Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
File: aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json)
Hash identifier: afpkrxsiQBri7ltJ+DWtRxlzFMrZXzu5wCDuYpSsMWU=
Subject key identifier: 73:36:88:D1:C5:F1:D0:1D:A2:C1:AF:90:33:AB:94:4F:46:7C:A9:FD
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 019CAB6AFBCE31FC71FF7E4A5851ABE2D78F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
Manifest number: 1379
Signing time: Sun 01 Mar 2026 22:00:41 +0000
Manifest this update: Sun 01 Mar 2026 22:00:41 +0000
Manifest next update: Mon 02 Mar 2026 22:00:41 +0000
Files and hashes: 1: H3BcLlLdlK5OktIlKB08CLOJceQ.roa (hash: gCov3Lq4RydmSmoM9Ym4TkvogcYAidCIuxal3h4GAM8=)
2: K01hEvp_oFx3qc2-IUwd8VFE1hI.roa (hash: cm5jfcRdjk0yhdi3HnxUE7FN1POO9527wRj/2D2vjMs=)
3: P6dX7w5DhwlzNU979iFd9YDU0uI.roa (hash: UBskImMtpaHQaupcjp821thacxNepjpaa64/vY6YASM=)
4: UTSVX3B31qE6acA-2M3EInvqjqs.roa (hash: 2V2E0vmwbEv4vLiGDwB2fco3T0rwdLt7wl4GPwkBEC8=)
5: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: Q4IlEiFHDGwD56TDtCrCPMSSVtIAZLlgnAufIGTkpfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:fb:ce:31:fc:71:ff:7e:4a:58:51:ab:e2:d7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Mar 1 22:00:41 2026 GMT
Not After : Mar 2 22:00:41 2026 GMT
Subject: CN=733688d1c5f1d01da2c1af9033ab944f467ca9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ec:b4:8e:f0:db:17:db:7b:44:42:7a:27:b8:
70:81:ae:ff:7f:38:4f:b7:86:ed:71:dc:25:00:b1:
c5:fd:43:52:8c:7f:6c:51:72:c7:3d:35:75:a8:85:
d0:4c:12:a4:d6:de:a8:80:b8:ef:f2:66:9b:ff:3a:
b7:f1:30:31:59:83:b7:8e:68:f2:fd:fe:cd:1d:f6:
9c:57:68:e3:1d:58:66:fa:11:a0:07:0d:0c:f6:a2:
7c:a8:7a:84:4e:dd:f6:71:48:03:26:0e:97:36:1b:
ef:b5:ec:dc:44:71:a2:9f:07:92:b1:cc:ab:6a:1a:
78:c8:e0:10:dd:6f:57:ce:9c:b9:d1:f2:f1:60:7a:
e4:14:53:55:76:8b:28:3c:be:ac:1b:5e:07:24:57:
fd:4a:16:f8:5e:b1:1c:64:3d:66:59:56:f7:a7:ef:
2f:e6:92:b6:e5:1e:7f:b1:22:7a:9e:3d:be:93:55:
71:fd:5a:b1:99:78:05:a5:93:45:62:3f:76:73:aa:
f4:7d:d7:00:be:a3:13:53:7e:86:03:f1:f2:6b:08:
01:7d:f7:41:23:99:e5:d9:5d:eb:d5:5d:62:db:dc:
5a:c4:23:c3:41:af:d2:8b:7f:a8:24:10:02:90:52:
ea:8e:1e:e2:3d:b0:95:69:46:eb:eb:f8:9a:6a:42:
1a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:36:88:D1:C5:F1:D0:1D:A2:C1:AF:90:33:AB:94:4F:46:7C:A9:FD
