Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.mft
File: EHQA5PCchADaMYvWywP9XFSqqfE.mft (raw, json)
Hash identifier: rKljxRdWLlfuihx5OVCNKZecx4um2jUssbgvUjZJ9zk=
Subject key identifier: 74:89:1E:AE:64:35:66:3F:70:C0:4E:31:89:5B:82:70:C0:4A:D8:F9
Authority key identifier: 10:74:00:E4:F0:9C:84:00:DA:31:8B:D6:CB:03:FD:5C:54:AA:A9:F1
Certificate issuer: /CN=107400e4f09c8400da318bd6cb03fd5c54aaa9f1
Certificate serial: 019CA90EE1B265E4DB8483B4948A2521B19A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHQA5PCchADaMYvWywP9XFSqqfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.mft
Manifest number: A4
Signing time: Sun 01 Mar 2026 11:00:50 +0000
Manifest this update: Sun 01 Mar 2026 11:00:50 +0000
Manifest next update: Mon 02 Mar 2026 11:00:50 +0000
Files and hashes: 1: EHQA5PCchADaMYvWywP9XFSqqfE.crl (hash: XN8GuWDREdliER6HD5lwBNLSQHmejE9iB29cRhUrO1c=)
2: msGNeRKY4hek2w_pSa5AbdvnMq8.asa (hash: PIe6d7l8SXdZZ/I+p6eU+FbcvFslTUziAAD/2pokhqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/EHQA5PCchADaMYvWywP9XFSqqfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:0e:e1:b2:65:e4:db:84:83:b4:94:8a:25:21:b1:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107400e4f09c8400da318bd6cb03fd5c54aaa9f1
Validity
Not Before: Mar 1 11:00:50 2026 GMT
Not After : Mar 2 11:00:50 2026 GMT
Subject: CN=74891eae6435663f70c04e31895b8270c04ad8f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b2:f0:e8:f7:46:c9:74:c7:2e:1d:c1:8a:79:
3a:df:ad:f2:0c:2b:28:41:cc:6e:87:d5:d4:eb:2a:
ed:d6:74:96:13:40:02:5e:d5:f9:5e:ce:07:90:79:
9f:4e:89:22:4f:0f:1a:86:a5:9f:6e:c1:49:e2:1b:
79:0c:54:43:6b:f1:22:b2:e1:5f:35:c5:b6:d6:d2:
a1:43:87:de:77:88:6a:1e:b1:e6:bf:5b:3e:30:28:
b0:7d:22:96:f2:e1:62:49:db:6e:94:5b:f8:fa:6d:
80:57:ed:ab:0c:1b:22:a4:24:84:5b:be:c4:81:82:
4e:22:25:d8:9a:c5:e4:da:29:5c:33:7e:10:cd:a5:
9e:9e:8d:9f:ab:48:d2:18:d0:cb:5d:35:8b:28:bc:
dc:3d:ad:f8:bb:99:34:ef:41:64:c8:fa:47:46:b9:
14:2b:5b:c8:7b:db:82:01:42:8f:4b:50:73:c1:15:
e2:6c:fe:88:50:8f:73:1d:9c:9a:69:31:92:e6:32:
d5:18:9f:aa:17:b8:a2:72:80:8d:2e:1d:e9:62:84:
15:ab:12:ee:02:77:84:17:0b:ae:f3:e3:f0:24:1f:
e4:f9:3d:d1:11:3f:a3:2b:c5:15:a3:c3:f3:2b:c0:
b4:27:6c:d1:65:91:29:f9:3b:da:a8:41:23:d4:68:
0a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:89:1E:AE:64:35:66:3F:70:C0:4E:31:89:5B:82:70:C0:4A:D8:F9
X509v3 Authority Key Identifier:
keyid:10:74:00:E4:F0:9C:84:00:DA:31:8B:D6:CB:03:FD:5C:54:AA:A9:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHQA5PCchADaMYvWywP9XFSqqfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/f1efa9-d7ea-4c29-bcef-035639e9ebb5/1/EHQA5PCchADaMYvWywP9XFSqqfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:d2:b0:ce:13:dd:a9:1a:b4:83:27:ca:15:ef:72:79:1c:fe:
a2:1b:ee:6f:af:f7:87:4b:0c:b7:b9:96:94:fb:63:4e:2c:3c:
61:e6:78:b9:23:2a:b1:9d:7f:ec:26:79:c1:7f:2b:00:f3:ef:
6b:95:36:d3:ea:83:f2:eb:7e:c9:73:e5:bb:7b:77:4a:d3:55:
a1:3c:bb:fc:9e:f2:c3:d8:b5:d9:37:5f:08:3d:e4:cd:26:99:
ab:30:92:c9:d4:f8:8c:15:e0:cf:96:a1:97:4b:8a:b3:99:18:
9a:bc:b0:1a:a2:f7:2a:d7:cf:d3:46:5a:35:88:54:76:e6:ab:
65:04:ed:c7:27:36:e2:e9:c3:5a:2f:d6:ad:04:8c:56:64:c3:
f3:7d:e3:17:58:21:d9:7b:c2:92:1e:7a:53:f3:e7:6d:49:b0:
f6:7a:ec:ff:9f:cc:e3:30:95:fd:ad:41:d8:b3:b4:58:4c:ba:
00:df:18:f3:1d:e8:69:71:77:29:05:e7:e3:47:53:d2:62:4b:
06:dc:e1:be:1c:37:00:f4:9f:aa:91:05:fa:58:62:a6:27:81:
59:55:ee:8f:d7:3e:1d:36:1a:20:6e:31:08:dc:7b:75:d7:6d:
6d:8d:2e:1b:7c:9b:3c:61:23:7b:c0:0e:6e:49:1c:9c:d6:a9:
99:01:78:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 14:41:00 2026 by rpki-client