Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
File: EghcVAwRT8iVegJQu0n0hLdDV7k.mft (raw, json)
Hash identifier: m+xS5yPQjcvbkgmxlc9obLkiKpUNKC8dg7ENzQfoYGc=
Subject key identifier: 29:0D:9C:91:99:D0:15:02:01:57:45:31:7C:D8:15:05:75:F3:7E:B6
Authority key identifier: 12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
Certificate issuer: /CN=12085c540c114fc8957a0250bb49f484b74357b9
Certificate serial: 019D37F708D2748D51C839D0A7372C65B239
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
Manifest number: 0A17
Signing time: Sun 29 Mar 2026 05:00:29 +0000
Manifest this update: Sun 29 Mar 2026 05:00:29 +0000
Manifest next update: Mon 30 Mar 2026 05:00:29 +0000
Files and hashes: 1: EghcVAwRT8iVegJQu0n0hLdDV7k.crl (hash: K2ATPImNuOm1H0Nw8Pw4tkX4XujMjQesmXagIptyAlk=)
2: ygqyotocEDdtoHHhWJzx1G-yxq8.roa (hash: HyJom2GJVsUQou508bUlOx3xP/oj3d9zeLR3dffhdIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:08:d2:74:8d:51:c8:39:d0:a7:37:2c:65:b2:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12085c540c114fc8957a0250bb49f484b74357b9
Validity
Not Before: Mar 29 05:00:29 2026 GMT
Not After : Mar 30 05:00:29 2026 GMT
Subject: CN=290d9c9199d01502015745317cd8150575f37eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:03:35:3d:cd:d2:a1:e2:11:a9:5a:25:e6:3c:
26:da:c5:29:f7:4f:2c:8d:d6:02:df:6b:55:0e:cc:
9d:44:e7:0e:14:73:e5:9e:64:10:81:be:a3:28:80:
05:75:11:90:62:e4:9f:59:e4:32:6e:44:2f:27:fd:
b8:3a:f8:c0:e1:48:79:6c:81:02:85:a9:6a:05:d5:
61:56:31:07:18:56:54:7d:b1:69:5e:bd:30:08:33:
02:79:12:10:98:a9:be:c8:8f:ab:40:75:98:0f:85:
6e:c3:1d:26:f1:48:49:ea:19:84:6c:df:65:63:3d:
3c:c2:5b:2d:d6:50:08:5b:a5:9e:29:9a:db:2c:54:
bb:12:9e:6e:c8:fd:98:ed:de:b5:72:ae:00:d2:37:
3d:44:d7:b2:91:51:73:10:e9:6b:b5:e4:53:41:80:
65:3c:92:19:59:8e:c7:10:48:6d:19:86:f2:9f:ea:
e5:04:ee:e9:21:1f:79:62:10:8e:db:2b:84:b7:9e:
3f:c6:bc:5f:5f:7d:dc:27:66:00:37:93:f9:53:5c:
c1:79:5a:c4:50:42:b4:6f:9c:e0:ed:ab:72:69:2d:
ad:79:29:49:3c:01:da:5b:51:2d:d3:89:ee:40:45:
32:4c:62:6a:87:a9:4f:6e:93:07:a4:cd:b1:3e:82:
df:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:0D:9C:91:99:D0:15:02:01:57:45:31:7C:D8:15:05:75:F3:7E:B6
X509v3 Authority Key Identifier:
keyid:12:08:5C:54:0C:11:4F:C8:95:7A:02:50:BB:49:F4:84:B7:43:57:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EghcVAwRT8iVegJQu0n0hLdDV7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9cf9d4-2ce9-424b-9cf0-8aa6f6c170ff/1/EghcVAwRT8iVegJQu0n0hLdDV7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:bd:1a:bb:bc:71:63:60:59:1b:67:31:2a:a3:23:ee:e3:63:
