Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
File: chprP17V-3TQNRIhZRPEyB7-Hlw.mft (raw, json)
Hash identifier: pWNNJebY+ScOALOGS1FdH1OfhCWXNTw0xcgT6+MfdHI=
Subject key identifier: 75:F1:D6:F9:EB:12:9E:B2:BF:17:69:D4:97:F0:50:9F:CF:8A:D5:F6
Authority key identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
Certificate issuer: /CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Certificate serial: 019D265F4D3716D2DA1DD296395C5893A969
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
Manifest number: 0F69
Signing time: Wed 25 Mar 2026 19:01:12 +0000
Manifest this update: Wed 25 Mar 2026 19:01:12 +0000
Manifest next update: Thu 26 Mar 2026 19:01:12 +0000
Files and hashes: 1: 4FtzsbmBRCz-KN7S54pRuO4IZrM.roa (hash: GUqsJWH9+kzctFjpZP6HQaUNoQFv8yqD7sokvUur02k=)
2: chprP17V-3TQNRIhZRPEyB7-Hlw.crl (hash: dmrUoi1CdVD3wcUHfPke+EnWXSXh8d6Y8AwM+vat7Bs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:4d:37:16:d2:da:1d:d2:96:39:5c:58:93:a9:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c
Validity
Not Before: Mar 25 19:01:12 2026 GMT
Not After : Mar 26 19:01:12 2026 GMT
Subject: CN=75f1d6f9eb129eb2bf1769d497f0509fcf8ad5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e1:4f:d1:4c:70:6b:d4:e7:04:5c:f6:13:d4:
55:6d:b8:66:35:ca:64:86:75:ea:66:96:cf:28:be:
95:4b:7b:86:55:0d:91:c2:c6:fe:7b:f7:73:3e:b7:
f2:12:75:f4:71:f9:79:b7:30:b2:7a:5e:3d:4d:10:
dc:f2:a0:c5:a2:cf:20:7e:e8:49:87:0f:da:5c:68:
40:35:61:a9:1e:95:40:82:5d:38:69:18:6b:bb:84:
86:97:14:c0:1d:dc:e7:a1:63:d6:87:dc:be:d2:62:
17:58:f2:a8:10:50:ae:ff:f4:49:3b:51:2b:5d:7a:
63:30:c6:30:96:96:c1:64:9f:85:72:3a:27:71:96:
78:64:70:4f:72:46:68:73:c7:80:3a:2b:aa:87:11:
03:d7:76:99:80:9e:c1:6d:b3:8d:8e:7b:d9:a8:3d:
cf:e6:b5:43:9a:26:28:62:12:49:71:6a:d8:22:b6:
1c:fb:9f:0b:ed:58:26:eb:3b:6c:1a:e9:f6:0a:ec:
bb:3d:3a:d8:b6:59:0a:8a:76:9e:64:6a:21:9e:ea:
3f:25:51:08:10:00:0b:47:ca:b9:4e:b8:83:32:ed:
02:79:32:c1:3a:97:a5:b8:c8:fd:e3:95:ef:58:14:
ff:84:2f:a1:05:70:7d:a3:b4:95:36:b7:67:85:72:
eb:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F1:D6:F9:EB:12:9E:B2:BF:17:69:D4:97:F0:50:9F:CF:8A:D5:F6
X509v3 Authority Key Identifier:
keyid:72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:cd:de:0b:82:81:5b:d0:6d:3f:47:a9:10:ee:20:4e:3c:ee:
b3:00:13:cf:33:dc:38:8a:57:82:03:5e:f4:93:59:0f:54:48:
85:2c:bc:1a:05:12:22:5b:23:c3:0c:87:aa:29:ad:05:79:ce:
7d:d0:e7:86:69:c4:51:32:94:50:d5:13:2e:66:be:d0:25:b7:
33:84:3d:25:01:7f:b5:1b:9b:08:08:cd:2e:df:06:a4:20:d4:
4c:74:ee:75:04:a1:8c:b0:a0:51:d1:5a:ae:74:04:ad:92:ac:
0c:9e:58:e2:49:39:80:df:7c:25:ac:51:c8:b3:90:4b:dd:e5:
8b:c2:e6:f1:a8:3a:2c:7f:e0:ff:e3:44:1e:05:3b:a4:ff:b2:
b1:ab:e9:91:f2:95:bf:ca:70:40:29:c3:68:3e:ab:91:d4:90:
55:da:ce:63:14:85:20:1b:7d:05:df:3d:57:83:55:e3:74:95:
61:cc:dc:4b:de:de:e0:6f:54:af:47:30:e6:6b:d8:a5:aa:59:
ba:33:ce:14:b6:f1:e1:e8:f4:3c:74:be:d2:6f:ad:8e:a2:7a:
e0:f8:7b:21:c7:19:e0:f5:38:2a:d5:42:c5:5d:1c:fa:a9:ad:
cc:19:a1:f7:1d:4e:cc:f1:0c:bb:30:9c:f3:69:01:e2:14:e8:
fb:db:2f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:46 2026 by rpki-client