Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier: IsH6H4n+Bx/w7Rb+D/+3PISHXDkfzYrPiEwo5WwiwpU=
Subject key identifier: 9A:C0:F5:7C:0C:CD:C6:A4:AC:67:06:EC:BF:5A:42:A2:11:70:86:17
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial: 019D2703DD50CABFD8449525775BCA633AF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number: 0857
Signing time: Wed 25 Mar 2026 22:00:57 +0000
Manifest this update: Wed 25 Mar 2026 22:00:57 +0000
Manifest next update: Thu 26 Mar 2026 22:00:57 +0000
Files and hashes: 1: CaBEFYDtaQzQxhyXo4MA7Dtx2rE.roa (hash: knYWc/a4bI5GtK7g0Qth1pZAN74E2q8jYjqFwaqxRKI=)
2: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: a/uuIzVK6bCLLgFUUNY9TGXuSbg9biBFK3Bu6IotC2w=)
3: RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa (hash: xrR61qMY4oBctclJGvQvpdXymPubQyCDbVzByy1zses=)
4: atjpUn5m_olYo4VMnv5o9bZkp10.roa (hash: zhJgLfRaNhUfkrFUtufurP1akqxnjTREPo55ccYjvXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:dd:50:ca:bf:d8:44:95:25:77:5b:ca:63:3a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Validity
Not Before: Mar 25 22:00:57 2026 GMT
Not After : Mar 26 22:00:57 2026 GMT
Subject: CN=9ac0f57c0ccdc6a4ac6706ecbf5a42a211708617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:de:9b:97:73:0c:ea:a9:ab:14:79:99:30:c9:
51:14:17:f3:7b:76:55:96:6f:e8:2b:7c:0e:cf:02:
4b:13:75:64:d2:26:a9:fb:3f:26:85:2a:e4:8b:3b:
27:2f:15:b8:e2:13:2b:b0:b8:2c:79:ab:56:bd:e2:
ba:da:7b:00:20:09:8b:22:d1:57:bc:0f:b6:9c:bc:
82:29:b1:d8:9e:f8:4b:ec:01:4a:a8:9b:ba:f5:ee:
51:b2:5f:32:10:21:6c:a1:db:d7:bb:8c:a1:d6:10:
00:68:34:ae:b7:15:21:0e:b7:98:1b:d1:42:60:8e:
28:71:69:39:a6:1f:42:21:95:17:64:12:f8:ef:ee:
d7:66:6c:7f:67:9f:f3:a0:51:13:e8:d7:57:61:90:
29:2a:2d:9e:ee:a3:d4:31:3d:45:0c:72:87:07:ed:
02:29:f4:0b:a8:ac:e4:c0:66:a8:d0:91:bd:49:f9:
05:c5:1e:dc:e4:ab:40:b4:19:ad:b5:56:92:96:3b:
5f:23:d1:d0:75:b0:bc:4a:fe:a9:75:08:9d:79:ef:
9e:2d:33:7f:e0:b8:bd:c7:d8:64:57:87:41:1f:f2:
99:a6:c4:80:76:ff:75:7f:26:da:fa:97:be:11:04:
ff:18:9c:2e:7e:1f:39:9f:c8:46:6b:91:61:47:34:
3d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C0:F5:7C:0C:CD:C6:A4:AC:67:06:EC:BF:5A:42:A2:11:70:86:17
X509v3 Authority Key Identifier:
keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:09:10:41:29:69:54:91:81:59:28:5b:d3:ae:9a:93:75:04:
f3:82:55:d3:ee:08:e0:e2:51:5e:61:2e:eb:61:e9:ff:29:a4:
68:0e:31:81:d4:c4:2e:4e:15:92:aa:89:6a:f9:5a:13:cc:1c:
e5:ea:50:a3:1f:11:a0:bd:ed:f9:6b:36:35:f3:48:68:4d:79:
60:56:d2:4a:6a:e8:22:85:74:64:b1:c2:a4:dc:93:76:95:d3:
df:87:ec:44:19:8c:d9:37:39:fb:e6:bb:76:f9:62:90:d6:69:
cc:e1:34:ab:bb:e7:bc:b9:04:6b:1d:f6:72:c5:a3:e7:e3:dd:
98:21:0e:42:d0:b8:57:7a:7a:0d:50:9f:8e:47:bd:10:9a:76:
a0:21:5b:25:c7:77:01:a4:04:1f:78:c2:86:c7:35:c5:dc:96:
06:11:f9:56:a7:ea:94:a0:18:75:55:14:27:5d:3a:1d:d7:ae:
98:c2:81:10:32:10:81:58:75:4d:81:53:6a:77:ab:95:44:ff:
dc:97:b8:36:59:1b:a5:88:73:4f:0d:d6:ee:d1:58:00:ff:51:
f8:2c:14:92:c7:73:c6:4a:30:75:b5:f5:55:46:42:7c:d7:03:
3d:b5:3c:72:b1:cc:66:6f:3f:bb:0a:b5:c0:6b:e0:a4:2c:a2:
7b:0c:75:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:56:19 2026 by rpki-client