Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier: D8M1deqLyOvPM9Fogft9QSr0Ucy+VQPdFi0uLaC6xeQ=
Subject key identifier: AE:A2:62:E8:8C:5B:82:FE:2D:D6:1F:EA:1D:69:47:1D:BB:77:A6:1B
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial: 019E1E6C2772271B63D3BA429B727A5E767A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number: 190C
Signing time: Tue 12 May 2026 23:01:04 +0000
Manifest this update: Tue 12 May 2026 23:01:04 +0000
Manifest next update: Wed 13 May 2026 23:01:04 +0000
Files and hashes: 1: cAt58g0xkrFHt9-N3ZykhWH0ReM.roa (hash: zJIgtJYw+ptpKpZht1FAofTALod8Sw1aXf2YLrLjs1s=)
2: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: Se3iILf8iHlhZm/yWLZUCcaGJZJP+XgADfbjW+BrRlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:27:72:27:1b:63:d3:ba:42:9b:72:7a:5e:76:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Validity
Not Before: May 12 23:01:04 2026 GMT
Not After : May 13 23:01:04 2026 GMT
Subject: CN=aea262e88c5b82fe2dd61fea1d69471dbb77a61b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:aa:14:a0:bb:65:94:4c:64:5a:85:7d:a9:87:
0f:53:e2:e6:e9:3a:53:73:f7:a1:0f:22:09:b1:e4:
7f:02:71:cd:4e:74:57:0c:0a:6e:2b:5e:43:27:7e:
c4:ba:82:27:53:6b:33:a8:f6:51:a4:c3:67:d8:dd:
ff:07:4e:9f:af:53:74:e0:3b:e8:4e:a5:19:c7:f2:
44:2b:b1:76:63:5c:8f:75:d8:d9:55:67:2f:e3:e6:
80:5f:fa:02:96:16:dd:c6:67:35:d5:d0:20:b3:13:
aa:8a:fb:65:63:45:07:1c:e5:98:fe:4e:ce:7e:bc:
84:d9:0b:f2:da:7b:98:f6:f9:89:f1:ed:63:33:fe:
b1:21:7c:aa:8c:54:50:c9:59:a2:1a:ea:48:4b:8d:
ea:6f:b3:93:bd:ef:d1:3d:9a:88:8b:cc:2f:6b:c8:
18:66:60:06:fa:71:56:77:ff:80:14:24:aa:f3:b7:
b3:7f:1a:2f:20:77:90:cf:db:a2:c6:41:93:8e:dd:
a4:69:60:a5:9c:6d:8c:f4:12:76:6a:26:1e:16:2f:
8e:ce:7a:70:0b:e3:48:ae:91:a0:2c:e9:67:4c:0b:
eb:c1:d7:51:8a:fb:45:1a:1a:fb:5f:32:3a:54:80:
29:d9:6e:51:d6:82:72:06:25:90:fc:73:b2:e1:34:
5e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A2:62:E8:8C:5B:82:FE:2D:D6:1F:EA:1D:69:47:1D:BB:77:A6:1B
X509v3 Authority Key Identifier:
keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:94:dc:2d:bc:94:45:ee:79:de:b1:4d:91:37:57:fd:03:e4:
bd:11:ed:a5:25:af:f8:10:b5:28:44:01:be:c2:69:48:f5:8b:
f6:0f:09:89:ad:c2:87:9f:07:6b:fe:76:0f:72:61:83:49:ed:
04:f9:65:b6:88:8e:43:7c:94:f4:05:29:b6:52:8d:61:36:52:
e7:85:6f:91:5c:62:7a:6c:48:94:ab:29:f4:34:84:a8:e8:4a:
be:a3:dc:76:c7:14:0d:f7:b0:46:e5:29:3c:f1:57:df:a8:61:
6e:a4:34:e4:92:be:39:92:f9:8b:d3:9b:bb:5a:b0:63:71:77:
a1:ab:9f:2c:0e:19:f2:9a:77:e7:c1:74:4c:d2:df:6e:18:90:
67:2c:8c:81:c5:5d:e5:37:85:8b:7d:cf:35:6e:7c:7e:87:9c:
74:3b:6c:5a:ed:ae:5d:ec:7c:18:f1:a5:6a:9f:c3:64:52:e3:
5f:a0:26:ea:63:0b:8e:4e:9a:ac:91:9d:89:a6:9a:e9:b7:bc:
b3:38:45:3c:72:1b:c9:b5:64:5b:16:d8:31:9b:c0:ef:f9:2d:
7b:2e:36:ea:9e:6d:bc:60:8a:b8:11:d7:c6:aa:c8:cd:d8:11:
fc:59:eb:df:da:fb:c6:a1:e0:17:84:fd:fa:40:cc:ec:ed:a2:
fe:03:53:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:13:41 2026 by rpki-client