Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: vqQjf2M/3F1khxvSSFCvLB4eYjr8StvwTv0i2A/ayMA=
Subject key identifier: 30:A4:4E:D3:B9:17:FD:1E:23:9E:A2:CC:5B:25:30:40:30:12:F7:AD
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 019D265F666082A6E108DE43EE2BFA637693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 1882
Signing time: Wed 25 Mar 2026 19:01:19 +0000
Manifest this update: Wed 25 Mar 2026 19:01:19 +0000
Manifest next update: Thu 26 Mar 2026 19:01:19 +0000
Files and hashes: 1: O-DHQ-d3mfAOgq3yuIWV4iVv_x8.roa (hash: dSSiaDVSWahBigya5YVNu9L0fcAePIWgFzlkT6f9BmA=)
2: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: 8mbDf4ZHdrX3zDuDX3zdqzlOUvLCPFG02aK5Ef/SYJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:66:60:82:a6:e1:08:de:43:ee:2b:fa:63:76:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Mar 25 19:01:19 2026 GMT
Not After : Mar 26 19:01:19 2026 GMT
Subject: CN=30a44ed3b917fd1e239ea2cc5b2530403012f7ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:12:9c:c7:b8:40:da:74:c8:76:57:50:54:e6:
55:2d:64:b9:9b:e5:1d:4c:f3:bb:c9:bc:14:9e:20:
cd:c8:ea:ad:1e:93:c6:e5:48:a5:e5:a2:69:0c:7f:
6c:f9:58:c3:a5:90:ad:a8:43:53:9c:ad:10:28:c2:
9d:d2:9c:a2:0e:c3:31:0a:d6:85:ee:1b:ab:95:61:
ca:a0:07:94:af:35:e4:58:ac:fe:15:de:9c:66:ce:
9f:e3:3e:09:59:9e:fd:9f:37:4e:be:37:c4:e0:77:
05:59:2d:6c:7b:a1:e8:4c:9c:8c:ae:c7:60:70:db:
6b:b9:2a:34:61:1e:5b:da:2b:6a:f2:72:a7:a5:a6:
e3:61:fa:21:0b:13:23:8c:8d:ea:4d:6b:49:53:c4:
f8:27:62:b6:d4:3a:03:b3:de:8d:f8:c0:67:3d:ae:
d5:d9:73:36:61:52:ad:ee:ed:ca:68:7d:90:ca:fb:
ba:37:48:b1:ac:d6:5d:87:7d:1d:a5:bd:c6:b3:31:
80:fc:92:f9:0b:e5:22:cf:d7:ef:bb:a9:f1:81:80:
7c:bb:81:2b:63:a5:07:c5:50:8d:d3:45:00:27:93:
38:ac:d7:1e:b8:b3:a2:c0:d4:3a:fe:58:39:ee:9d:
34:2d:d0:9c:8f:7b:9f:d2:bd:97:fb:59:7b:f5:0e:
29:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:A4:4E:D3:B9:17:FD:1E:23:9E:A2:CC:5B:25:30:40:30:12:F7:AD
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:5f:95:b2:3f:6a:0c:45:cf:9f:b7:22:a3:fe:86:a0:7f:2c:
b4:0b:60:14:31:c5:21:b2:16:81:08:2a:4a:04:10:a0:60:05:
6b:02:dd:a3:46:52:17:52:27:3d:8f:a3:55:58:9c:28:61:e8:
20:9d:3d:8c:e9:b5:91:5b:8c:49:8a:d2:27:1c:ca:34:cf:1d:
dd:7d:e8:72:93:1c:db:a5:16:90:45:f4:12:cd:90:d9:c1:fc:
d7:45:5f:6d:8c:b6:3e:48:7c:db:51:0d:97:7b:7a:14:23:25:
b4:20:25:5d:07:f1:66:13:94:e1:d0:6c:dc:bf:6b:a8:04:bb:
90:d3:f9:12:1e:74:28:a4:95:77:91:f0:48:fa:f9:58:c0:51:
34:9b:58:80:e3:08:0a:75:6a:d4:f7:51:fc:e7:4b:ae:ea:42:
17:76:ba:0a:22:73:49:68:ab:9f:c2:48:16:ca:21:51:8d:c2:
3b:75:dd:45:91:56:f0:50:4b:b3:83:f5:10:58:9f:90:0f:0f:
ae:74:92:be:1d:51:20:1e:65:1a:74:1b:82:12:bf:6e:d4:84:
65:2f:25:aa:0c:32:ee:39:47:ad:28:a4:4b:83:49:70:b1:1e:
8d:8e:34:3a:e4:12:10:c0:f2:60:2e:03:d2:06:cd:42:ab:00:
91:50:ba:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:10:55 2026 by rpki-client