Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
File: CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft (raw, json)
Hash identifier: JCYg8ze56dYJ0C8ichoFafF00A3PMXkGITiTEz9By7M=
Subject key identifier: 93:10:77:5C:EE:2E:06:AB:E2:4B:83:37:AF:C6:4C:83:10:9E:7A:C5
Authority key identifier: 08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
Certificate issuer: /CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Certificate serial: 019E314DCD02B2A7CDDD120D59CF8FFDCD97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
Manifest number: 1514
Signing time: Sat 16 May 2026 15:00:42 +0000
Manifest this update: Sat 16 May 2026 15:00:42 +0000
Manifest next update: Sun 17 May 2026 15:00:42 +0000
Files and hashes: 1: CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl (hash: A7tlQ6zWe3HJkqoADspnv2Vy3EVGbl0N5qWlpgnDWyw=)
2: t_3KExq4t288IjtqVXAOQe_Eba8.roa (hash: ChTQhqA/DHUVGryflG/Am/U8Pp4mklmr4RiBocThAjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4d:cd:02:b2:a7:cd:dd:12:0d:59:cf:8f:fd:cd:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Validity
Not Before: May 16 15:00:42 2026 GMT
Not After : May 17 15:00:42 2026 GMT
Subject: CN=9310775cee2e06abe24b8337afc64c83109e7ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8a:ed:a8:d0:fe:72:2f:0a:ec:61:df:af:b8:
ee:ff:74:fb:57:95:f0:0d:29:90:53:a6:ec:79:36:
20:c7:2f:07:fb:59:b9:0b:74:50:d3:ae:77:0a:e9:
d1:4e:f3:64:2b:03:24:da:3f:f0:ad:81:1d:69:f4:
a5:a1:8e:38:c7:76:de:2c:d3:d9:d4:73:ab:18:43:
70:5a:9e:41:d5:d3:62:9e:21:af:81:f1:7a:7e:c3:
cd:1f:dd:87:8c:78:c4:b1:4b:9a:63:a4:5b:2f:e5:
1c:8b:a9:21:31:05:46:94:e7:19:93:55:e3:97:d3:
4d:e3:2c:2c:2d:c4:d1:36:5f:56:bd:f2:81:54:59:
d0:52:cf:75:b1:55:ba:ee:50:69:9d:6e:05:3a:00:
82:2e:2a:68:b3:f2:d2:9a:b9:12:bf:fd:dc:2f:42:
19:c0:82:af:4c:0f:01:af:f5:13:92:69:be:a5:11:
cd:fc:69:24:46:b8:94:ba:83:e0:56:bd:04:76:6a:
f4:f1:9c:3c:76:4d:d9:ec:15:7f:f5:b2:39:fe:83:
38:1b:ef:43:b7:1e:a4:0f:ee:9a:40:02:9c:6d:66:
5b:e6:4a:78:ec:27:d4:c0:b3:c3:77:56:79:b5:72:
4a:d6:ba:14:70:d0:69:9f:f7:02:ec:6f:ed:3b:e9:
d7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:10:77:5C:EE:2E:06:AB:E2:4B:83:37:AF:C6:4C:83:10:9E:7A:C5
X509v3 Authority Key Identifier:
keyid:08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:26:6b:c1:89:61:f2:28:b4:40:55:56:96:b4:c5:67:4d:f7:
19:13:38:cb:ed:82:6b:b1:f5:23:64:cc:bd:44:e2:3b:8b:9d:
33:35:31:14:4c:a1:82:6c:b9:85:f4:74:2f:73:4a:db:65:0a:
0d:ec:df:0d:cf:62:2d:3b:9f:a3:db:a7:7d:37:d7:c0:35:33:
66:2c:eb:fc:19:83:80:72:6e:1a:d2:3f:da:9b:67:8f:2c:af:
e9:38:7f:81:ac:c7:2f:74:48:8f:1a:80:d1:a2:54:83:92:54:
15:d9:8a:46:88:53:9b:9f:ad:9b:f3:27:bd:23:ef:42:31:63:
3a:43:8b:07:84:b5:d1:28:6a:92:da:97:a2:16:10:60:32:8b:
36:04:95:e3:9b:3d:6c:50:85:d8:b5:35:1e:77:28:c0:f6:e5:
9c:06:8c:cb:34:42:ec:c1:a7:d4:29:12:e3:b2:7e:d7:5b:be:
37:4e:89:84:df:c7:2f:c9:2a:a3:ac:92:20:f7:63:b6:24:79:
1c:90:c4:b4:06:19:bf:d7:66:d0:e3:9f:dd:8d:18:93:bf:a2:
33:28:fa:71:06:b7:69:e4:7d:f5:71:30:7c:9b:14:a0:65:6c:
ba:84:e9:1a:47:4e:8f:5e:fa:84:a6:9c:04:46:29:0e:9d:04:
65:d0:85:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:39 2026 by rpki-client