Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
File: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft (raw, json)
Hash identifier: 4UortRBFniLk8SnkGM1D6QHANnHyMEB3sYkzvbrh7Xo=
Subject key identifier: 9B:B9:E5:D7:FD:D7:C5:F2:BD:7C:78:40:C0:CB:BA:B7:CD:71:BA:69
Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Certificate serial: 019CA9B37A668B479938BF575A60F580EB55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
Manifest number: 10F8
Signing time: Sun 01 Mar 2026 14:00:37 +0000
Manifest this update: Sun 01 Mar 2026 14:00:37 +0000
Manifest next update: Mon 02 Mar 2026 14:00:37 +0000
Files and hashes: 1: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl (hash: 5MQULhNzQSvr3qNqpIsPoaOPstvQxSeQkT6tfdxeVPg=)
2: 9gVKfPDu8oaxgCYhsIHGv4QIfWU.roa (hash: fllRN8SucuRDRWnVjdcisQzmvofCxZ5K6VMo5ZRY8Z0=)
3: StLIAV2fKuLDhmrrQu_tKgGgqlA.roa (hash: CfI+yrU63zMNqBnPUTG7mb2lLWstmThXlNWZLD3ofjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:7a:66:8b:47:99:38:bf:57:5a:60:f5:80:eb:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Validity
Not Before: Mar 1 14:00:37 2026 GMT
Not After : Mar 2 14:00:37 2026 GMT
Subject: CN=9bb9e5d7fdd7c5f2bd7c7840c0cbbab7cd71ba69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b8:e7:7f:82:df:34:92:6d:20:dc:f0:73:40:
60:bd:eb:ea:cc:26:27:62:86:e1:75:8d:ab:d3:c5:
8d:3a:73:aa:12:f2:e3:9b:04:34:4c:dc:3c:20:d5:
7d:12:46:25:d1:5b:0d:fe:d3:81:30:0f:25:29:0d:
51:5a:09:05:5c:28:0f:76:59:8e:32:9f:8b:1c:33:
aa:ef:19:33:f4:bb:25:66:32:e2:55:c1:9b:2f:03:
74:ce:7e:ed:75:10:a6:68:5e:a9:1d:2d:d0:4c:5a:
14:f6:04:98:83:07:03:38:8c:7d:94:f6:ea:b9:b7:
44:20:18:35:22:44:28:09:22:27:55:d0:d4:60:23:
00:03:c6:16:bb:ff:dc:b6:23:c4:1f:6f:94:c1:bb:
cb:38:0f:a5:46:81:40:a0:62:99:a0:a9:d7:45:f6:
56:08:97:17:8f:29:a3:47:31:11:45:c7:da:d0:3a:
90:4d:47:9d:91:d7:3c:b2:32:2c:d1:75:0f:a0:98:
ec:cd:db:a3:3a:a4:18:00:2b:65:52:8e:c3:ca:d7:
15:df:22:1f:24:70:49:c8:c9:5f:c4:f0:9d:75:ed:
33:13:9d:2f:b5:93:48:e3:c5:02:aa:0f:dc:b7:0e:
c9:c5:15:32:9d:87:cb:0b:a2:70:0e:16:f5:f1:6e:
e6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B9:E5:D7:FD:D7:C5:F2:BD:7C:78:40:C0:CB:BA:B7:CD:71:BA:69
X509v3 Authority Key Identifier:
keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:e3:f0:f8:ad:b6:13:1d:48:d9:0b:64:ee:16:35:bd:f8:8d:
8b:1b:dd:43:b2:f7:16:20:b9:97:2d:12:73:61:85:13:5e:ac:
16:1a:16:f2:20:a0:51:a6:94:83:d5:73:78:ff:c3:27:8c:ac:
5f:a3:ab:30:70:41:2f:03:d3:b7:dd:3e:dd:00:c5:2a:10:b6:
4c:dc:5a:bb:a1:32:d9:9a:66:dc:5c:ea:7b:34:60:78:e0:61:
7e:3e:60:5b:8f:8a:0a:55:38:89:aa:15:f4:fa:d1:65:ed:f8:
3d:8b:38:9c:83:f7:21:7b:99:1b:a2:1d:12:23:a8:c2:ea:72:
18:df:93:d6:6b:b8:ed:ff:ff:73:61:fd:6b:95:4c:28:9e:7e:
00:62:aa:8d:8e:1e:3a:7c:43:dc:a8:ec:cc:6a:b7:f8:39:5b:
ec:da:31:eb:42:ae:14:ca:3e:54:0e:d4:68:d8:ed:93:1c:f4:
25:ff:c0:96:64:3e:46:a1:12:1e:59:81:87:d9:9c:1b:8c:28:
5b:98:71:37:0c:4e:9a:07:4e:14:34:27:cb:23:8b:86:76:df:
e8:a4:1c:ec:00:1c:64:00:aa:ca:2d:73:1b:80:f1:89:e6:b1:
b2:eb:76:64:aa:63:0c:92:e7:72:34:8c:fe:48:20:35:47:f8:
82:01:e5:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:26:02 2026 by rpki-client