Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.mft
File: EHQA5PCchADaMYvWywP9XFSqqfE.mft (raw, json)
Hash identifier: y9f7Z8QRZsVPuHa8xgwEPXevWIRs1JrCUaAGTi3np7Y=
Subject key identifier: D9:6B:28:24:52:83:A2:C2:35:4D:F8:74:06:AF:B2:D6:31:DB:AC:F8
Authority key identifier: 10:74:00:E4:F0:9C:84:00:DA:31:8B:D6:CB:03:FD:5C:54:AA:A9:F1
Certificate issuer: /CN=107400e4f09c8400da318bd6cb03fd5c54aaa9f1
Certificate serial: 019D9E52044A26E11C4457A03F71A3AC03C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHQA5PCchADaMYvWywP9XFSqqfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.mft
Manifest number: 0123
Signing time: Sat 18 Apr 2026 02:01:08 +0000
Manifest this update: Sat 18 Apr 2026 02:01:08 +0000
Manifest next update: Sun 19 Apr 2026 02:01:08 +0000
Files and hashes: 1: EHQA5PCchADaMYvWywP9XFSqqfE.crl (hash: ndJISDETOf5toHZB+mws896uwFmbPAJPB7Jl/4eFtYY=)
2: msGNeRKY4hek2w_pSa5AbdvnMq8.asa (hash: PIe6d7l8SXdZZ/I+p6eU+FbcvFslTUziAAD/2pokhqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHQA5PCchADaMYvWywP9XFSqqfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:52:04:4a:26:e1:1c:44:57:a0:3f:71:a3:ac:03:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107400e4f09c8400da318bd6cb03fd5c54aaa9f1
Validity
Not Before: Apr 18 02:01:08 2026 GMT
Not After : Apr 19 02:01:08 2026 GMT
Subject: CN=d96b28245283a2c2354df87406afb2d631dbacf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:73:4d:71:51:f6:c7:a3:63:ad:5e:09:f4:b8:
c9:db:fc:c7:bf:6c:5c:1a:44:1d:f6:6a:a0:b2:64:
16:e8:c6:f8:fb:ca:8d:c1:b6:0a:2e:3f:6f:b8:4d:
02:33:10:e5:5a:47:e1:a5:a0:63:e3:7f:e3:56:f7:
82:b9:32:00:b3:50:c3:18:d4:00:40:2f:39:16:00:
d2:a3:22:3a:b3:9a:ac:ff:03:70:db:9c:87:ec:2a:
10:dd:41:74:5e:80:27:a1:a5:b2:a4:b6:80:20:57:
22:7b:19:be:0c:3f:03:7c:92:de:c6:dd:75:b2:4c:
f8:ca:8f:99:e8:7b:60:eb:b0:86:03:f5:b2:11:ce:
64:b5:17:12:59:8c:19:f4:86:c3:4f:b8:10:54:fb:
a5:e6:7e:b6:85:66:e3:d0:72:11:2b:f8:9c:16:86:
09:5f:a2:bb:ed:d1:fb:d0:65:d4:34:b4:db:55:5a:
fc:d8:c4:93:bf:8c:8d:39:d1:9a:19:66:13:37:67:
c2:21:be:18:74:b9:23:b9:ca:af:a6:b9:3d:59:82:
41:5d:3a:10:8f:fb:29:10:38:09:ab:86:b3:f8:82:
c5:cd:aa:71:44:d7:20:c8:a0:09:f6:4f:eb:2a:ab:
b3:71:37:6e:ee:8b:2c:47:6f:db:1b:fd:bd:ec:92:
9c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6B:28:24:52:83:A2:C2:35:4D:F8:74:06:AF:B2:D6:31:DB:AC:F8
X509v3 Authority Key Identifier:
keyid:10:74:00:E4:F0:9C:84:00:DA:31:8B:D6:CB:03:FD:5C:54:AA:A9:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHQA5PCchADaMYvWywP9XFSqqfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:e8:ba:f0:8a:18:e1:6f:47:61:83:f0:d1:bd:d8:65:52:e7:
