Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: SekS67tU6VjBT2q8vmDijH/D6/3oLdWUtkzm30IpCEY=
Subject key identifier: EE:8E:FB:0B:3E:DB:6B:12:B7:E7:AF:7F:04:16:91:71:AB:4B:07:09
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 019EC3DCB0407744B1CFDD42B2A7BD5D943B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 18ED
Signing time: Sun 14 Jun 2026 02:01:20 +0000
Manifest this update: Sun 14 Jun 2026 02:01:20 +0000
Manifest next update: Mon 15 Jun 2026 02:01:20 +0000
Files and hashes: 1: 9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa (hash: tKJRFaY2YcR7s8GJcJFATvbLWJiSSXElLCi1btrAeAw=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: mGCtCpDtpHdIzf5jUfuPm7+i0l9nDt5kk8tXp+9Iyqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:dc:b0:40:77:44:b1:cf:dd:42:b2:a7:bd:5d:94:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Jun 14 02:01:20 2026 GMT
Not After : Jun 15 02:01:20 2026 GMT
Subject: CN=ee8efb0b3edb6b12b7e7af7f04169171ab4b0709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:96:66:2c:91:0f:f9:6a:8e:07:6b:de:fb:ef:
b2:c3:b8:16:f5:f9:cc:bb:52:92:82:05:ab:3f:c2:
30:a3:79:d4:d0:34:76:d8:65:51:f1:9c:d8:04:46:
94:1a:7d:4c:71:77:47:8f:c9:14:c7:7c:c4:ff:3f:
70:1a:7d:3a:80:b0:c5:bb:50:42:d6:90:53:da:78:
1b:65:9f:54:30:17:f6:bc:8b:3b:18:cd:bc:e6:85:
25:aa:aa:28:9f:53:ba:6f:75:fc:68:ed:2a:2d:08:
55:c3:cc:b7:81:b4:e7:2e:35:72:a6:3a:b3:b2:da:
11:87:24:5f:3b:5b:a0:3e:3f:10:b8:ce:9e:72:c6:
72:b9:8e:00:3c:34:6c:26:7f:ea:2a:15:3d:a0:c9:
bd:af:38:16:f3:66:aa:59:d2:de:32:5a:59:63:2c:
1c:34:5c:c2:b7:d9:55:76:d9:a9:1b:26:80:ff:ec:
8d:ce:30:2c:54:ee:35:a6:57:ef:12:2a:f7:a8:75:
16:55:c1:e5:d3:71:d3:aa:a0:6b:fa:30:3c:2a:bb:
32:34:35:55:63:0d:00:13:4f:7f:99:74:ab:7c:e4:
06:4a:94:96:c1:c9:3e:07:a4:d7:9c:b9:7e:c4:7c:
bd:cf:d5:09:0b:1c:76:fa:fe:31:89:ad:e4:25:0a:
94:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8E:FB:0B:3E:DB:6B:12:B7:E7:AF:7F:04:16:91:71:AB:4B:07:09
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:b8:cb:d6:ce:18:83:9d:6c:78:6e:16:36:ce:d5:6b:96:0c:
40:d2:ac:74:e1:4f:c6:85:02:18:96:6d:f8:28:27:a2:01:6d:
36:63:6a:35:8e:9e:ec:15:3d:44:e4:d8:29:c0:2b:6b:02:d8:
b6:96:58:f3:c6:d4:83:61:7b:fc:7b:9d:a3:57:49:2d:35:98:
a4:80:ec:13:24:27:ba:5f:99:1f:fb:21:17:32:c3:38:62:21:
37:43:31:ff:49:98:17:ff:1c:05:ab:b1:df:f8:cf:cc:61:ac:
fd:4c:26:b2:2e:d9:2d:54:04:9b:26:e2:8f:3e:d5:77:ed:d1:
c3:a2:76:11:e0:ab:ab:4d:c5:34:70:1b:bc:3c:dc:54:82:51:
5c:23:90:21:3c:6b:d3:11:50:61:6c:98:f0:0b:c1:50:f7:ab:
f7:7f:09:6a:26:66:54:c7:12:e7:9a:be:b2:e6:53:21:60:c3:
b1:3b:67:82:c4:eb:4b:ad:13:d5:24:54:05:f8:1a:db:b0:8b:
10:cc:5e:fd:cc:90:b3:d4:c2:bb:69:11:37:fd:9e:0c:09:21:
f3:2e:8d:76:cb:c5:47:40:cb:3d:a3:78:1a:a8:b6:ba:d5:89:
f0:b5:be:ee:3d:3a:f2:00:50:1e:d9:5a:ae:5f:4a:12:2e:3f:
02:61:2e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 06:46:01 2026 by rpki-client