Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: X+NPhR0mlvfGlSMtjV7oUcgEKMLHkElKx2llhehNdVg=
Subject key identifier: 7D:7A:C6:90:2C:B9:09:D1:2F:81:88:64:44:C4:9F:B1:68:BC:71:23
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 019DA41CD82F5F4AA3B1E152CE7CDAD85A47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 1858
Signing time: Sun 19 Apr 2026 05:00:46 +0000
Manifest this update: Sun 19 Apr 2026 05:00:46 +0000
Manifest next update: Mon 20 Apr 2026 05:00:46 +0000
Files and hashes: 1: 9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa (hash: tKJRFaY2YcR7s8GJcJFATvbLWJiSSXElLCi1btrAeAw=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: h/g0C2yyICRt6/qfbC6CD9uMzTxFHn0xK0NRzYT97Lw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1c:d8:2f:5f:4a:a3:b1:e1:52:ce:7c:da:d8:5a:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Apr 19 05:00:46 2026 GMT
Not After : Apr 20 05:00:46 2026 GMT
Subject: CN=7d7ac6902cb909d12f81886444c49fb168bc7123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f2:ce:02:8b:da:06:3c:fa:80:bc:50:82:11:
ba:fe:dd:55:00:ae:e6:ee:8a:be:43:6c:e3:54:00:
d2:4f:31:81:bc:6a:8b:84:1b:ad:7b:32:1e:5c:d4:
7a:20:b7:5a:29:13:c3:74:68:7e:f6:3a:ba:e7:4b:
c1:d6:1f:68:2e:c8:a3:16:57:da:78:c0:78:29:28:
34:ff:cb:ee:ba:8b:ea:9f:17:36:eb:b9:40:58:ab:
2a:c7:23:13:0b:c7:cb:80:1b:b3:66:5c:b3:ba:e7:
8e:91:3e:ac:0c:43:e9:d7:c7:86:6c:d0:7e:39:78:
05:0a:3a:df:1f:d8:df:99:1c:1a:62:eb:fa:c1:e4:
1b:38:cc:d7:f2:2a:9a:13:58:27:dd:4d:56:0a:4c:
1d:65:8e:60:10:b0:98:9d:4b:d4:22:64:20:a8:07:
d5:e0:ec:63:0e:73:1a:e1:cf:dd:63:5a:53:00:e5:
af:f7:14:84:ec:d6:5a:93:a4:07:02:0b:12:e1:56:
d2:ed:9e:a9:49:0a:64:6d:ab:83:96:ce:ec:1e:55:
14:1a:24:fb:42:20:2b:d0:79:56:87:ad:1c:51:10:
f5:41:bc:82:45:4a:15:8b:dd:b4:41:7c:4a:82:04:
a4:c1:ba:18:18:00:fe:35:29:e4:61:35:06:6c:f7:
ea:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7A:C6:90:2C:B9:09:D1:2F:81:88:64:44:C4:9F:B1:68:BC:71:23
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:dd:95:b3:c7:92:07:85:2f:a7:66:3f:30:80:6e:79:12:2c:
74:10:08:8c:3d:81:35:65:94:de:53:67:4c:97:d8:15:1e:13:
c1:61:66:26:92:f1:26:3e:ad:9b:44:b7:4d:2b:f2:22:ad:73:
50:5f:8f:c2:f8:71:36:68:84:1b:f6:dd:37:5e:b4:c2:44:27:
04:14:64:5d:16:1e:72:8e:bc:9d:62:02:13:58:1b:bd:a6:7a:
c2:40:8a:b2:9e:be:c2:e3:91:13:db:c2:de:38:c8:a1:06:a7:
fb:ff:86:c2:9a:00:3f:d6:e7:d3:c4:f0:97:3b:22:31:ce:70:
49:c6:b3:4e:f2:cc:88:7f:8d:4e:4f:9b:b8:6b:13:76:40:6b:
34:c2:c4:f1:0e:4a:2a:39:41:db:6a:8d:b4:8b:af:89:f9:c7:
5e:89:42:56:7d:b5:03:b7:ee:9b:b1:87:e5:7d:d2:b5:74:dc:
0e:d7:3b:e7:23:62:1e:24:af:13:fd:81:5c:b5:a0:1f:cc:a8:
5f:ba:9e:7b:d6:2e:12:0e:f1:e4:75:8e:48:f3:24:7a:15:bc:
51:7a:2a:cd:ca:fd:26:1d:70:8a:2a:ba:fa:87:17:3c:f7:0e:
d7:c4:bb:f9:65:1e:16:31:93:5f:c0:cc:1c:1f:4b:3d:ba:78:
be:db:d9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:49:57 2026 by rpki-client