Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier: WoJgM2lkBLbE1ZEoYnOTJL5IzqxH4WNppOFB4VpSR4g=
Subject key identifier: 09:DF:48:9F:4F:DA:C4:35:91:0E:99:CE:C0:0D:CB:29:8B:81:5E:C8
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial: 019DA29CEDE1E68EFF02CADE379155B02027
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number: 0897
Signing time: Sat 18 Apr 2026 22:01:26 +0000
Manifest this update: Sat 18 Apr 2026 22:01:26 +0000
Manifest next update: Sun 19 Apr 2026 22:01:26 +0000
Files and hashes: 1: CaBEFYDtaQzQxhyXo4MA7Dtx2rE.roa (hash: knYWc/a4bI5GtK7g0Qth1pZAN74E2q8jYjqFwaqxRKI=)
2: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: 381fHbCl0MelJy4/rwkpgsRiXDzGwKF5frcL57E11Hs=)
3: RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa (hash: xrR61qMY4oBctclJGvQvpdXymPubQyCDbVzByy1zses=)
4: atjpUn5m_olYo4VMnv5o9bZkp10.roa (hash: zhJgLfRaNhUfkrFUtufurP1akqxnjTREPo55ccYjvXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 22:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:9c:ed:e1:e6:8e:ff:02:ca:de:37:91:55:b0:20:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Validity
Not Before: Apr 18 22:01:26 2026 GMT
Not After : Apr 19 22:01:26 2026 GMT
Subject: CN=09df489f4fdac435910e99cec00dcb298b815ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:93:c3:3d:ab:4e:22:3f:fc:65:6c:ee:dc:95:
26:55:99:cb:08:7c:50:30:72:3c:21:a5:a2:6c:78:
be:81:e4:10:e3:5f:fc:fa:9d:2f:f9:3b:a2:02:0a:
a6:b8:ba:b2:13:ba:87:20:78:dd:6a:69:87:eb:b9:
59:2f:57:fe:0e:e1:26:65:a7:cf:99:9a:61:ca:23:
b1:88:f2:28:b1:a9:bb:b5:f0:82:88:fa:7c:f5:40:
69:8b:98:00:ba:ff:5d:a3:c8:09:74:7f:87:2e:31:
7d:ef:ab:54:47:78:61:d9:5c:5c:e2:3e:19:a7:46:
72:bc:58:69:8a:f6:a7:03:93:cb:da:d7:3d:99:4a:
8a:d6:da:40:9d:39:70:4b:ae:f5:bd:ce:dd:4c:4a:
09:28:af:80:2e:f1:0d:84:f4:90:c2:1a:ae:52:70:
51:f2:82:d3:7d:d9:30:19:e2:9c:96:32:9e:20:d5:
b5:ce:8e:69:8f:88:f7:a7:a3:35:0c:a8:76:d3:15:
d9:74:98:41:af:c9:72:0c:91:17:95:2b:f5:ed:2d:
41:9b:41:e7:d6:74:bf:17:a9:cd:21:23:ab:8a:44:
ab:07:72:d7:4a:9b:95:a1:7c:ce:19:59:d4:f6:4e:
89:53:bc:dc:57:de:74:1f:5c:ad:fc:28:89:12:16:
ed:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:DF:48:9F:4F:DA:C4:35:91:0E:99:CE:C0:0D:CB:29:8B:81:5E:C8
X509v3 Authority Key Identifier:
keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:90:fc:30:d8:63:df:6e:d5:27:73:e4:f1:52:53:09:14:4b:
c5:bb:0b:83:58:fc:93:39:7e:12:54:46:df:ca:96:b1:9b:27:
51:f0:6b:8d:79:98:8b:93:68:16:24:e2:a7:3f:b4:ad:f5:16:
53:2a:b6:9c:b7:af:08:f4:ea:52:af:1a:1c:81:8b:59:4b:f6:
b5:8f:db:93:92:fa:e0:91:3f:d2:bc:be:02:65:e9:20:95:b5:
6c:4b:85:5e:e2:d1:e2:70:b0:b7:9e:e1:7c:37:80:49:ae:f3:
bf:12:96:52:17:10:f4:6f:7b:7a:ae:cb:db:a4:2e:28:36:a3:
09:43:14:19:c0:11:f0:fc:e3:69:02:a8:c3:48:c1:96:a6:16:
b4:af:8b:ea:ae:3a:66:20:79:fd:0e:07:2b:aa:75:1a:c8:8e:
ab:b8:c2:ee:56:9c:e5:a4:b4:f9:c1:22:80:63:dd:fa:70:35:
58:21:78:b1:e5:3d:41:42:00:3c:c6:97:24:4b:3b:25:91:f0:
5f:9a:fe:ef:4b:e6:d0:b3:6e:e7:ac:72:c5:6a:bc:e8:d0:6d:
27:1d:7a:05:34:dc:fe:df:88:92:d3:28:d5:b5:60:b0:f4:81:
2d:76:69:56:00:d6:12:26:7c:ea:18:25:21:4a:99:3e:d7:16:
c7:87:b1:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:50:19 2026 by rpki-client