Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier: f8MrSvwbjMkCwhOEmPBnZ+zNk3a9IfuG49n/xe+w9Uw=
Subject key identifier: 62:B1:93:B2:A6:C2:77:8B:15:A1:4E:49:31:8F:08:46:C6:AF:D6:4B
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial: 019E1E35A7BC250ECCC858952321086C447A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number: 08D7
Signing time: Tue 12 May 2026 22:01:33 +0000
Manifest this update: Tue 12 May 2026 22:01:33 +0000
Manifest next update: Wed 13 May 2026 22:01:33 +0000
Files and hashes: 1: CaBEFYDtaQzQxhyXo4MA7Dtx2rE.roa (hash: knYWc/a4bI5GtK7g0Qth1pZAN74E2q8jYjqFwaqxRKI=)
2: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: CPnYFPQFlalMd+fQqGNMDZhz7FBsfGl1T7A4UwY0Ek4=)
3: RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa (hash: xrR61qMY4oBctclJGvQvpdXymPubQyCDbVzByy1zses=)
4: atjpUn5m_olYo4VMnv5o9bZkp10.roa (hash: zhJgLfRaNhUfkrFUtufurP1akqxnjTREPo55ccYjvXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:a7:bc:25:0e:cc:c8:58:95:23:21:08:6c:44:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Validity
Not Before: May 12 22:01:33 2026 GMT
Not After : May 13 22:01:33 2026 GMT
Subject: CN=62b193b2a6c2778b15a14e49318f0846c6afd64b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a4:9e:26:21:77:c4:5b:79:3a:bf:f0:cd:9f:
30:a9:01:29:eb:c8:c7:be:ba:fd:8b:f7:42:55:00:
b2:95:1b:d1:e1:e4:79:0a:5b:ed:b2:c1:c3:b5:c9:
16:24:60:56:65:52:6f:bc:8c:fb:d2:ea:54:5b:fa:
10:72:8f:fa:d7:16:b7:dd:20:60:c4:6c:ff:9e:f8:
e0:ff:4c:0a:39:76:67:93:8c:e3:88:63:a6:28:7b:
9b:16:b8:40:9f:b7:3b:36:d8:7d:b1:e7:cb:c8:88:
c3:33:52:97:31:cf:f7:cf:e8:c0:fa:ed:40:e7:6c:
f2:9e:8a:e5:2e:86:da:06:e9:9c:33:5f:51:7e:8c:
5e:19:b7:9c:f0:6a:49:bd:3c:ba:de:dd:ec:97:ac:
76:e0:b8:4d:c0:a6:1b:71:a8:48:75:36:06:0a:6f:
80:e6:d4:29:d5:42:45:95:bb:41:58:eb:ce:06:aa:
a4:cc:59:89:b1:be:0d:2a:ab:8b:20:67:7e:32:e5:
be:98:ba:2e:55:9d:9a:cb:9c:a6:b0:5f:b7:60:e6:
61:97:09:59:d0:66:f6:64:56:d8:82:6f:29:45:a3:
06:01:f1:56:08:82:a6:87:07:86:77:bf:c9:53:96:
81:43:22:1c:b1:72:f1:7c:e2:7c:46:75:3a:63:7d:
62:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B1:93:B2:A6:C2:77:8B:15:A1:4E:49:31:8F:08:46:C6:AF:D6:4B
X509v3 Authority Key Identifier:
keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:da:49:da:27:14:cc:23:17:84:d5:13:d6:87:cd:ed:5c:8f:
6e:a0:bc:0a:48:c7:8d:be:e4:3c:53:67:ea:67:57:3b:5f:be:
89:71:7b:35:11:d7:58:9b:1e:f4:52:26:74:bc:2f:c9:12:c4:
61:0e:68:bc:bd:87:bb:06:9b:4c:99:da:68:33:d9:a9:ed:6b:
53:91:9c:bc:82:50:3b:65:3f:d8:1c:81:03:5e:a3:fc:90:22:
c8:0b:80:6d:49:a7:57:59:a1:44:b3:ea:3b:12:a8:00:27:92:
82:63:09:75:9d:c2:79:bf:98:fb:c9:b8:13:5f:91:42:b8:dc:
ad:93:04:4d:52:00:01:b8:ee:bc:67:07:b6:48:36:a3:c4:b3:
a6:92:d0:53:86:ef:46:11:48:df:6c:29:60:8d:27:96:3c:de:
7f:a1:3a:89:98:6f:96:af:7b:62:10:d9:e4:57:a5:66:84:19:
be:2b:69:ba:ab:87:c6:46:a5:a6:2f:79:40:74:02:bd:8f:3d:
5d:e3:a8:fd:a3:fb:47:0e:7e:d8:03:d0:c9:ac:f4:98:78:be:
a8:fd:ea:06:e0:55:77:cb:c4:dc:f3:6c:ab:1b:1f:1c:d5:2d:
27:6e:34:cb:70:d3:e0:f6:e6:db:97:19:d0:ab:f2:9a:6c:9d:
3a:0f:e5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:29:22 2026 by rpki-client