Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
File: EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft (raw, json)
Hash identifier: Q53wq/AP1UKDYXEzq1GT7U0DjOWHMCfzhk8vqO3huUY=
Subject key identifier: 04:7B:A9:F7:C6:08:68:C2:3C:72:19:8F:A3:ED:49:49:4E:7C:A7:D5
Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Certificate serial: 019E307268949D9703A9E0BA207D801CC151
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
Manifest number: 1910
Signing time: Sat 16 May 2026 11:01:04 +0000
Manifest this update: Sat 16 May 2026 11:01:04 +0000
Manifest next update: Sun 17 May 2026 11:01:04 +0000
Files and hashes: 1: B_eufKACcye9RNL9zWFuL3O0F2Q.roa (hash: u51nAFunJxaWbsLgaW5TM9elEVLvvbw93zNAlf1WyzQ=)
2: EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl (hash: ZJGP1Vmc0rlbb4sQad5iYLblmB1QBMji9gDL4afiWAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:68:94:9d:97:03:a9:e0:ba:20:7d:80:1c:c1:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Validity
Not Before: May 16 11:01:04 2026 GMT
Not After : May 17 11:01:04 2026 GMT
Subject: CN=047ba9f7c60868c23c72198fa3ed49494e7ca7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:bb:97:60:d1:ac:30:66:d4:fd:03:84:fd:e8:
e3:22:ac:d1:66:8f:67:ef:1c:a9:3c:76:74:e4:f9:
29:79:b9:f8:cf:8d:e2:cf:93:50:ce:d9:47:d1:4b:
87:3b:24:7d:ec:b8:3c:5b:1c:ca:db:5e:4e:22:0e:
dc:07:a9:d6:ab:9f:75:3a:fc:ed:b0:d4:b2:e8:08:
28:f2:20:6e:d9:cc:b9:36:90:ed:8d:0d:ae:8c:61:
c3:dd:d9:ea:c0:20:d9:e7:3c:e2:06:96:72:e1:4b:
9b:bc:90:76:5e:bd:8d:f3:f2:0f:c7:d4:d9:ab:10:
60:a7:5b:de:4b:f0:b7:05:dc:4a:9d:f2:48:ed:73:
d2:fe:7d:f6:38:32:9a:5e:05:91:80:a4:a8:d3:3d:
19:81:4a:8a:2f:30:df:65:61:ba:6a:37:61:1a:05:
08:58:9a:f0:31:0d:65:cb:b5:a1:5e:10:97:e5:4b:
fe:77:3f:da:0b:e0:f3:84:a6:ae:25:7e:d2:78:90:
e3:f1:04:0d:99:40:ad:b4:10:95:6e:11:09:b4:05:
2c:82:f5:f5:a2:5a:53:f2:3b:9a:31:94:55:fe:c1:
cd:88:3a:ec:92:a4:5b:1c:fc:25:bc:82:4d:e5:50:
15:23:04:51:7a:b2:18:f5:d5:53:38:04:f6:fa:d6:
f5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:7B:A9:F7:C6:08:68:C2:3C:72:19:8F:A3:ED:49:49:4E:7C:A7:D5
X509v3 Authority Key Identifier:
keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:ee:a5:34:e2:b9:99:6e:ad:06:58:c5:ca:7c:c6:1a:6c:c9:
94:ee:d9:f0:3a:c5:db:86:b3:09:f9:94:57:e7:67:6c:2a:66:
bb:fb:22:0e:85:5a:f5:69:62:7b:ae:fa:7a:f0:20:e8:bc:13:
2d:f0:51:a9:60:ee:06:97:af:08:4b:b2:a8:28:ca:97:f7:bb:
a7:58:f1:a7:f3:18:10:31:3e:9d:91:15:4e:3a:3f:c9:27:db:
4a:0e:32:59:73:cf:1c:fa:f0:71:8d:2f:15:a3:35:97:1c:14:
7c:5e:e7:94:3c:b4:60:25:88:a9:e0:ce:36:2c:37:a5:e8:96:
3d:f5:79:ae:81:51:ca:e8:ff:26:0c:b4:05:54:fe:73:be:17:
bf:41:10:0c:88:fa:ac:a2:4a:5e:04:cb:c1:29:28:2f:3f:f1:
6b:82:4a:46:ab:6e:f2:98:b3:76:4f:7f:eb:1f:bd:47:71:a5:
e7:fc:9d:ba:b2:d8:20:65:a8:11:07:5c:75:95:d7:8e:ee:e9:
28:8b:9d:d6:56:be:d8:af:15:1c:a0:e8:f5:a5:14:e2:b9:08:
be:bd:c1:95:df:fc:53:ae:1b:ba:c3:ea:68:8c:a3:a8:8a:d6:
02:d1:c9:50:bd:c8:e0:31:e4:69:7b:d8:e0:3b:22:d9:ae:f2:
d4:dc:a6:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wcmiUnZcDqeC6IH2AHMFRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwN2E1YWYxOTZiOGEwZWE5NjBjMjhmNmIzZTc1MjkxYzdl
ODYxY2QwHhcNMjYwNTE2MTEwMTA0WhcNMjYwNTE3MTEwMTA0WjAzMTEwLwYDVQQD
EygwNDdiYTlmN2M2MDg2OGMyM2M3MjE5OGZhM2VkNDk0OTRlN2NhN2Q1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLuXYNGsMGbU/QOE/ejjIqzRZo9n
7xypPHZ05Pkpebn4z43iz5NQztlH0UuHOyR97Lg8WxzK215OIg7cB6nWq591Ovzt
sNSy6Ago8iBu2cy5NpDtjQ2ujGHD3dnqwCDZ5zziBpZy4UubvJB2Xr2N8/IPx9TZ
qxBgp1veS/C3BdxKnfJI7XPS/n32ODKaXgWRgKSo0z0ZgUqKLzDfZWG6ajdhGgUI
WJrwMQ1ly7WhXhCX5Uv+dz/aC+DzhKauJX7SeJDj8QQNmUCttBCVbhEJtAUsgvX1
olpT8juaMZRV/sHNiDrskqRbHPwlvIJN5VAVIwRRerIY9dVTOAT2+tb1MQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAR7qffGCGjCPHIZj6PtSUlOfKfVMB8GA1UdIwQY
MBaAFBB6WvGWuKDqlgwo9rPnUpHH6GHNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjIt
ZjkyOWUyNTUxNjI3LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjItZjkyOWUyNTUxNjI3
LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIe6lNOK5
mW6tBljFynzGGmzJlO7Z8DrF24azCfmUV+dnbCpmu/siDoVa9Wlie676evAg6LwT
LfBRqWDuBpevCEuyqCjKl/e7p1jxp/MYEDE+nZEVTjo/ySfbSg4yWXPPHPrwcY0v
FaM1lxwUfF7nlDy0YCWIqeDONiw3peiWPfV5roFRyuj/Jgy0BVT+c74Xv0EQDIj6
rKJKXgTLwSkoLz/xa4JKRqtu8pizdk9/6x+9R3Gl5/ydurLYIGWoEQdcdZXXju7p
KIud1la+2K8VHKDo9aUU4rkIvr3Bld/8U64busPqaIyjqIrWAtHJUL3I4DHkaXvY
4Dsi2a7y1NymqA==
-----END CERTIFICATE-----
Generated at Sat May 16 15:39:46 2026 by rpki-client