Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: zdQQ26F+oSInG+ekj5ySzSBq0OD3yPJMP7bkWPiqjZo=
Subject key identifier: F8:42:46:CE:15:45:0D:5A:FD:FF:32:26:F1:AF:F5:44:38:0E:52:3D
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 019D37C05FE1A1F4865629576D9D43A9EE3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 04:00:47 +0000
Manifest this update: Sun 29 Mar 2026 04:00:47 +0000
Manifest next update: Mon 30 Mar 2026 04:00:47 +0000
Files and hashes: 1: O-DHQ-d3mfAOgq3yuIWV4iVv_x8.roa (hash: dSSiaDVSWahBigya5YVNu9L0fcAePIWgFzlkT6f9BmA=)
2: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: Tc13sNte0wzSkqgsUiHB4T+wChxnjUSK9BRY5mPelYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:5f:e1:a1:f4:86:56:29:57:6d:9d:43:a9:ee:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Mar 29 04:00:47 2026 GMT
Not After : Mar 30 04:00:47 2026 GMT
Subject: CN=f84246ce15450d5afdff3226f1aff544380e523d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:38:fc:79:82:57:5f:e2:18:42:fe:49:af:41:
10:0c:76:75:db:02:4c:5b:e1:46:a9:ec:ba:12:bc:
e8:18:dc:ac:72:f2:47:97:52:59:27:69:6d:a0:49:
24:7a:4b:f9:5f:01:21:84:b0:fe:82:f2:8b:27:84:
40:00:cf:8a:3d:cb:70:9e:e1:bd:55:4b:4f:fd:40:
ff:89:af:45:3a:05:59:05:fd:95:92:d6:66:4f:fd:
2a:f8:0f:99:39:52:8e:c5:6f:24:d5:40:0a:2d:44:
6f:63:99:41:2e:e9:01:ff:95:f0:18:98:c5:c8:87:
5e:14:57:47:d9:a0:10:d2:7d:7f:de:0d:72:f7:2e:
81:53:33:22:73:10:11:93:67:20:7e:65:2a:75:98:
79:97:08:27:f8:ba:a5:8d:df:41:3c:54:06:bd:3f:
40:4b:19:01:ba:cb:6b:67:3d:40:48:26:29:11:2f:
ed:56:54:03:8d:df:5f:ce:ac:64:05:6b:50:79:c5:
14:23:ff:58:ba:ce:3a:32:8d:7c:92:d0:7f:66:0a:
2f:d1:0b:b1:53:e3:23:0c:a0:39:24:f7:01:eb:fd:
7f:33:dc:cb:9d:b9:81:fe:9b:9f:57:07:e3:0c:6d:
6a:3f:61:89:7f:30:e5:3b:b2:aa:4d:02:be:6d:29:
cf:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:42:46:CE:15:45:0D:5A:FD:FF:32:26:F1:AF:F5:44:38:0E:52:3D
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:e2:80:6c:db:06:1d:65:50:8f:0d:d7:31:73:3f:a5:0d:2e:
f0:b5:d8:cf:c3:cf:01:a4:6b:a2:7d:ab:83:83:93:37:9e:5b:
0a:b8:27:91:84:ef:90:b4:f8:9c:00:b9:07:a1:9f:0f:ab:76:
66:ae:7a:6c:f3:13:ea:fd:dc:a7:b8:eb:2d:03:a5:f6:ee:cc:
16:0f:4a:33:29:90:06:36:78:2f:80:25:e2:ad:20:5e:60:21:
2d:f9:84:b2:32:09:4f:dd:1e:d1:49:44:8b:4d:70:7e:47:ec:
a4:a6:6a:ad:93:08:45:be:3a:40:07:70:67:1a:66:2c:0b:9f:
7f:6f:1a:54:c1:2a:8d:d2:ac:3d:64:8b:b4:8c:9d:8d:8a:22:
d6:76:4f:f4:d5:95:48:4f:c5:de:80:d4:68:74:ae:86:10:de:
fd:7e:c3:d6:98:c4:d1:81:3d:2e:34:7b:a1:51:67:ee:20:17:
c7:de:e1:50:09:88:54:b0:51:33:c4:9e:f7:fb:ce:12:e7:c3:
e0:1f:c9:d0:e4:85:50:bd:a5:bf:b7:ff:28:87:43:af:9d:29:
53:21:aa:08:8c:db:f4:dd:8b:db:e2:53:7c:a7:0d:2f:75:28:
cc:f9:47:1c:f9:f6:b6:a5:0e:89:53:78:ac:4d:ab:68:3f:8d:
e5:07:3f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:00 2026 by rpki-client