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:50:1c:12:47:94:c0:ff:25:3a:4f:e2:78:a9:73:ce:a8:5e:
3f:8e:25:17:db:51:47:8f:e8:74:8e:9d:3a:1d:ae:d4:dc:02:
c3:da:32:28:68:cb:97:22:ce:39:df:8c:a2:bd:6f:06:9a:6c:
ce:d4:d9:2d:c6:0d:33:73:d5:7d:55:51:0f:4a:0f:a5:15:0b:
de:08:1c:ed:82:52:d5:e0:c5:b4:8e:5f:f1:b2:42:11:cc:48:
84:89:10:42:51:17:5e:12:ed:da:62:d1:73:78:f5:e2:93:55:
47:75:5e:16:cc:ab:c6:69:8b:ba:2a:1e:ed:d7:38:0e:ca:cb:
e4:c8:49:dc:85:31:cb:ad:18:98:80:82:53:c9:32:c2:72:d2:
d6:d1:bd:9a:2d:97:01:d5:5d:50:3e:ee:72:71:a9:08:32:0b:
3d:b5:26:07:1e:c1:7e:0f:98:74:09:32:93:24:54:65:6c:4c:
3f:b9:ba:3b:79:86:26:74:bd:5c:d2:68:70:46:fe:54:2c:96:
c4:d9:36:30:3d:a7:87:4e:b2:93:95:ab:31:61:e0:ec:50:9a:
e0:83:3d:6d:47:b7:73:96:d3:f8:1c:c5:6b:a6:55:71:ae:4a:
18:64:47:0c:16:bb:43:e4:10:f8:6a:40:95:80:3b:ba:e0:79:
76:3a:35:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyravvOMfxx/35KWFGr4tePMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NzcyNmQzOGZjZjJhN2ZiYmI3YmZjMjhkNjNmZTM1Nzll
ZDIxMWQwHhcNMjYwMzAxMjIwMDQxWhcNMjYwMzAyMjIwMDQxWjAzMTEwLwYDVQQD
Eyg3MzM2ODhkMWM1ZjFkMDFkYTJjMWFmOTAzM2FiOTQ0ZjQ2N2NhOWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsey0jvDbF9t7REJ6J7hwga7/fzhP
t4btcdwlALHF/UNSjH9sUXLHPTV1qIXQTBKk1t6ogLjv8mab/zq38TAxWYO3jmjy
/f7NHfacV2jjHVhm+hGgBw0M9qJ8qHqETt32cUgDJg6XNhvvtezcRHGinweSscyr
ahp4yOAQ3W9Xzpy50fLxYHrkFFNVdosoPL6sG14HJFf9Shb4XrEcZD1mWVb3p+8v
5pK25R5/sSJ6nj2+k1Vx/VqxmXgFpZNFYj92c6r0fdcAvqMTU36GA/HyawgBffdB
I5nl2V3r1V1i29xaxCPDQa/Si3+oJBACkFLqjh7iPbCVaUbr6/iaakIaAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHM2iNHF8dAdosGvkDOrlE9GfKn9MB8GA1UdIwQY
MBaAFGh3JtOPzyp/u7e/wo1j/jV57SEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAt
NGIyZGExOTdhN2U2LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAtNGIyZGExOTdhN2U2
LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXVAcEkeU
wP8lOk/ieKlzzqheP44lF9tRR4/odI6dOh2u1NwCw9oyKGjLlyLOOd+Mor1vBpps
ztTZLcYNM3PVfVVRD0oPpRUL3ggc7YJS1eDFtI5f8bJCEcxIhIkQQlEXXhLt2mLR
c3j14pNVR3VeFsyrxmmLuioe7dc4DsrL5MhJ3IUxy60YmICCU8kywnLS1tG9mi2X
AdVdUD7ucnGpCDILPbUmBx7Bfg+YdAkykyRUZWxMP7m6O3mGJnS9XNJocEb+VCyW
xNk2MD2nh06yk5WrMWHg7FCa4IM9bUe3c5bT+BzFa6ZVca5KGGRHDBa7Q+QQ+GpA
lYA7uuB5djo16Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:50:40 2026 by rpki-client