Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
File: EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft (raw, json)
Hash identifier: 3EAfwCYd6qV145CZv+4GxOqZZYaxMAFZI/fwSydNpF4=
Subject key identifier: F2:7C:C9:C9:E4:B4:92:8A:44:1A:CD:F2:D6:79:9A:2F:39:D2:42:5E
Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Certificate serial: 019F18313E253C283F1B35DDF7C5A090CE9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
Manifest number: 1988
Signing time: Tue 30 Jun 2026 11:01:48 +0000
Manifest this update: Tue 30 Jun 2026 11:01:48 +0000
Manifest next update: Wed 01 Jul 2026 11:01:48 +0000
Files and hashes: 1: B_eufKACcye9RNL9zWFuL3O0F2Q.roa (hash: u51nAFunJxaWbsLgaW5TM9elEVLvvbw93zNAlf1WyzQ=)
2: EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl (hash: W1pWItgPAaLOFCtGvMw3Pv9Q6O2PVJmP0auiA5weZuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:31:3e:25:3c:28:3f:1b:35:dd:f7:c5:a0:90:ce:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Validity
Not Before: Jun 30 11:01:48 2026 GMT
Not After : Jul 1 11:01:48 2026 GMT
Subject: CN=f27cc9c9e4b4928a441acdf2d6799a2f39d2425e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ea:c4:e4:32:d0:27:0d:66:84:a0:3f:43:19:
d5:95:6e:9d:8e:c4:17:99:a5:5e:3a:d5:05:b6:57:
29:17:6f:eb:5d:79:29:c0:1a:a9:dc:03:e3:ca:98:
c2:23:71:60:87:4d:8b:d7:30:87:b7:45:38:c6:fd:
d8:e1:7b:ba:a0:94:6c:d5:da:6a:1d:38:22:ac:c8:
7e:bf:7d:f7:a2:e9:6f:d8:6f:b8:34:04:20:f6:7f:
1e:98:16:f9:97:e4:5c:d0:5d:be:b5:d1:78:50:1e:
ed:7a:97:a2:61:2c:5b:94:ee:c9:8d:26:c8:2d:c5:
b3:d5:53:71:0d:cb:3b:86:36:82:59:a0:ee:e1:43:
40:66:6c:7f:91:c6:31:a6:46:ee:6f:76:8a:83:4f:
a2:e5:f6:79:3c:d3:e3:f4:28:98:df:e3:c3:ba:e9:
e5:aa:d7:af:28:ad:bc:08:69:ab:e9:a3:67:22:70:
a7:22:5f:a8:7d:c0:61:34:1b:29:36:d7:b8:fc:20:
10:45:d0:64:a2:2e:85:74:3f:36:0d:2f:5a:e2:74:
7d:50:de:99:74:d5:66:d7:77:da:4b:18:03:18:65:
58:b6:cb:e9:f2:e8:cf:25:d5:e7:11:a9:2f:10:28:
95:88:e6:db:42:11:18:cb:7b:41:80:d7:49:e4:0c:
42:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:7C:C9:C9:E4:B4:92:8A:44:1A:CD:F2:D6:79:9A:2F:39:D2:42:5E
X509v3 Authority Key Identifier:
keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:41:d2:a2:37:a8:a9:13:9c:3a:fc:9a:01:5d:a0:bf:8d:80:
07:1b:4b:f8:96:ca:48:c7:c9:03:1b:bb:09:d0:da:54:f7:16:
2a:a7:65:34:d1:5f:68:11:30:37:73:c5:55:fe:be:9c:9f:87:
ff:b8:2b:ea:ea:62:27:54:de:51:cb:00:2e:a3:ce:9b:41:75:
e7:d6:09:ef:14:9d:e4:c4:6b:fc:92:99:d6:ed:1b:7e:47:eb:
46:5c:77:83:3a:eb:d7:67:1e:ea:1b:0b:83:2a:26:d0:ec:5f:
c3:65:b8:fc:8f:3c:ac:e3:d3:0a:1b:76:87:be:26:30:91:c8:
83:26:be:14:88:ba:c2:e0:5f:4a:45:c8:3c:bc:eb:92:31:9a:
c7:35:1c:70:dd:fa:07:93:69:db:c4:b3:94:c3:af:4a:21:7c:
76:01:17:b6:bd:77:a5:1c:57:71:b6:e0:1f:64:6a:0a:1f:ed:
fd:d8:c1:b5:11:05:04:e8:72:dc:e4:87:23:2e:b3:ff:68:a3:
d9:ea:52:0e:3b:a5:49:04:fa:98:26:61:e0:9a:df:d6:47:d1:
ca:f0:5b:32:91:19:7e:bb:74:4b:73:f2:df:fb:d3:d1:c7:ab:
e2:a0:72:91:2b:eb:f2:a5:8c:c6:0c:bd:3d:07:8b:09:e3:2f:
1b:ff:a6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:27:19 2026 by rpki-client