Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: ZTeQed6gG01UgXHh09myWS+qRqbVclixsS/e3E0aIX8=
Subject key identifier: 8B:70:30:C7:AD:6B:1A:6D:A8:3A:43:F7:D0:9F:E2:5C:0B:4D:96:33
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 019CC6E281C4B549365A04D24E43D6F28B3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 1868
Signing time: Sat 07 Mar 2026 06:00:58 +0000
Manifest this update: Sat 07 Mar 2026 06:00:58 +0000
Manifest next update: Sun 08 Mar 2026 06:00:58 +0000
Files and hashes: 1: 4L2HrkOMp5Px3ZdgqOBGMnz6oXw.roa (hash: qjbkKzm11wnXRFJIt4quryujdmBS5m5m8Id3/w9vHFw=)
2: 78tSQmB_UZC_rIGDHLnxnqOm3fI.roa (hash: 3kNkwMTWy/XYCkJODFF1IVosQpGtDfhW2/dwVf0UwBQ=)
3: C3Lj3Wt6YNWIPGHmadEQ-dchhaw.roa (hash: fn0aOrz4mN4OtO/EtlMrSuF4wh5zaQaJSbD2ep7jxzI=)
4: JIk4GJqmgSwzYSk0JGPNI21QRnM.roa (hash: 45ZLZSPO108JAO0yb1j8MEBiHT4QdE4zU9XBhQbVqtg=)
5: PY323kbvCRFsNrwGFI26gXv0gpE.roa (hash: U0ksXLpw7uH4vwqe/cNwV58+FVim6JoHjXiFGt1giNE=)
6: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: Jf0x/os7a8P30iB37w+oClLZCjokT4evyXazuznyvXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c6:e2:81:c4:b5:49:36:5a:04:d2:4e:43:d6:f2:8b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Mar 7 06:00:58 2026 GMT
Not After : Mar 8 06:00:58 2026 GMT
Subject: CN=8b7030c7ad6b1a6da83a43f7d09fe25c0b4d9633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c1:ea:c3:a8:a0:d3:10:e8:d5:01:2b:8d:0c:
a1:89:5f:d8:56:40:6a:a3:fc:00:a8:98:ce:c9:c3:
97:2a:b9:e6:3f:7f:81:46:e4:7d:c0:5c:12:27:0a:
c6:16:cd:f6:f6:a3:03:a5:37:46:15:c9:f8:bf:a6:
55:c5:41:19:32:fb:d1:bc:86:2f:22:bf:7e:f9:61:
67:d2:7f:74:fc:13:c4:20:7c:3e:cc:ec:70:e2:14:
7d:86:9a:73:ef:65:dd:d3:26:1e:fd:eb:f0:07:e7:
42:1b:9a:19:d8:63:58:86:df:ab:52:3d:db:1a:f8:
c9:ad:d4:83:d5:0f:a7:9d:2c:c4:0d:7a:14:96:29:
61:86:1e:32:79:87:60:5b:96:ea:2d:29:32:bd:3b:
dd:2d:e3:dc:69:9d:b7:c0:7d:8d:49:65:6c:4e:80:
5f:c3:70:ab:ea:bc:e3:90:56:47:04:00:14:a4:67:
39:69:6b:93:d9:be:e0:e9:99:fd:c2:2a:e8:42:2d:
4f:8c:df:6f:45:ee:01:e9:37:8a:ba:cd:f8:40:89:
d0:69:f5:8d:6a:06:d8:91:da:84:5d:28:84:c6:d4:
b4:7c:f3:c9:6b:e9:fb:b6:bc:5a:6e:1b:ac:99:41:
a3:07:15:dc:d3:13:8b:fe:cb:df:9b:67:d7:a5:eb:
09:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:70:30:C7:AD:6B:1A:6D:A8:3A:43:F7:D0:9F:E2:5C:0B:4D:96:33
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ae:69:c1:0e:a3:1f:c7:b8:c5:ec:f3:92:ae:b2:a3:ba:ce:
86:b3:f1:af:5d:96:c3:b4:06:20:1b:6a:d5:3d:34:6b:92:a3:
4f:75:23:f6:c4:ed:1f:ba:c7:ae:44:ad:35:7c:b0:6f:5d:ab:
34:2b:9b:79:e6:a1:52:c0:68:2f:e1:2a:a6:87:6d:21:a4:f0:
91:84:6f:59:53:9d:0d:41:1a:1e:6d:5a:c0:c4:5d:d1:01:ae:
de:37:92:d8:11:2b:42:c2:ea:a1:05:99:35:1f:e2:be:ec:b7:
4f:80:d2:d0:cc:5b:96:7c:3d:d8:0e:ec:6f:63:9f:d2:17:fd:
27:30:52:16:39:7b:53:95:ed:27:ec:4c:92:cb:4f:06:5d:f7:
bd:f3:3c:7a:df:5b:c4:89:38:2c:1f:62:6d:3e:fb:f7:21:18:
b9:eb:87:38:3f:47:05:14:91:00:f7:8c:dc:6f:4b:73:91:9f:
9e:15:97:fd:33:6f:62:2b:88:88:f0:f9:bd:e2:4b:39:39:9b:
ca:2f:de:09:e0:f2:89:82:1e:a5:00:03:fd:40:00:fa:c6:19:
2f:8f:57:db:42:0e:d1:38:af:75:39:65:71:e6:3f:bc:f2:1a:
66:f7:f7:07:86:be:aa:d6:d6:9a:73:3a:61:d9:5a:5d:64:07:
36:5b:51:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 12:44:10 2026 by rpki-client