Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier: BKAVSrYYbeYiZbgOxVGzkacqpz37RKNXi4uAwNh/RCI=
Subject key identifier: A0:90:48:B4:DE:05:90:57:0D:21:3F:33:42:87:9E:08:53:0E:7B:40
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial: 019CAB6B55591189D32D4D86A41ECDD9F4E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number: 0817
Signing time: Sun 01 Mar 2026 22:01:04 +0000
Manifest this update: Sun 01 Mar 2026 22:01:04 +0000
Manifest next update: Mon 02 Mar 2026 22:01:04 +0000
Files and hashes: 1: CaBEFYDtaQzQxhyXo4MA7Dtx2rE.roa (hash: knYWc/a4bI5GtK7g0Qth1pZAN74E2q8jYjqFwaqxRKI=)
2: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: vaKnual8RMZvftoOtwD2o8DOg2VuGLQDTrfvb3TU5r0=)
3: RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa (hash: xrR61qMY4oBctclJGvQvpdXymPubQyCDbVzByy1zses=)
4: atjpUn5m_olYo4VMnv5o9bZkp10.roa (hash: zhJgLfRaNhUfkrFUtufurP1akqxnjTREPo55ccYjvXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:55:59:11:89:d3:2d:4d:86:a4:1e:cd:d9:f4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Validity
Not Before: Mar 1 22:01:04 2026 GMT
Not After : Mar 2 22:01:04 2026 GMT
Subject: CN=a09048b4de0590570d213f3342879e08530e7b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:f2:56:e7:e5:3a:11:79:db:d2:5e:54:2d:
dd:70:f1:e8:2b:f0:db:e5:04:5a:0f:7c:23:f0:a9:
68:da:d0:c9:83:2b:4b:ec:59:58:d4:a3:0f:18:fa:
ef:d5:38:56:4c:ac:cd:bf:3f:bf:ce:4b:7e:b9:35:
c9:31:bf:8d:88:27:09:9e:77:a1:9b:25:2e:2c:7f:
1b:86:5f:66:b2:17:c0:92:16:dd:1e:fb:b0:b5:84:
4e:b4:1d:e0:95:e5:6b:b2:de:8e:0b:2c:2a:cd:4f:
bd:08:4e:14:9b:1a:38:3e:a3:62:5e:2f:a5:b5:cb:
c7:b2:18:55:65:c0:f6:35:69:f8:07:67:16:d0:a7:
e1:ac:07:d7:9d:5f:b2:7e:7e:3d:03:fd:77:f1:4d:
ce:cb:a7:b7:1c:62:14:bc:7e:37:b3:d4:e6:03:a2:
e8:68:22:bd:5c:2b:f0:1b:4c:e6:49:ab:f2:a1:cc:
8b:27:bf:a5:f3:ee:b0:43:5f:b6:40:28:d9:ff:d9:
ca:8c:a8:69:e7:dc:51:4f:f7:ea:0e:64:74:08:a9:
cb:b2:fc:ab:6a:18:12:fc:9f:76:67:5e:36:75:8d:
2b:f7:80:71:46:85:b6:85:34:dc:f8:5b:e9:e9:2b:
9a:65:2f:7e:1b:a1:99:ea:3d:ae:ee:79:39:de:8d:
67:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:90:48:B4:DE:05:90:57:0D:21:3F:33:42:87:9E:08:53:0E:7B:40
X509v3 Authority Key Identifier:
keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:f7:7f:d2:b4:e5:d1:7e:44:88:99:7d:92:2d:cd:50:78:b9:
49:5a:f1:58:25:2a:40:5d:7c:f0:c3:37:fa:20:8f:cd:ab:11:
96:1d:e3:33:e3:2f:1c:25:ac:ed:60:0f:b2:9c:ad:ff:31:33:
51:50:47:7f:2d:ac:0c:ae:23:3d:f5:25:e9:b1:29:cd:c0:a0:
51:78:bd:97:24:b5:44:03:44:4b:68:15:1c:e2:12:6f:f2:ab:
c0:70:c1:b1:13:d0:af:7e:9b:9d:39:e0:ae:4c:a5:96:1e:32:
66:fd:07:95:c4:ea:d6:ae:8c:fb:8d:0d:08:af:e6:5b:99:3e:
18:3b:92:89:00:f2:32:be:f2:75:2d:eb:df:39:2e:6d:d1:82:
24:ca:6d:03:0b:19:82:ee:12:13:45:3e:b6:c9:03:4b:3f:68:
b3:a4:32:07:55:af:47:9b:e7:45:e3:52:aa:0d:5d:33:7d:1d:
0a:7e:b6:bf:19:b0:c1:41:3a:18:df:9c:51:4f:4d:be:b4:c6:
29:96:df:07:c3:09:fa:53:a4:4a:bd:6d:17:06:69:b2:fe:94:
1c:3c:33:3d:8c:c5:8c:c8:81:e8:6d:11:92:fc:ce:ac:6e:b2:
09:e0:f6:b7:e6:df:a5:85:f7:4b:7e:52:13:4c:f3:24:f7:9f:
d6:32:50:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:06:12 2026 by rpki-client