5a:bf:a3:63:a4:64:1c:4a:d4:ba:97:76:76:40:0e:87:5b:8f:
27:0b:19:a3:f1:97:9f:c1:b1:d9:2c:cf:dc:96:2b:5a:02:f6:
25:3a:7b:7a:8d:5f:a8:2c:17:31:80:0c:50:4a:5a:4a:ce:1e:
1b:79:09:5a:90:92:56:3a:92:42:bf:ea:45:6a:5a:de:50:13:
fe:fc:06:2f:40:e9:b7:73:93:4b:96:61:bb:54:dc:2b:c5:2f:
ee:ea:f8:84:88:a8:de:3e:38:0b:64:de:ae:2f:09:b0:69:3d:
d8:a9:32:c6:84:8f:69:61:63:83:88:06:b4:94:a8:05:1a:0a:
db:20:44:15:21:a9:fa:c3:7b:c7:d1:3a:5a:e7:eb:1c:ce:ca:
93:78:ff:b4:ce:df:a7:8f:8f:fe:d1:9a:92:62:ee:c7:b4:0a:
f2:f3:cd:5c:2a:bb:39:8c:55:3b:07:8e:48:a5:1c:7d:01:a6:
28:08:6d:8d:68:49:40:33:06:cd:3a:80:2f:f9:85:c2:42:bb:
c4:18:cc:d4:16:72:f3:0c:57:e3:bd:53:15:16:dc:f6:51:95:
ed:d6:f9:c5:df:26:bb:e8:ff:cf:0d:fa:32:8d:1a:29:d7:49:
5a:0c:3e:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039wjSdI1RyDnQpzcsZbI5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyMDg1YzU0MGMxMTRmYzg5NTdhMDI1MGJiNDlmNDg0Yjc0
MzU3YjkwHhcNMjYwMzI5MDUwMDI5WhcNMjYwMzMwMDUwMDI5WjAzMTEwLwYDVQQD
EygyOTBkOWM5MTk5ZDAxNTAyMDE1NzQ1MzE3Y2Q4MTUwNTc1ZjM3ZWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAM1Pc3SoeIRqVol5jwm2sUp908s
jdYC32tVDsydROcOFHPlnmQQgb6jKIAFdRGQYuSfWeQybkQvJ/24OvjA4Uh5bIEC
halqBdVhVjEHGFZUfbFpXr0wCDMCeRIQmKm+yI+rQHWYD4Vuwx0m8UhJ6hmEbN9l
Yz08wlst1lAIW6WeKZrbLFS7Ep5uyP2Y7d61cq4A0jc9RNeykVFzEOlrteRTQYBl
PJIZWY7HEEhtGYbyn+rlBO7pIR95YhCO2yuEt54/xrxfX33cJ2YAN5P5U1zBeVrE
UEK0b5zg7atyaS2teSlJPAHaW1Et04nuQEUyTGJqh6lPbpMHpM2xPoLfaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCkNnJGZ0BUCAVdFMXzYFQV18362MB8GA1UdIwQY
MBaAFBIIXFQMEU/IlXoCULtJ9IS3Q1e5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWdoY1ZBd1JUOGlWZWdKUXUwbjBoTGREVjdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC85Y2Y5ZDQtMmNlOS00MjRiLTljZjAt
OGFhNmY2YzE3MGZmLzEvRWdoY1ZBd1JUOGlWZWdKUXUwbjBoTGREVjdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC85Y2Y5ZDQtMmNlOS00MjRiLTljZjAtOGFhNmY2YzE3MGZm
LzEvRWdoY1ZBd1JUOGlWZWdKUXUwbjBoTGREVjdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdr0au7xx
Y2BZG2cxKqMj7uNjWr+jY6RkHErUupd2dkAOh1uPJwsZo/GXn8Gx2SzP3JYrWgL2
JTp7eo1fqCwXMYAMUEpaSs4eG3kJWpCSVjqSQr/qRWpa3lAT/vwGL0Dpt3OTS5Zh
u1TcK8Uv7ur4hIio3j44C2Teri8JsGk92KkyxoSPaWFjg4gGtJSoBRoK2yBEFSGp
+sN7x9E6WufrHM7Kk3j/tM7fp4+P/tGakmLux7QK8vPNXCq7OYxVOweOSKUcfQGm
KAhtjWhJQDMGzTqAL/mFwkK7xBjM1BZy8wxX471TFRbc9lGV7db5xd8mu+j/zw36
Mo0aKddJWgw+zw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:36:07 2026 by rpki-client