Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier: c64sQ2eHg6biNe9oXJJSdqPQjMHo3Ywse0b7YqG1YDw=
Subject key identifier: EB:8E:85:40:74:BF:3D:FE:11:8C:4E:28:AF:CF:09:27:E4:FD:0D:64
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial: 019E31BC0C9E54D69B748FCB54ED1A775AA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number: 1916
Signing time: Sat 16 May 2026 17:01:07 +0000
Manifest this update: Sat 16 May 2026 17:01:07 +0000
Manifest next update: Sun 17 May 2026 17:01:07 +0000
Files and hashes: 1: cAt58g0xkrFHt9-N3ZykhWH0ReM.roa (hash: zJIgtJYw+ptpKpZht1FAofTALod8Sw1aXf2YLrLjs1s=)
2: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: Y5F0sjn0qs6H8DGK1rNHUISLWieKVOlMNho1ozCEqoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:bc:0c:9e:54:d6:9b:74:8f:cb:54:ed:1a:77:5a:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Validity
Not Before: May 16 17:01:07 2026 GMT
Not After : May 17 17:01:07 2026 GMT
Subject: CN=eb8e854074bf3dfe118c4e28afcf0927e4fd0d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:8b:7b:98:ae:e2:f3:e2:46:2a:ab:cb:4a:dc:
01:b9:94:34:fc:1e:c7:26:c7:56:64:80:67:13:10:
d2:56:9d:bf:c7:72:ad:a7:2d:a9:15:cb:a7:58:6f:
cb:1b:33:5d:82:30:cc:30:29:0f:20:57:2c:73:2e:
c4:36:d9:92:b1:ae:b1:37:84:5b:f5:c6:da:94:86:
cb:fe:0c:f2:09:3b:2a:16:10:4a:c7:7f:1e:94:84:
5a:f2:4e:d4:1d:17:77:02:b4:d7:89:15:02:91:38:
2d:17:cb:ba:35:c8:db:98:7f:69:dd:2c:6f:d5:79:
84:cb:f8:2a:fa:56:7e:54:45:22:29:23:84:39:c2:
b1:a9:3c:a0:23:3d:54:e7:38:6f:92:70:c1:37:35:
b4:35:34:a7:7d:b6:99:e3:06:ff:4c:bc:87:33:6f:
a5:37:5e:1a:b9:76:9b:07:f3:ad:53:fd:48:79:56:
46:ee:0a:f6:8d:6b:a2:89:98:1c:ad:69:b5:ad:84:
ba:b8:bb:f4:9b:09:78:d1:bf:70:ca:8c:47:67:a2:
a0:c7:73:5a:24:27:4f:8d:b1:44:3a:54:41:90:28:
f0:ed:06:ba:81:d0:75:0a:24:cc:ea:7e:60:7b:7d:
a2:44:5c:c4:de:1b:9c:4b:f1:c4:30:0a:44:49:c2:
3a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8E:85:40:74:BF:3D:FE:11:8C:4E:28:AF:CF:09:27:E4:FD:0D:64
X509v3 Authority Key Identifier:
keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:d0:92:21:d2:84:71:17:0f:4b:29:d9:cd:c5:79:b6:98:5e:
d6:05:43:60:05:9f:ce:11:b1:34:c3:d1:5d:ad:9b:1b:37:bc:
df:99:cd:dd:12:77:9a:9b:f6:98:52:f6:aa:87:d9:b8:c6:68:
65:bc:67:33:1c:28:8d:f2:34:0b:e4:ad:58:06:7f:9c:1b:a5:
a3:4c:f4:d3:55:7c:d3:fc:75:ea:35:7e:44:02:17:70:18:76:
a9:2b:1c:a5:9d:07:a4:0a:0e:eb:2c:5c:2e:9b:68:ef:c5:c5:
37:16:d5:74:b9:da:49:0d:89:7a:48:15:0a:a5:1b:1c:19:3b:
c0:36:af:8c:b9:ca:1f:c1:e2:40:78:7e:02:b0:ec:a5:c6:9a:
fc:8c:0d:75:41:bc:91:32:c6:c2:d7:13:ae:97:5e:6a:8a:55:
d6:c3:8e:7d:72:25:30:3d:b3:20:a0:60:8f:28:60:6a:66:72:
a2:76:e9:63:61:0a:89:2d:de:c6:3f:c9:b6:48:91:48:f5:d9:
ec:be:7f:2d:44:08:0e:63:b6:ab:b0:9d:63:54:0e:58:5a:b7:
2f:f3:69:32:c3:51:50:ee:46:7e:4d:51:90:8d:a0:04:3a:a8:
b5:d5:65:7a:9e:15:f8:a8:f9:aa:e7:47:4c:83:2c:60:35:d9:
b6:64:71:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:00:53 2026 by rpki-client