Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: THhh1P/qoxjKUHuj7G3Nxev2aXUCvnSx7LTpwTKSEDY=
Subject key identifier: 28:82:1E:C7:47:91:DC:DC:17:95:F2:27:E5:D6:63:2E:41:06:1E:A7
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 019CA9EB9F2E8C113C066B17EC75F247BA21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 1859
Signing time: Sun 01 Mar 2026 15:01:57 +0000
Manifest this update: Sun 01 Mar 2026 15:01:57 +0000
Manifest next update: Mon 02 Mar 2026 15:01:57 +0000
Files and hashes: 1: 4L2HrkOMp5Px3ZdgqOBGMnz6oXw.roa (hash: qjbkKzm11wnXRFJIt4quryujdmBS5m5m8Id3/w9vHFw=)
2: 78tSQmB_UZC_rIGDHLnxnqOm3fI.roa (hash: 3kNkwMTWy/XYCkJODFF1IVosQpGtDfhW2/dwVf0UwBQ=)
3: C3Lj3Wt6YNWIPGHmadEQ-dchhaw.roa (hash: fn0aOrz4mN4OtO/EtlMrSuF4wh5zaQaJSbD2ep7jxzI=)
4: JIk4GJqmgSwzYSk0JGPNI21QRnM.roa (hash: 45ZLZSPO108JAO0yb1j8MEBiHT4QdE4zU9XBhQbVqtg=)
5: PY323kbvCRFsNrwGFI26gXv0gpE.roa (hash: U0ksXLpw7uH4vwqe/cNwV58+FVim6JoHjXiFGt1giNE=)
6: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: nDkEOnTqa4BkIpYz1qFOLw8WYWKyPyNvf1q3V998A6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:9f:2e:8c:11:3c:06:6b:17:ec:75:f2:47:ba:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Mar 1 15:01:57 2026 GMT
Not After : Mar 2 15:01:57 2026 GMT
Subject: CN=28821ec74791dcdc1795f227e5d6632e41061ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:20:4f:89:0a:1a:a4:dc:d3:ad:45:11:2e:c9:
4f:ef:0d:14:bd:b8:c1:96:2d:3a:c9:b9:7a:06:ed:
e5:ef:bf:62:be:d4:71:e6:ac:00:bf:a6:16:8b:4d:
75:c7:5a:f7:3a:90:41:38:36:6c:60:90:47:9c:94:
d6:02:25:df:3d:22:46:86:6f:42:98:41:f5:1a:04:
44:2a:91:b1:22:79:28:68:16:8d:ff:fb:9b:14:fd:
ef:ba:28:ce:ad:b6:7c:09:40:cb:32:ed:d8:43:ad:
ee:08:7a:33:8f:21:6c:98:4f:2a:9e:ba:5b:b1:c1:
88:74:a3:e1:31:a3:99:1a:20:6b:06:78:9d:39:e4:
96:04:ba:c3:16:58:41:d3:29:fd:ba:42:f6:5c:a4:
08:e5:8b:66:d2:66:c6:35:30:5a:40:4f:4c:a4:d3:
2b:62:51:2a:eb:af:f1:61:8b:9c:9d:4e:f0:54:fb:
52:6e:00:b1:9b:f7:3d:d5:56:f3:84:79:da:3d:cf:
5c:f9:3f:75:da:6a:ae:33:b9:22:83:b8:4a:f9:74:
ba:b6:cc:1f:16:7e:b3:c7:bc:d6:76:5e:55:a2:43:
26:8f:cf:5f:fb:cf:49:16:10:c1:ea:71:f0:bc:5f:
f8:d0:73:39:ea:a2:60:4a:fc:1f:6c:26:ea:83:6a:
84:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:82:1E:C7:47:91:DC:DC:17:95:F2:27:E5:D6:63:2E:41:06:1E:A7
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:66:bb:b1:a8:3a:5e:76:56:4a:a7:a3:a6:ff:b0:15:cb:6f:
11:b0:1b:d1:7c:ad:73:ef:28:71:d4:62:fb:03:b4:33:9d:5b:
53:da:27:fd:04:c2:1f:7c:60:79:ba:f1:b6:63:95:ac:12:b1:
92:f7:01:d9:ba:f8:70:f8:81:1f:2b:e5:0b:7f:5b:d6:32:94:
31:b1:48:b0:af:8c:a1:b3:60:eb:fc:00:19:7f:6d:04:4b:5d:
6c:38:5a:e6:0e:7d:2d:2e:c9:12:4f:f9:27:1f:88:3a:9d:50:
7d:f1:a7:2e:b1:19:e3:b1:fd:b2:b5:1f:ab:4e:aa:4d:b2:3e:
f4:ed:f0:b0:7b:fd:4c:94:38:f0:df:b2:a9:1d:95:09:77:34:
71:99:e2:65:66:ac:0c:b6:2b:2e:6e:15:1a:b0:70:b7:5b:3f:
ad:e7:45:3c:2a:82:28:5e:aa:1c:b4:f9:3f:05:10:52:fc:98:
b1:53:a8:ef:f9:41:81:72:21:90:3a:a4:76:a5:cc:56:ef:1a:
6e:4d:a4:af:81:88:28:58:a8:26:65:59:14:97:df:d3:be:e5:
94:4f:b5:42:c1:67:d8:79:ed:5d:ee:c3:85:13:d5:18:01:f5:
97:25:3c:59:ab:5e:4e:77:1a:26:84:4a:79:9a:a8:84:ed:34:
4c:ff:99:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:22:35 2026 by rpki-client