Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
File: EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft (raw, json)
Hash identifier: HRdlr6Zuw6ctNDEIQNhjy6cGx6Hd48SZpZRvE2n//RA=
Subject key identifier: 87:60:42:39:DF:00:3C:9A:FD:84:96:18:DF:A4:45:CB:7B:A4:F3:D0
Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Certificate serial: 019D394120D061CC8543E87C31DEF618085A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:01:02 +0000
Manifest this update: Sun 29 Mar 2026 11:01:02 +0000
Manifest next update: Mon 30 Mar 2026 11:01:02 +0000
Files and hashes: 1: B_eufKACcye9RNL9zWFuL3O0F2Q.roa (hash: u51nAFunJxaWbsLgaW5TM9elEVLvvbw93zNAlf1WyzQ=)
2: EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl (hash: CyOB9793DhNZfQGtxjRCW56aH2rxLBcsSAMchwVZK4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:20:d0:61:cc:85:43:e8:7c:31:de:f6:18:08:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Validity
Not Before: Mar 29 11:01:02 2026 GMT
Not After : Mar 30 11:01:02 2026 GMT
Subject: CN=87604239df003c9afd849618dfa445cb7ba4f3d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:66:f4:22:21:f5:b1:56:07:2b:3d:64:c5:88:
e5:ca:d7:8a:b9:f6:cd:ac:9d:20:1f:21:84:bd:09:
df:a6:56:81:36:e2:51:17:5e:25:5b:f8:4f:6c:6f:
7a:f8:66:0e:72:05:27:e1:a0:4f:2e:91:97:98:03:
68:03:93:4e:7b:32:23:e7:47:b8:82:5f:94:31:a0:
c3:9c:69:98:56:46:ec:83:07:56:87:40:d2:a8:63:
60:af:13:50:b5:92:0c:16:bf:ca:cd:b3:11:60:fa:
8b:61:d7:ff:36:d4:e5:b2:09:a7:23:00:44:6c:ed:
71:5b:04:19:c5:c0:e4:6a:48:0b:81:e1:7a:9b:02:
37:c3:19:e9:07:a7:7e:69:61:5d:11:3d:47:f9:bc:
88:1b:4f:5d:1b:09:9b:d3:73:93:15:f6:6d:f5:a4:
83:c9:ea:83:35:d8:c5:d6:e5:5a:77:d3:e2:50:13:
b5:d7:72:21:01:24:62:e2:d3:3a:6f:f0:64:a9:4d:
fd:e9:e3:d6:2b:2f:1e:02:89:0c:b9:31:98:59:70:
a5:60:61:25:bc:6f:12:0f:41:08:28:75:10:26:c2:
7a:c3:7f:0b:22:3d:69:f6:73:19:7f:c1:10:f7:8e:
ab:54:03:d3:a7:43:0c:cd:92:b4:be:84:8f:5e:4c:
0e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:60:42:39:DF:00:3C:9A:FD:84:96:18:DF:A4:45:CB:7B:A4:F3:D0
X509v3 Authority Key Identifier:
keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:a7:3e:19:04:ff:55:6a:15:de:ca:bf:9f:8c:69:a2:71:cc:
87:3a:f0:8e:aa:1a:ec:63:41:63:e9:7d:ac:87:c3:e2:82:0e:
09:18:90:3f:62:2f:53:83:37:b2:c2:33:a8:1a:95:a9:b6:4b:
9c:b2:60:14:93:dc:8d:e1:7f:22:f5:af:cf:fe:57:62:89:36:
d9:7c:d6:ce:cb:59:f0:8c:8c:7b:3e:78:32:df:22:e2:3a:c8:
27:ef:a5:70:26:a9:00:38:43:6f:5d:a8:33:a1:17:c0:29:97:
f9:cd:13:20:0e:7c:87:e2:04:b5:d2:c3:12:91:61:17:66:6b:
20:39:b2:c0:b6:05:a9:32:4f:c4:1f:f1:a4:f4:6d:b5:07:a8:
2f:3d:de:cc:8c:3a:50:11:0c:4a:09:54:fe:41:54:d9:e6:a8:
ff:24:3d:4f:29:92:9f:70:bc:9b:bd:b7:f4:50:66:5b:fa:f0:
b9:1e:ce:00:f1:e2:0f:69:d7:95:d1:b8:e8:83:e7:ea:c2:fe:
ce:90:bb:c2:c8:c6:5f:d7:79:ea:2b:41:3f:32:c1:f5:60:26:
a8:11:de:2c:57:cc:49:c8:8f:a3:51:af:3c:63:c8:ec:7b:f9:
bd:09:51:c9:fb:77:7c:16:bd:ef:de:4f:06:b6:c9:02:0f:b1:
01:4d:c3:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:05 2026 by rpki-client