Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
File: erqgtAKPBzwFZKZYtPuIhsvI0-s.mft (raw, json)
Hash identifier: /PDSx6LJdmXCUEjdzGwJ11n5qW3mOyYT6QPMonA17YU=
Subject key identifier: A3:1F:10:06:44:43:44:F3:EE:5B:79:E9:79:5A:56:97:70:E6:51:85
Authority key identifier: 7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
Certificate issuer: /CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Certificate serial: 019D39419BE7CCEB140FCEF45F10EA0C6D97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
Manifest number: 046E
Signing time: Sun 29 Mar 2026 11:01:34 +0000
Manifest this update: Sun 29 Mar 2026 11:01:34 +0000
Manifest next update: Mon 30 Mar 2026 11:01:34 +0000
Files and hashes: 1: 5kkE3XtE9ZnSspR1OcwpVp0TyV8.roa (hash: n0us7CHhoP1rKb4vN6/gR6gcwVv7Il8CmXn18T2tiXo=)
2: erqgtAKPBzwFZKZYtPuIhsvI0-s.crl (hash: jvVD5/tKUsDQEBwfgnGfatIDDmB9SEclfUyisFdVqig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:9b:e7:cc:eb:14:0f:ce:f4:5f:10:ea:0c:6d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb
Validity
Not Before: Mar 29 11:01:34 2026 GMT
Not After : Mar 30 11:01:34 2026 GMT
Subject: CN=a31f1006444344f3ee5b79e9795a569770e65185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c4:d1:15:2e:23:00:e4:58:e1:ba:9c:c0:6b:
68:7b:cf:48:fa:42:bd:c7:f5:38:bd:c7:f7:90:c6:
bb:13:a2:29:d4:41:1c:23:73:e6:31:ae:2f:da:c9:
eb:14:bf:ac:0b:0d:b8:9a:7c:e9:b4:3c:8d:da:ae:
8e:a8:7a:f0:d1:a4:09:0c:d0:8c:15:b0:a5:37:90:
7f:7c:eb:db:ea:b0:19:49:2c:ae:f1:6e:bb:b9:28:
3f:0a:68:b1:52:1c:35:95:17:10:47:27:68:27:ad:
2a:b8:8e:47:dd:8e:28:61:ae:18:1c:33:50:58:94:
09:39:49:29:70:10:98:ef:a0:35:11:db:c9:ed:ae:
86:31:0f:cb:ca:09:e4:cd:1f:8a:96:7a:c6:ec:0a:
1a:00:0b:13:2d:7f:64:6d:17:ce:77:40:25:15:86:
dc:ed:ab:d1:68:1c:c5:76:50:b1:f6:1d:db:d3:2f:
94:de:5a:27:fb:fd:3c:76:e1:bd:66:04:80:d1:dd:
f3:36:e5:5d:f7:92:b5:b5:5a:ac:b3:fe:b0:23:4f:
d3:ec:f0:d4:6d:1e:25:b4:f2:79:c1:39:a1:ff:15:
f6:14:f0:a0:1c:b6:b0:5a:40:8f:53:e9:5f:1f:c3:
76:91:d1:f6:44:67:e7:d1:ce:b9:95:77:7a:df:9b:
84:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:1F:10:06:44:43:44:F3:EE:5B:79:E9:79:5A:56:97:70:E6:51:85
X509v3 Authority Key Identifier:
keyid:7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:44:f3:44:45:69:c7:32:4d:10:87:c7:8e:fa:82:ab:4e:01:
0d:48:e1:df:20:e4:0f:eb:1b:0b:7e:c8:ec:c1:32:c2:71:15:
11:97:d3:7c:01:94:95:2f:f1:a8:60:f7:88:59:f3:52:6e:73:
04:e3:b1:21:e2:5c:9b:9f:88:9a:22:7f:b4:86:9b:83:ac:1f:
c2:47:d7:6e:ec:6f:0d:80:3b:75:df:20:a9:35:aa:af:67:42:
5a:97:c8:d8:7d:7e:8e:11:e9:f7:b6:9c:e7:53:1b:6c:d9:b2:
41:62:91:af:0f:b8:27:a8:ea:0f:f9:22:8a:99:85:b3:24:49:
23:03:41:36:dd:25:46:3b:46:09:98:f3:56:d7:ae:02:b0:9a:
c9:97:c5:09:85:78:ba:38:4d:2f:48:b2:06:74:1c:25:1b:45:
df:80:59:db:2d:07:1f:36:4c:56:03:8d:ed:43:62:99:0a:8b:
57:e6:eb:40:ee:63:c5:a7:e4:49:0a:38:aa:71:ff:87:da:e7:
2f:89:ef:ee:ea:3a:d8:ac:de:42:2e:87:e9:92:92:84:f0:f5:
ac:b7:78:16:5b:12:46:e8:5f:19:c6:bf:0a:1a:70:e9:a9:e7:
f4:db:e0:ec:e5:66:c2:18:16:8d:af:88:08:b7:c3:99:10:18:
d2:6f:37:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:15 2026 by rpki-client