Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: UUjCdy5iCPCuBvYx2M0ClYyfxyv+l8cfmcIeHAIHVGM=
Subject key identifier: 4B:A8:38:0A:7C:F3:CC:43:1D:F3:8B:82:CB:90:F7:F1:3B:26:5D:14
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 019CAAC6712A69AF38F61F9340E2834C747A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 1842
Signing time: Sun 01 Mar 2026 19:00:57 +0000
Manifest this update: Sun 01 Mar 2026 19:00:57 +0000
Manifest next update: Mon 02 Mar 2026 19:00:57 +0000
Files and hashes: 1: O-DHQ-d3mfAOgq3yuIWV4iVv_x8.roa (hash: dSSiaDVSWahBigya5YVNu9L0fcAePIWgFzlkT6f9BmA=)
2: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: kQ+5wl1krRQHuyKgaw/9onNfTuXIcbE/m/yn1P9/vJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:71:2a:69:af:38:f6:1f:93:40:e2:83:4c:74:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Mar 1 19:00:57 2026 GMT
Not After : Mar 2 19:00:57 2026 GMT
Subject: CN=4ba8380a7cf3cc431df38b82cb90f7f13b265d14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b8:a3:0f:76:a6:43:05:fc:bc:e4:f4:68:7a:
d5:59:9a:39:59:d5:86:5e:7d:79:78:ce:d5:95:78:
94:2b:97:f7:f6:4c:33:90:f5:9d:76:25:15:59:ce:
f2:ed:0c:7e:c5:68:d6:eb:3f:15:e4:9a:2c:95:64:
4b:12:44:f7:82:6a:c8:ee:67:e5:a2:d9:7f:71:f0:
95:87:5f:ca:2f:69:98:8b:00:98:2f:ad:ec:c4:e7:
73:1f:2f:8b:e9:80:8c:c8:cf:f1:7f:70:d4:c7:c5:
23:77:a1:3c:1d:81:cd:25:77:a4:89:68:be:21:e7:
4a:30:e1:3c:30:57:a7:8c:bb:00:df:a2:ae:93:ca:
14:77:35:56:fd:6a:85:23:e4:87:af:23:2f:b3:ed:
a9:6d:b3:8b:16:79:ea:67:a9:3c:03:36:1f:d3:25:
ba:b5:88:9c:c6:26:62:7a:4b:b9:86:0e:bf:5b:06:
7d:24:71:1d:ed:b8:1e:26:99:de:8c:06:c3:fa:56:
81:02:19:d6:92:9d:87:72:37:81:32:f3:c3:26:cf:
eb:69:3b:dc:e4:68:60:d6:68:d4:e2:85:40:2b:61:
bc:9c:e2:c0:a8:33:fc:1c:b0:04:ee:01:aa:1c:90:
94:92:e3:55:0b:c3:2e:16:0d:32:79:c9:ec:d6:3c:
e8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A8:38:0A:7C:F3:CC:43:1D:F3:8B:82:CB:90:F7:F1:3B:26:5D:14
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:68:08:03:22:84:e9:71:c6:66:ac:9c:10:21:28:c0:0f:f9:
98:84:84:96:dd:19:ee:e4:94:1c:48:15:c6:dc:53:1a:d6:30:
00:2e:e7:fc:2b:ee:98:85:df:0f:48:7e:61:18:f0:82:51:d7:
40:06:5b:fa:be:d7:3a:8f:9c:d7:aa:71:f4:4a:b3:32:cb:56:
65:9f:eb:bd:59:74:2e:96:e2:ae:b4:1b:24:80:d7:ae:9f:dc:
07:85:67:7e:3d:4a:4b:91:7e:0b:96:8d:b8:41:b4:ca:e7:2f:
35:95:32:0b:ae:44:3a:cd:bf:68:54:4b:da:b6:ac:ca:07:dd:
02:0f:3c:2b:a1:71:04:64:71:10:20:6f:68:dc:34:b8:de:f6:
bd:af:90:88:05:b1:fe:51:b6:7b:89:22:78:a4:61:19:be:c6:
86:fb:b4:16:20:14:4c:88:8e:86:a3:ab:5e:02:b7:31:88:8d:
64:4e:b8:22:c2:fc:2e:c2:df:ac:ff:a8:a7:91:4c:1d:b5:ba:
2a:1e:08:13:aa:97:99:52:23:d5:d8:0f:5a:5b:a1:af:99:a2:
ad:b7:7a:05:93:82:b5:37:c2:d8:be:c9:13:43:1e:c1:1f:bb:
e8:d6:ea:b7:23:f8:59:71:a7:8f:8a:50:49:5e:2a:10:11:d3:
7f:ba:b0:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:40:01 2026 by rpki-client