Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
File: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft (raw, json)
Hash identifier: cjln2GvGE1M2VZfqq6LhFcXM1/7CevWIzPHNLARbZig=
Subject key identifier: F1:C6:14:8A:4A:8B:94:39:D7:18:31:37:42:50:8D:E2:77:22:B2:7F
Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Certificate serial: 019D98BDF291493DC7198FC2A1C58CC0DD24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
Manifest number: 1174
Signing time: Fri 17 Apr 2026 00:01:18 +0000
Manifest this update: Fri 17 Apr 2026 00:01:18 +0000
Manifest next update: Sat 18 Apr 2026 00:01:18 +0000
Files and hashes: 1: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl (hash: N4gDksZfkfWZHQ7EGj2D8a9DFcbXfq5idxaZXONK5gs=)
2: 9gVKfPDu8oaxgCYhsIHGv4QIfWU.roa (hash: fllRN8SucuRDRWnVjdcisQzmvofCxZ5K6VMo5ZRY8Z0=)
3: YOp__Ry-NGpngn9AjDGoHEbjeCg.roa (hash: ON5r8fZJQGVj6wPi39Ya/7ATYu3d/0MWZ+FMIC4DzPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:f2:91:49:3d:c7:19:8f:c2:a1:c5:8c:c0:dd:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Validity
Not Before: Apr 17 00:01:18 2026 GMT
Not After : Apr 18 00:01:18 2026 GMT
Subject: CN=f1c6148a4a8b9439d718313742508de27722b27f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:40:2a:82:7b:aa:7c:d9:34:b1:17:7e:0c:bd:
98:cc:36:64:76:cc:4c:84:01:b8:91:89:47:87:00:
fd:39:20:3f:b6:10:bb:f5:93:64:88:80:1b:14:54:
53:aa:47:81:c8:4b:7a:89:d1:8e:40:50:98:76:9f:
ca:5c:f6:3f:18:c8:fc:9a:33:df:1b:92:e0:16:2e:
99:df:82:93:86:ed:06:2b:65:4b:ff:69:31:67:4b:
ba:f1:29:08:29:04:3c:78:bb:09:fe:5a:33:b0:4d:
d8:ba:fc:94:aa:f6:90:ec:9d:62:b9:6b:6d:1d:53:
c8:2f:08:36:13:69:3c:6c:a2:08:38:ea:3e:04:e1:
f1:f3:d1:71:56:92:9e:a4:cd:57:d4:35:ff:c9:80:
54:13:b1:ba:f9:ac:85:1c:5b:36:bb:76:cd:f8:df:
0e:1f:ea:7a:62:e3:9f:9d:28:69:01:83:c3:ae:dd:
3c:6f:0e:63:19:11:76:f0:84:6c:77:d8:e0:3e:a3:
d1:3a:25:6f:6a:a3:f9:9b:f6:85:08:52:71:1c:3d:
4c:5b:ac:49:68:3e:68:3d:bd:8b:91:c0:cf:ba:51:
f8:95:5b:ac:43:87:b5:e7:d9:f3:83:36:af:93:46:
e3:0c:a6:13:a8:02:16:6e:d3:a7:5f:c5:1d:cd:9c:
12:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C6:14:8A:4A:8B:94:39:D7:18:31:37:42:50:8D:E2:77:22:B2:7F
X509v3 Authority Key Identifier:
keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:e7:f7:1a:ea:e7:9a:cc:73:fb:30:fa:0e:70:f4:47:9f:26:
dc:11:a6:93:60:81:64:24:fa:cb:62:8d:5e:b9:0d:3f:05:55:
3b:60:76:b5:1a:f4:10:51:29:57:5f:c0:0e:60:98:56:cd:e4:
ce:30:77:3e:a4:b8:5a:27:61:b0:21:90:d7:d7:c1:b8:71:26:
ae:76:96:c4:da:4d:5b:2b:bb:2b:50:ee:09:12:e7:7d:f8:d4:
d4:4b:93:a8:a9:67:34:7c:66:eb:18:0e:38:3b:79:fb:03:5e:
a6:f4:4a:88:20:e1:ef:c3:00:b4:9d:08:b2:1f:47:a4:82:74:
bb:aa:ba:47:76:a9:bf:32:0d:c4:ba:12:de:fc:0f:44:fe:ee:
b4:c1:35:85:b6:7c:34:d3:a0:40:77:bc:7c:0e:97:f8:d2:5e:
c9:14:ce:9e:56:49:79:22:9f:45:e1:44:7e:1b:df:cd:f8:ce:
32:66:73:f1:7e:c8:2e:5f:7a:bc:43:37:e1:80:2d:ec:2e:1a:
7a:32:f4:1b:48:1e:fb:90:8f:28:7d:de:a3:f1:69:20:04:15:
0c:9f:ee:30:7a:fa:2a:78:8a:dd:8e:7b:32:db:ee:49:cc:ec:
de:69:ef:87:6c:b4:18:1f:d0:6a:ef:1d:24:0d:7a:68:c6:15:
e6:a6:54:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:42:38 2026 by rpki-client