Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
File: EHTblkAv9c8YdWRWDqjxPu61_-s.mft (raw, json)
Hash identifier: 0PRKaAORWS3hcWn8q14yyiJRzJh3YUh1g0aY53hjdtI=
Subject key identifier: 35:5F:F0:74:14:40:D0:63:37:30:37:C2:37:0D:A2:62:F8:A0:52:3E
Authority key identifier: 10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
Certificate issuer: /CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Certificate serial: 019D38D2ACC0283617F39DD4CDAC57670EB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
Manifest number: 18D1
Signing time: Sun 29 Mar 2026 09:00:23 +0000
Manifest this update: Sun 29 Mar 2026 09:00:23 +0000
Manifest next update: Mon 30 Mar 2026 09:00:23 +0000
Files and hashes: 1: EHTblkAv9c8YdWRWDqjxPu61_-s.crl (hash: C06b/Q9Kvn/v9ijxFCx+UNsJVnuf1Xhg6x5hm0WM6W0=)
2: oGSX6Be2A4gMsymfO3IeIELxVGc.roa (hash: 9nynO0eaDCEM38Kekr3tOs/yAPJlXITpxT9ftUpbs/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:ac:c0:28:36:17:f3:9d:d4:cd:ac:57:67:0e:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1074db96402ff5cf187564560ea8f13eeeb5ffeb
Validity
Not Before: Mar 29 09:00:23 2026 GMT
Not After : Mar 30 09:00:23 2026 GMT
Subject: CN=355ff0741440d063373037c2370da262f8a0523e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1e:a3:e2:0d:34:7b:39:9b:ea:c8:75:a2:1e:
50:80:4c:89:d9:25:3e:31:f3:a8:95:73:07:0d:7e:
82:3f:b6:eb:e4:86:34:0f:bb:42:8f:30:78:b3:1a:
1f:54:1a:d9:51:7a:7c:4d:c0:57:f2:09:f3:d3:0f:
a3:2b:db:05:62:a2:62:ff:01:0c:26:ab:32:53:a8:
61:2a:d5:25:24:60:31:7a:ca:43:ec:f7:c1:5a:32:
ff:9d:a7:0d:23:4c:91:5a:7f:89:5e:0f:02:9a:2b:
c3:96:c1:c5:2e:ea:ac:18:b3:41:9a:c2:2f:be:00:
73:6d:b5:79:dc:32:36:0d:2b:89:9f:69:cb:22:e7:
6c:5f:a7:7b:47:89:65:7f:23:fe:c5:b5:bb:67:9a:
1e:c3:c2:98:57:8d:02:c5:26:86:36:d9:be:70:e6:
2c:19:2e:9f:54:98:a0:ed:4a:ed:51:da:7e:a6:7b:
59:9c:a2:01:f8:23:ec:5d:60:25:99:81:97:bb:25:
c4:5b:08:c1:61:4b:e0:67:e3:ed:ef:e4:e3:14:63:
bf:54:88:42:24:7f:c7:0c:e9:49:e5:18:b5:0d:9b:
41:69:49:12:85:7a:0f:ca:d5:e8:85:a7:9e:09:e7:
68:87:89:ea:df:3d:0a:f8:9b:e8:fe:d8:6b:4e:b6:
7e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5F:F0:74:14:40:D0:63:37:30:37:C2:37:0D:A2:62:F8:A0:52:3E
X509v3 Authority Key Identifier:
keyid:10:74:DB:96:40:2F:F5:CF:18:75:64:56:0E:A8:F1:3E:EE:B5:FF:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHTblkAv9c8YdWRWDqjxPu61_-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e1d69-0bfd-40af-88b1-ab40b58a2892/1/EHTblkAv9c8YdWRWDqjxPu61_-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:4c:c4:2b:52:f7:a5:1e:c8:59:7c:16:9b:7a:85:54:5b:2e:
10:22:37:d6:9a:47:75:1e:73:d0:d0:9e:14:b2:de:6a:33:69:
b0:df:5f:d6:fe:68:7b:e0:17:37:37:0a:f7:6f:07:d0:0d:58:
b0:04:f6:05:2d:0b:3f:99:06:45:50:6c:8c:7d:f5:62:67:b0:
90:8e:ed:10:7d:40:6f:97:a3:ed:85:04:08:6e:ed:90:58:f2:
7c:85:b4:20:82:0f:eb:fc:cf:83:7b:32:b6:ea:bc:e0:f7:10:
90:4d:3b:a1:70:60:25:08:80:8c:a3:54:fe:43:2b:29:f6:8f:
33:81:a5:0e:84:1c:4f:e2:3a:69:3a:b4:a5:99:f5:0e:9b:bb:
e9:ce:6d:1b:fd:c6:14:3b:82:ef:6d:80:62:b2:7f:8a:e5:69:
98:00:76:c7:4c:51:95:89:8e:2a:bd:7b:bc:42:51:5a:f2:ac:
3d:7d:ca:71:c6:de:03:01:57:da:2f:1e:8d:b1:b8:fd:ef:06:
ab:be:c6:62:92:03:4e:37:3e:5c:a3:a7:e9:76:ef:b2:fd:df:
87:7b:10:35:e7:a4:9b:a6:d5:1a:14:c9:ee:46:37:72:53:43:
41:14:df:d1:a7:1c:db:e7:0b:fd:2d:85:f2:fa:a8:e6:e7:fb:
7e:e5:f5:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:15 2026 by rpki-client