45:ca:c5:b7:6b:96:ba:60:88:9e:d8:52:f7:c1:f1:b3:d3:42:
1f:a0:99:98:e7:14:67:b4:76:8a:1c:4b:68:51:c9:2a:a6:97:
93:b6:1f:46:09:60:26:c7:67:47:8d:c9:88:da:bc:f8:34:89:
6c:5c:2c:28:98:8b:39:a4:ae:ae:ad:5c:80:95:0f:25:88:45:
b4:04:a1:fa:b1:67:51:da:21:1c:47:53:1b:56:06:e7:df:7f:
f6:24:92:dd:f7:c5:0b:66:14:ca:e8:16:40:8d:cb:d8:ca:b0:
2a:01:83:6f:f0:8b:a8:3c:a4:91:bb:88:ed:76:1a:5b:25:37:
f6:57:02:34:17:fc:66:41:57:bf:81:f4:27:e5:92:9c:c3:fa:
0f:58:9e:cd:5c:8d:91:b2:31:59:35:7a:05:25:cf:15:0f:df:
a8:1e:5d:41:94:51:71:4c:d1:d5:b8:e7:1c:fa:83:f6:8e:a9:
61:2c:e9:fe:2c:89:03:39:93:b0:24:3d:f8:f3:dd:60:37:06:
33:b8:51:4a:0d:81:c5:c1:be:83:41:dd:e7:53:c6:b8:d2:d9:
7a:05:7d:df:f8:48:42:16:e6:3d:14:17:c6:6d:df:ec:c9:43:
95:34:8b:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2eUgRKJuEcRFegP3GjrAPJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwNzQwMGU0ZjA5Yzg0MDBkYTMxOGJkNmNiMDNmZDVjNTRh
YWE5ZjEwHhcNMjYwNDE4MDIwMTA4WhcNMjYwNDE5MDIwMTA4WjAzMTEwLwYDVQQD
EyhkOTZiMjgyNDUyODNhMmMyMzU0ZGY4NzQwNmFmYjJkNjMxZGJhY2Y4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnNNcVH2x6NjrV4J9LjJ2/zHv2xc
GkQd9mqgsmQW6Mb4+8qNwbYKLj9vuE0CMxDlWkfhpaBj43/jVveCuTIAs1DDGNQA
QC85FgDSoyI6s5qs/wNw25yH7CoQ3UF0XoAnoaWypLaAIFciexm+DD8DfJLext11
skz4yo+Z6Htg67CGA/WyEc5ktRcSWYwZ9IbDT7gQVPul5n62hWbj0HIRK/icFoYJ
X6K77dH70GXUNLTbVVr82MSTv4yNOdGaGWYTN2fCIb4YdLkjucqvprk9WYJBXToQ
j/spEDgJq4az+ILFzapxRNcgyKAJ9k/rKquzcTdu7ossR2/bG/297JKcPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNlrKCRSg6LCNU34dAavstYx26z4MB8GA1UdIwQY
MBaAFBB0AOTwnIQA2jGL1ssD/VxUqqnxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUhRQTVQQ2NoQURhTVl2V3l3UDlYRlNxcWZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9mMWVmYTktZDdlYS00YzI5LWJjZWYt
MDM1NjM5ZTllYmI1LzEvRUhRQTVQQ2NoQURhTVl2V3l3UDlYRlNxcWZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi9mMWVmYTktZDdlYS00YzI5LWJjZWYtMDM1NjM5ZTllYmI1
LzEvRUhRQTVQQ2NoQURhTVl2V3l3UDlYRlNxcWZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaei68IoY
4W9HYYPw0b3YZVLnRcrFt2uWumCInthS98Hxs9NCH6CZmOcUZ7R2ihxLaFHJKqaX
k7YfRglgJsdnR43JiNq8+DSJbFwsKJiLOaSurq1cgJUPJYhFtASh+rFnUdohHEdT
G1YG599/9iSS3ffFC2YUyugWQI3L2MqwKgGDb/CLqDykkbuI7XYaWyU39lcCNBf8
ZkFXv4H0J+WSnMP6D1iezVyNkbIxWTV6BSXPFQ/fqB5dQZRRcUzR1bjnHPqD9o6p
YSzp/iyJAzmTsCQ9+PPdYDcGM7hRSg2BxcG+g0Hd51PGuNLZegV93/hIQhbmPRQX
xm3f7MlDlTSLZA==
-----END CERTIFICATE-----
Generated at Sat Apr 18 07:14:17 2026 by rpki-client