Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
File: EHTblkAv9c8YdWRWDqjxPu61_-s.mft (raw, json)
Hash identifier: skeaFTF8+3yDXh/ApDlg+Nv0FrIns3yaXq0rEktrN9M=
Subject key identifier: 41:58:33:FE:E0:60:25:36:82:C8:71:49:4B:49:EC:8D:16:DA:26:18
Authority key identifier: 10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
Certificate issuer: /CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Certificate serial: 019E300510F70E058B6AE7C2D2067A9A3F68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
Manifest number: 1951
Signing time: Sat 16 May 2026 09:01:38 +0000
Manifest this update: Sat 16 May 2026 09:01:38 +0000
Manifest next update: Sun 17 May 2026 09:01:38 +0000
Files and hashes: 1: EHTblkAv9c8YdWRWDqjxPu61_-s.crl (hash: R/fYrg8BYSjlCsuBeHwwlnhrSaFzfUnpKLUevoJpzds=)
2: oGSX6Be2A4gMsymfO3IeIELxVGc.roa (hash: 9nynO0eaDCEM38Kekr3tOs/yAPJlXITpxT9ftUpbs/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:10:f7:0e:05:8b:6a:e7:c2:d2:06:7a:9a:3f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Validity
Not Before: May 16 09:01:38 2026 GMT
Not After : May 17 09:01:38 2026 GMT
Subject: CN=415833fee060253682c871494b49ec8d16da2618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:10:81:93:9c:da:82:97:e7:e0:6d:30:5f:f3:
63:1f:de:62:ac:ef:20:6d:8c:2e:98:5f:3f:6f:2d:
2a:53:67:0e:b9:98:ce:51:60:4a:a3:a5:93:1b:5c:
80:0d:4d:1f:58:15:9b:30:ce:1b:70:33:c2:7a:95:
58:f6:71:77:9b:75:5e:6c:78:f9:fd:c6:bb:c7:b1:
5f:eb:c0:68:46:ad:c8:72:39:c2:d3:eb:5c:df:2c:
6c:10:c1:90:fd:b0:73:27:ed:4a:26:aa:7a:0c:a7:
67:11:55:3a:d3:fd:6e:c7:85:26:54:80:5f:b0:83:
cd:fe:a7:d5:c8:0c:9f:ca:bb:a8:98:4d:80:52:bd:
8a:32:61:7b:48:a2:cd:70:33:f6:e3:c1:31:d9:2b:
86:69:5d:0e:1b:bb:23:a3:78:8c:53:df:84:03:24:
1e:8b:da:a9:17:23:3a:8d:9a:67:e2:c6:80:8c:b8:
74:ee:04:b9:b2:81:c3:d2:f1:1c:87:ae:d3:1a:9c:
c5:d1:bb:2f:a5:c6:44:ce:e2:1a:0b:1d:2c:cd:b3:
e5:ee:34:ee:00:ba:a2:68:f1:69:8e:5e:bb:11:5f:
47:ff:49:eb:c6:1c:10:e0:ec:ec:b1:f1:14:e4:43:
7d:4e:bd:cd:45:11:45:b8:93:e8:bb:2a:2c:be:6f:
a7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:58:33:FE:E0:60:25:36:82:C8:71:49:4B:49:EC:8D:16:DA:26:18
X509v3 Authority Key Identifier:
keyid:10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:7a:63:c5:e1:99:7b:ba:e7:bf:b5:fe:bd:c4:c9:0b:4b:11:
18:5a:06:b5:f5:2e:e7:9e:94:1e:28:4e:03:6d:d0:cd:8b:9f:
54:e4:e2:55:4a:dd:ee:00:fb:8d:5c:2a:3b:eb:a5:b5:02:eb:
d9:71:47:9f:c6:d7:31:a8:ab:18:de:34:4c:22:6a:34:8f:48:
e7:6d:89:5c:15:37:32:d8:07:b9:e9:4e:39:8a:02:d9:00:c9:
b5:1f:76:32:06:01:74:f3:69:0a:83:0c:46:65:f6:75:70:bc:
31:d6:f7:c2:ae:15:54:5a:01:76:92:dd:f0:2d:48:5e:da:87:
19:60:61:2d:cd:02:1f:b1:ef:4e:b6:81:47:59:95:03:0e:bb:
3f:39:ae:b7:bb:21:e3:d8:99:15:15:ec:9f:0d:45:46:12:85:
61:77:8c:b3:69:c6:8d:8e:44:09:f6:66:bb:c8:0a:17:8a:96:
cb:33:bd:ed:39:6f:94:df:f8:94:55:03:dc:e6:4a:ff:47:2d:
94:79:c2:65:45:c1:be:73:36:6b:38:89:03:3d:2d:39:b4:39:
58:36:71:f9:61:2e:44:0d:17:f3:d2:31:15:05:5f:a5:8d:54:
a7:c3:5d:34:b0:94:f8:f7:d3:43:90:9f:84:96:0d:cd:7c:3e:
a0:78:67:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:55:30 2026 by rpki-client