Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
File: aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft (raw, json)
Hash identifier: Jh8qg9+AvEa7+/G3cCL/9g6uYHQ2vr1jzLzLkrhaQvs=
Subject key identifier: F7:34:D8:C5:16:9A:61:5A:78:12:F6:90:D5:44:93:6D:BC:F8:DD:2C
Authority key identifier: 68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
Certificate issuer: /CN=6821c8ff0437f7edd829166fde03446f86109d80
Certificate serial: 019D2AA923258DE7587CE98F6CE600DF1B10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 15:00:20 +0000
Manifest this update: Thu 26 Mar 2026 15:00:20 +0000
Manifest next update: Fri 27 Mar 2026 15:00:20 +0000
Files and hashes: 1: GtMCe24ngv6kwkwMfciDCRzIGbc.roa (hash: HPYG+bYgN4LrxtIhEXRuNsczF+K8PHsFJkbYTipolY0=)
2: aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl (hash: Yh1WhX6ht59Lz+Lv1hLB6Wt/UbDpbNh8CUQvDE+dRHE=)
3: wrOqy5HuCTVkCe5fRVTajU3ehvY.roa (hash: Fl62VKf9eEMW25X6taoDhAVNcBPYuEGUkuBrbI0k5Pc=)
4: zu9vON3GTVdkXcFBWXM21OtK-sY.roa (hash: oRLggeMjKA/oXwnbtC/44rxG30iQYGETUOL7zYRaXxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:23:25:8d:e7:58:7c:e9:8f:6c:e6:00:df:1b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6821c8ff0437f7edd829166fde03446f86109d80
Validity
Not Before: Mar 26 15:00:20 2026 GMT
Not After : Mar 27 15:00:20 2026 GMT
Subject: CN=f734d8c5169a615a7812f690d544936dbcf8dd2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:be:e9:be:f4:67:a1:33:eb:40:94:52:43:54:
96:ee:a7:73:1b:c2:f5:aa:10:33:af:9f:cf:21:72:
d8:a9:7f:6d:8e:6e:1d:13:53:b1:37:d5:48:ec:d2:
2e:06:45:0b:26:61:21:29:7c:a2:7a:8c:1d:6e:c7:
d2:3e:92:03:6e:4b:25:91:ce:9f:13:a7:e8:1f:f9:
22:99:e9:aa:fc:c3:fd:62:fc:99:ba:00:ee:aa:6c:
cf:97:0f:c1:81:e4:06:e1:ef:7c:ed:5e:4d:e5:53:
32:b7:08:1e:62:96:db:71:c3:ef:bc:64:2d:33:b8:
4f:d6:53:b2:b1:aa:1b:fb:16:70:ca:0b:ed:6c:f5:
86:6a:6a:19:45:40:0d:fb:ca:2f:01:75:6b:75:83:
b4:88:9f:5b:d4:fc:0e:74:c8:e0:88:45:66:e3:f0:
05:ad:98:57:ec:36:a2:4e:24:4c:fa:bf:0f:c8:74:
c8:ff:b9:0c:a8:d3:a5:ab:92:b3:8a:77:bd:e4:1a:
50:72:a7:f6:6a:10:df:cf:f8:c2:fa:84:2d:46:c1:
27:5d:7f:2a:b1:b4:2a:40:a8:fe:32:e8:ff:3b:60:
bc:71:3e:22:de:1d:c4:57:33:ab:28:d7:1f:65:b8:
de:50:1e:09:79:5d:f1:d9:8f:c6:8d:a9:df:0c:6a:
35:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:34:D8:C5:16:9A:61:5A:78:12:F6:90:D5:44:93:6D:BC:F8:DD:2C
X509v3 Authority Key Identifier:
keyid:68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:50:e9:2f:5b:58:83:ea:8b:cf:10:52:e9:73:c0:b1:b6:01:
64:32:3a:44:e8:45:96:d3:1e:b3:a0:66:2e:3a:5a:19:b4:31:
ba:51:c9:04:33:68:4f:f4:27:e3:c5:98:85:8e:db:f4:22:34:
1c:6a:f9:5d:91:ed:ce:c4:bd:b1:c4:ac:bf:7f:02:d8:bd:29:
13:32:80:48:3d:43:35:cf:a0:82:41:67:e0:94:b4:c7:d0:fa:
fe:d6:12:e6:cb:58:a8:9f:44:f5:86:81:73:4c:27:95:42:33:
fc:7e:4e:db:f7:e9:fe:43:cb:36:84:40:09:1b:ac:89:31:6c:
b7:29:f0:6e:45:e2:96:d9:a7:68:6c:d7:3b:d5:54:eb:6e:15:
41:f8:22:90:db:16:25:af:b0:a3:64:f0:65:3e:4b:61:c6:b7:
dd:fa:95:a3:f7:59:14:63:8a:60:82:dd:0c:1c:6d:51:0c:34:
78:b1:e2:34:a6:ec:c7:be:e7:ed:f0:39:12:8e:d9:d9:c0:0b:
53:f0:4a:22:a9:d1:3e:15:a8:fb:8f:f0:d4:66:8b:a8:6a:49:
55:99:dd:ab:fd:fb:95:d8:20:13:ad:cd:89:16:bd:54:40:c1:
c9:52:99:cc:91:6b:a1:29:e6:dd:d2:7d:47:a1:3e:05:c6:34:
a4:74:3b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:03:36 2026 by rpki-client