Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: W8Q/vSdUvi/Yb4SJgaHzEWQ/yxGlBg68cOEQVsml6og=
Subject key identifier: 66:89:88:2D:1B:F8:02:1D:F8:5C:6F:56:F4:60:60:A2:AD:46:B4:DC
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 019D2A72968535703CD529FBE94C52171629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 1819
Signing time: Thu 26 Mar 2026 14:00:45 +0000
Manifest this update: Thu 26 Mar 2026 14:00:45 +0000
Manifest next update: Fri 27 Mar 2026 14:00:45 +0000
Files and hashes: 1: 9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa (hash: tKJRFaY2YcR7s8GJcJFATvbLWJiSSXElLCi1btrAeAw=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: yDFuUIid1wHsb5Iq8YQjp6lE5mA/5lelDTzSSgazl/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:96:85:35:70:3c:d5:29:fb:e9:4c:52:17:16:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Mar 26 14:00:45 2026 GMT
Not After : Mar 27 14:00:45 2026 GMT
Subject: CN=6689882d1bf8021df85c6f56f46060a2ad46b4dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:b1:6a:3b:53:17:0f:4c:da:a7:7b:34:fe:9b:
b4:bd:8d:68:76:d6:2d:b7:30:a3:bb:c9:e1:71:22:
91:a6:8d:c1:60:9d:76:71:88:1d:d9:31:b2:34:e1:
d1:b4:c4:06:7c:ca:54:50:b3:b5:2f:51:b3:f5:fc:
9d:9c:21:a4:25:af:58:e8:aa:4d:0e:3a:c1:98:74:
f1:d1:0e:54:26:66:03:95:7c:47:0c:bd:21:ae:5d:
0b:3e:fc:9f:d9:46:e8:5d:c6:7d:61:6a:24:67:1b:
8f:53:d3:35:88:3f:54:10:2c:ae:7a:cb:38:a3:34:
74:6e:1f:73:f9:25:07:ad:81:9c:c3:d1:93:75:ae:
7f:44:27:38:66:d4:48:de:be:f4:3f:57:d0:e9:7c:
3d:08:d5:95:18:e7:01:de:2d:b2:ab:81:dd:d5:a4:
a4:4e:40:a9:a8:02:e0:6f:48:94:7d:7d:ec:91:a7:
cc:2b:03:e5:26:94:28:d6:8a:e2:14:4c:ca:4a:44:
97:cb:32:e0:d6:3c:00:53:51:34:b6:73:1b:02:a1:
f0:e6:e0:a8:20:0d:b9:4f:1b:60:a8:5b:0e:ab:dd:
1d:57:2e:01:6d:8a:34:c7:83:7a:da:50:18:f4:36:
54:42:d3:6b:c6:0d:6e:60:7a:f4:ef:43:bc:07:bb:
fe:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:89:88:2D:1B:F8:02:1D:F8:5C:6F:56:F4:60:60:A2:AD:46:B4:DC
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:4e:a5:e6:d4:02:eb:bf:e4:a1:2e:7d:6e:3e:aa:d4:53:49:
4c:01:7f:a9:9d:8c:46:e7:7d:6a:d7:86:f5:97:d2:ef:db:e4:
98:49:14:11:73:f9:fc:3c:ea:3f:65:ce:b6:3b:89:a2:42:cd:
e1:8e:d7:c4:ee:d1:ea:06:a8:01:63:0d:3a:ba:11:8e:6b:e2:
7e:d6:bd:90:e6:f6:d3:e4:be:4a:4b:b8:2d:a4:05:1a:3f:62:
7c:e7:05:04:88:36:47:ce:fa:4b:bc:14:30:45:e4:b8:fc:95:
63:51:e4:45:76:90:81:c5:c6:97:34:1d:19:35:60:84:8c:0a:
3a:1c:8b:e4:aa:9e:22:b9:20:dc:f1:b7:51:df:f9:4b:b3:af:
51:94:57:9c:89:1a:35:da:f2:aa:9d:17:f4:ae:f1:eb:2b:47:
77:a5:ec:51:a3:b1:a9:44:b0:ea:42:b5:8a:32:e8:a6:23:95:
23:5d:44:f0:43:58:c1:77:1f:73:f8:b7:fc:6a:9e:9e:f7:fc:
81:cd:aa:16:9d:fe:a8:55:f2:3f:24:23:19:47:e0:94:58:31:
50:7e:d0:74:e4:f0:cf:0c:eb:71:bd:ee:23:0c:fb:b5:65:fd:
52:48:23:ff:92:ba:ac:a4:67:b6:2b:d8:22:a6:1c:1d:cd:e6:
9e:6c:cb:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:40:29 2026 by rpki-client