Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
File: eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft (raw, json)
Hash identifier: S1aSQNFoa7ZAViGqPOJVDF+0ui74BYy1s6PpddtOmuA=
Subject key identifier: 8E:89:0F:11:BF:7C:8D:F2:2A:4C:08:1D:2A:A7:84:C0:4C:88:9C:8E
Authority key identifier: 78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
Certificate issuer: /CN=7870621fc0afc8ec18eef20633f6148813279976
Certificate serial: 019D38D2A3D23D95B9F9720B8D2CF69F77DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
Manifest number: 0755
Signing time: Sun 29 Mar 2026 09:00:21 +0000
Manifest this update: Sun 29 Mar 2026 09:00:21 +0000
Manifest next update: Mon 30 Mar 2026 09:00:21 +0000
Files and hashes: 1: eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl (hash: KxabAR5q0aCF0aUal50DqD1DJLbzWHGzuKf69njqNa4=)
2: jjcLF7vH_6kvhdbuJiucTbxqBvg.roa (hash: 9CdEC+k58JtQfXt8cCMHjsV9l0T5+udg+CTuc06zGlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:a3:d2:3d:95:b9:f9:72:0b:8d:2c:f6:9f:77:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870621fc0afc8ec18eef20633f6148813279976
Validity
Not Before: Mar 29 09:00:21 2026 GMT
Not After : Mar 30 09:00:21 2026 GMT
Subject: CN=8e890f11bf7c8df22a4c081d2aa784c04c889c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:18:1c:7c:c8:5a:38:23:63:74:65:30:d1:24:
8a:70:44:23:65:16:ff:03:b4:35:ce:ed:f7:ec:a4:
b3:21:9e:d9:30:15:75:5d:6a:eb:6b:e3:2e:62:ad:
bf:7d:36:7b:1f:05:2e:bf:78:2c:5d:6f:36:89:df:
05:dc:cc:73:ce:1c:4b:59:2e:65:43:8f:bf:a2:7f:
20:e0:05:f8:18:b7:82:7e:2d:aa:b7:62:78:f8:91:
96:2e:97:cf:a0:23:68:8a:4c:c1:30:9f:14:2e:90:
d6:57:68:98:63:b9:f5:b8:f0:37:da:fa:99:e7:39:
35:40:c7:b0:b6:03:8d:da:3c:5a:da:b1:df:12:6a:
53:b0:8e:86:8f:79:46:df:c2:48:1e:ca:3e:b6:e6:
4a:39:d6:d2:50:2a:f4:3b:0b:b3:99:7f:a5:dc:c8:
f9:16:92:d4:48:6a:3b:f3:cb:ed:df:2d:82:8a:21:
a6:d8:a0:f0:2a:b1:39:d6:6c:9d:2e:2a:f6:fb:e6:
16:fa:43:6c:f1:28:a4:d4:8b:ab:7a:c7:3a:ba:ed:
47:25:fb:9f:4a:b1:db:4d:0c:d7:0f:40:00:bf:96:
c4:53:cf:c1:15:5f:0c:da:1c:76:2e:a5:ee:4c:a9:
7e:5c:19:f8:57:e6:3d:68:7b:46:ce:92:6d:e6:14:
22:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:89:0F:11:BF:7C:8D:F2:2A:4C:08:1D:2A:A7:84:C0:4C:88:9C:8E
X509v3 Authority Key Identifier:
keyid:78:70:62:1F:C0:AF:C8:EC:18:EE:F2:06:33:F6:14:88:13:27:99:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBiH8CvyOwY7vIGM_YUiBMnmXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/8b4e84-becd-4ecf-beb5-96a79a1d1bb3/1/eHBiH8CvyOwY7vIGM_YUiBMnmXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:9c:26:a0:33:b5:f2:48:69:8b:b1:1e:a4:97:3a:03:ad:9c:
f9:4a:f2:97:5b:88:69:85:e9:55:5c:09:99:ec:7c:b5:55:4a:
5a:6d:31:e2:36:9c:33:4b:76:96:8a:5b:b0:4b:75:08:d1:a2:
59:2c:d5:54:c7:bd:93:78:2b:84:4c:32:0d:7b:bd:ee:ac:39:
c7:e6:38:1c:df:e4:be:d0:da:eb:5e:92:50:84:c2:6b:dc:66:
84:bf:2c:07:2c:df:27:5d:5a:ad:a4:52:d9:e0:13:e4:1a:1e:
38:80:74:8d:49:ad:e4:f7:5b:54:61:58:20:38:8e:6c:66:e4:
c2:df:75:0b:5f:61:bb:a0:86:d1:2a:ee:ef:7f:7d:20:06:9c:
e5:b1:84:a3:de:f2:69:35:a1:73:4c:c0:2a:99:f5:06:14:a8:
b7:b1:4f:cb:84:7b:f6:b4:3f:fe:5b:5e:ab:cc:1d:85:12:5d:
1c:14:c1:6c:3c:c1:82:c8:63:36:fb:f7:2f:fd:cc:78:44:36:
bc:37:8b:46:f5:af:82:50:7c:be:a7:fe:00:5b:b1:04:d7:37:
d7:d2:f3:e2:a5:14:50:fc:a0:36:3a:04:ed:88:c7:8a:48:41:
ef:e1:3a:ce:04:0d:47:b8:1e:89:33:16:36:d6:0f:e5:bd:1e:
0e:7c:92:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:03 2026 by rpki-client