31:3b:a2:85:
b0:1f:a7:2e:55:ee:d0:78:ef:48:20:20:26:e3:ae:59:08:9e:
e9:91:c6:e5:fd:cd:cd:b8:7f:40:7a:da:5d:f5:17:85:b4:ed:
b6:62:08:89:37:50:f2:c7:33:e1:ed:2c:17:bf:b3:ce:b4:31:
89:70:b6:7e:7d:28:01:90:f6:b5:d2:19:e0:93:83:68:41:21:
b7:0e:96:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:59:11 2026 by rpki-client