Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier: 5N9zeBwf0KWuHcEmVoOzVwjmSir6NMG3xvcARSdD3qs=
Subject key identifier: CC:A7:BB:24:04:76:34:F4:B6:26:86:ED:6A:BC:09:92:CC:1E:07:19
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial: 019D2AE103D8E1BFA57407796BF1EB2B3766
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number: 0859
Signing time: Thu 26 Mar 2026 16:01:22 +0000
Manifest this update: Thu 26 Mar 2026 16:01:22 +0000
Manifest next update: Fri 27 Mar 2026 16:01:22 +0000
Files and hashes: 1: CaBEFYDtaQzQxhyXo4MA7Dtx2rE.roa (hash: knYWc/a4bI5GtK7g0Qth1pZAN74E2q8jYjqFwaqxRKI=)
2: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: S15H45d9DVGsoQ1ZKorLkdHpt0rMxgn0Yv//z1L6rZY=)
3: RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa (hash: xrR61qMY4oBctclJGvQvpdXymPubQyCDbVzByy1zses=)
4: atjpUn5m_olYo4VMnv5o9bZkp10.roa (hash: zhJgLfRaNhUfkrFUtufurP1akqxnjTREPo55ccYjvXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e1:03:d8:e1:bf:a5:74:07:79:6b:f1:eb:2b:37:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Validity
Not Before: Mar 26 16:01:22 2026 GMT
Not After : Mar 27 16:01:22 2026 GMT
Subject: CN=cca7bb24047634f4b62686ed6abc0992cc1e0719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0f:1d:88:a4:84:52:fd:b2:60:d0:a4:be:fa:
ba:49:b0:c6:b1:0e:72:4c:ab:85:96:d6:fd:ca:5a:
28:43:db:fc:2f:38:f2:58:ae:4e:9a:2c:f5:d3:2b:
83:e7:6c:be:6c:b0:57:6e:79:dc:e9:5f:10:8f:99:
2f:7d:e0:df:cd:38:28:e2:98:27:3f:10:3b:f9:c0:
f6:0b:84:c5:bc:38:ff:96:4b:4f:9c:3a:e7:f3:12:
43:32:ca:f9:d8:a5:66:98:aa:bf:cd:6e:35:aa:5a:
33:3d:30:59:da:51:f3:b7:82:f7:ec:bb:01:8b:74:
cd:98:38:aa:93:55:b3:b6:c7:3d:28:22:83:97:69:
33:e4:cd:38:81:94:44:d0:15:ec:99:ef:6d:2e:ad:
bb:ef:db:2f:d3:0a:18:c8:5d:db:e2:8c:b5:08:ea:
4c:b5:37:50:e6:c0:ec:5e:72:b5:0d:ab:c2:3c:a4:
cf:45:03:8e:3a:85:60:0e:78:d5:5e:98:ec:08:85:
01:1a:e4:7b:1a:58:2d:8d:74:13:5a:f9:55:6e:e4:
e0:dc:05:b0:a8:95:5f:b1:85:25:c8:bf:3d:f1:fd:
f7:54:80:d0:ef:83:1d:9c:7a:90:c6:2a:d6:59:12:
d2:91:78:7e:21:f3:c0:f5:ba:c5:f0:38:98:51:74:
67:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A7:BB:24:04:76:34:F4:B6:26:86:ED:6A:BC:09:92:CC:1E:07:19
X509v3 Authority Key Identifier:
keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:7e:58:21:af:1e:31:82:bc:23:56:36:ac:a4:62:08:29:d4:
d6:1f:31:6d:b9:57:8e:59:e4:e6:26:21:06:08:cd:7c:fb:58:
61:d2:7e:30:12:6c:e2:29:c8:8b:76:b7:ac:4c:3d:8c:05:83:
b2:48:fd:d1:2b:5f:22:78:11:3f:93:81:86:fe:78:0b:17:18:
04:f1:61:80:87:9e:01:bd:1b:a4:0f:08:23:04:2f:f8:09:bb:
a3:fd:cb:51:2d:d9:68:74:85:7b:18:37:2e:b1:bc:bf:c5:76:
20:b6:0b:ac:21:8b:fc:1d:ba:88:4e:6a:06:e2:e9:14:2b:d1:
d8:ec:45:30:41:5b:e2:4f:46:54:97:42:b7:43:37:53:23:02:
b3:6e:c0:f7:27:37:72:d7:ce:5d:a0:a8:37:4a:df:ab:cb:0e:
14:4b:50:c9:6e:3e:5b:ca:1c:f7:c2:b0:29:2b:ee:c6:40:63:
7b:ec:60:61:06:d8:0f:37:12:10:e8:f7:5c:c8:e2:48:e7:2b:
74:1e:36:7d:9e:f5:0f:f9:d7:7e:92:d2:13:04:51:1e:e4:86:
34:2d:7a:45:b0:53:ca:bf:58:86:89:8c:1a:0c:bd:20:23:92:
49:3d:56:ad:fc:d8:8d:fa:c2:9b:12:4b:7b:2b:b3:01:86:3d:
2f:0a:01:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0q4QPY4b+ldAd5a/HrKzdmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmZDA4NzVjZDAwNTFkMGMwOTI1YWNhMDQxMDM0ZTc4NDBh
Njc3MGIwHhcNMjYwMzI2MTYwMTIyWhcNMjYwMzI3MTYwMTIyWjAzMTEwLwYDVQQD
EyhjY2E3YmIyNDA0NzYzNGY0YjYyNjg2ZWQ2YWJjMDk5MmNjMWUwNzE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQ8diKSEUv2yYNCkvvq6SbDGsQ5y
TKuFltb9ylooQ9v8LzjyWK5Omiz10yuD52y+bLBXbnnc6V8Qj5kvfeDfzTgo4pgn
PxA7+cD2C4TFvDj/lktPnDrn8xJDMsr52KVmmKq/zW41qlozPTBZ2lHzt4L37LsB
i3TNmDiqk1Wztsc9KCKDl2kz5M04gZRE0BXsme9tLq2779sv0woYyF3b4oy1COpM
tTdQ5sDsXnK1DavCPKTPRQOOOoVgDnjVXpjsCIUBGuR7GlgtjXQTWvlVbuTg3AWw
qJVfsYUlyL898f33VIDQ74MdnHqQxirWWRLSkXh+IfPA9brF8DiYUXRnWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMynuyQEdjT0tiaG7Wq8CZLMHgcZMB8GA1UdIwQY
MBaAFB/Qh1zQBR0MCSWsoEEDTnhApncLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMt
ZTA4MDJmNDc0NDQ0LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMtZTA4MDJmNDc0NDQ0
LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZH5YIa8e
MYK8I1Y2rKRiCCnU1h8xbblXjlnk5iYhBgjNfPtYYdJ+MBJs4inIi3a3rEw9jAWD
skj90StfIngRP5OBhv54CxcYBPFhgIeeAb0bpA8IIwQv+Am7o/3LUS3ZaHSFexg3
LrG8v8V2ILYLrCGL/B26iE5qBuLpFCvR2OxFMEFb4k9GVJdCt0M3UyMCs27A9yc3
ctfOXaCoN0rfq8sOFEtQyW4+W8oc98KwKSvuxkBje+xgYQbYDzcSEOj3XMjiSOcr
dB42fZ71D/nXfpLSEwRRHuSGNC16RbBTyr9YhomMGgy9ICOSST1WrfzYjfrCmxJL
eyuzAYY9LwoB7w==
-----END CERTIFICATE-----
Generated at Fri Mar 27 01:11:36 2026 by rpki-client