Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: pRByyPrKMqvN9/Rhgxg8v7IRyV+K3LP7EXjafDgvYWc=
Subject key identifier: 0D:19:E3:5B:A0:C2:A0:DF:A7:82:BD:2A:0F:33:A6:3C:5E:C8:C4:95
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 019D984FF86949144F96C10813076B75266B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 18BD
Signing time: Thu 16 Apr 2026 22:01:10 +0000
Manifest this update: Thu 16 Apr 2026 22:01:10 +0000
Manifest next update: Fri 17 Apr 2026 22:01:10 +0000
Files and hashes: 1: O-DHQ-d3mfAOgq3yuIWV4iVv_x8.roa (hash: dSSiaDVSWahBigya5YVNu9L0fcAePIWgFzlkT6f9BmA=)
2: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: QJFJ4wkrJGLsx0LTvMlQhPPYIVhz0LApJqagZeDumj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:f8:69:49:14:4f:96:c1:08:13:07:6b:75:26:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Apr 16 22:01:10 2026 GMT
Not After : Apr 17 22:01:10 2026 GMT
Subject: CN=0d19e35ba0c2a0dfa782bd2a0f33a63c5ec8c495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b3:d7:2d:85:83:64:ec:a6:56:b3:c8:e1:dd:
75:39:91:84:7d:30:1e:6f:ed:4e:6b:9d:e7:c2:2f:
39:11:79:ca:86:f8:6f:83:98:f7:54:5a:16:a0:b7:
e3:41:d5:7c:bf:0b:59:3c:9a:03:4e:29:fa:da:b6:
82:fe:46:d2:cb:98:0a:dc:d1:fd:a2:34:ba:84:a8:
b6:35:05:9d:60:3c:28:c6:5b:5c:d6:87:ef:7f:40:
42:80:97:97:e6:31:07:93:44:83:a8:78:bb:e2:dd:
a7:f8:c5:8a:64:a6:c4:61:7f:51:b4:dc:72:6b:f0:
50:c2:0e:7d:75:63:f5:a3:8f:9a:ab:5b:ed:2e:c2:
10:b9:af:69:a3:cf:82:de:2e:5c:76:25:33:57:b5:
02:8b:92:8b:a4:69:8b:2a:c0:d7:a5:b1:3d:d3:df:
64:77:32:99:5c:c2:f1:ee:44:b8:29:1d:47:6f:a2:
2f:0b:9d:e7:f3:9e:48:11:89:8c:08:ec:7b:57:0d:
c4:20:ad:7f:f9:d8:f9:2a:3a:b7:fe:8e:76:04:82:
10:74:11:49:e9:34:76:55:12:3e:8b:d3:99:9d:60:
3b:aa:30:f5:58:7a:af:93:20:99:50:a9:ff:df:e4:
0f:20:90:5b:30:f1:a0:95:08:6a:93:9b:c3:a8:ae:
18:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:19:E3:5B:A0:C2:A0:DF:A7:82:BD:2A:0F:33:A6:3C:5E:C8:C4:95
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:2a:26:b4:df:51:29:bd:30:ec:49:b4:b2:83:81:d6:36:dd:
f6:6d:84:da:11:de:de:b4:7e:54:4e:df:38:27:dc:70:f9:4f:
06:73:5f:5b:58:e6:0e:47:3d:6e:9d:c1:3d:1a:aa:a3:7c:d2:
1f:28:c5:c2:da:10:56:0e:52:b3:c9:eb:85:c3:b7:da:01:92:
bd:06:02:6d:88:d4:88:32:de:0c:5d:9e:71:8f:83:5a:30:81:
14:37:1f:52:2a:80:6d:2b:40:14:9e:1b:38:4d:a3:ed:8b:63:
0e:9e:25:da:71:e5:b7:e8:80:f5:f6:07:b7:d4:8c:1a:a3:42:
d7:56:fa:50:78:e5:48:d3:a9:b3:71:34:cc:78:05:7a:b3:94:
cd:7d:67:f3:2d:22:7f:52:98:72:e7:34:fc:bc:70:2b:ea:46:
73:ba:24:13:cc:44:fe:e0:d2:86:ae:9c:0b:a1:e4:1d:93:81:
cb:e1:96:6e:b1:2a:4c:e4:6d:5b:8a:38:02:7a:25:19:6b:f3:
28:0c:b8:c9:c9:4b:45:50:10:3d:6b:37:df:fe:f1:34:be:08:
ee:f9:21:6c:18:fd:29:9c:eb:4e:fe:9e:f9:0c:2f:fa:67:47:
b8:b6:37:28:1a:b4:bf:65:6b:f4:34:9e:d6:12:03:dc:08:b1:
12:59:bd:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:29:52 2026 by rpki-client