Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
File: EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft (raw, json)
Hash identifier: zevqeoOlXgXMR10+AwI5Pw0bsvx08oaSZeNw2237vok=
Subject key identifier: 0A:35:A6:37:93:EB:A3:AB:5C:1D:D9:41:87:79:B2:F2:1B:25:2F:89
Authority key identifier: 11:0F:05:3A:6D:B5:4B:1B:F3:96:F8:50:63:A6:FC:CA:0A:34:6E:C3
Certificate issuer: /CN=110f053a6db54b1bf396f85063a6fcca0a346ec3
Certificate serial: 019EC036298EFE762A2F193F0454B1FF31A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
Manifest number: 1959
Signing time: Sat 13 Jun 2026 09:00:35 +0000
Manifest this update: Sat 13 Jun 2026 09:00:35 +0000
Manifest next update: Sun 14 Jun 2026 09:00:35 +0000
Files and hashes: 1: EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl (hash: JfVoeA/sefYygFWLm/IMLzrFv3x1x9lmxGPYWudft28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:29:8e:fe:76:2a:2f:19:3f:04:54:b1:ff:31:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=110f053a6db54b1bf396f85063a6fcca0a346ec3
Validity
Not Before: Jun 13 09:00:35 2026 GMT
Not After : Jun 14 09:00:35 2026 GMT
Subject: CN=0a35a63793eba3ab5c1dd9418779b2f21b252f89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:06:cd:18:b6:53:d2:67:d7:b6:47:bd:73:2a:
fe:3e:0e:9a:ff:b4:80:b7:09:ec:92:5d:15:dd:3a:
14:6e:e0:e6:e4:14:cc:00:4c:d7:7b:09:d2:85:d9:
5f:cf:d3:b9:ab:bb:22:7b:f1:cc:ec:f7:67:e1:7a:
02:1f:27:c6:09:0c:aa:f1:5f:72:1a:65:95:18:60:
c2:bd:a5:30:bc:85:b1:10:1d:86:46:62:65:a5:0f:
bd:6b:81:b0:3d:e2:19:4c:4e:ab:d3:fa:24:e3:30:
97:e7:0c:3c:de:b7:62:86:ba:23:ad:8b:2c:a6:fa:
22:23:d8:70:c9:f9:a7:e6:5d:10:95:07:2c:eb:f9:
16:49:7f:c9:c5:66:76:25:21:96:70:e1:ce:20:51:
14:e5:90:fd:d6:89:a5:f0:36:cc:ed:e9:b7:de:24:
18:39:58:a2:92:a3:85:b5:34:7a:03:cf:51:a5:e3:
54:b8:8a:ed:13:c8:e5:42:75:59:49:27:6f:9d:51:
b7:86:83:1e:e5:15:f1:fd:20:09:bb:52:44:ef:dd:
66:06:6e:2a:b7:11:7c:5c:22:0e:9d:41:96:fd:5f:
50:a6:1e:bf:b4:5c:b0:0c:46:ac:d5:ce:0a:95:cb:
ba:3c:75:ca:f6:2d:89:6e:6a:19:60:cb:74:52:61:
5e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:35:A6:37:93:EB:A3:AB:5C:1D:D9:41:87:79:B2:F2:1B:25:2F:89
X509v3 Authority Key Identifier:
keyid:11:0F:05:3A:6D:B5:4B:1B:F3:96:F8:50:63:A6:FC:CA:0A:34:6E:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:44:c3:8c:78:d9:80:c7:4b:d4:b8:40:29:f2:d5:d4:c4:94:
ef:a8:e5:dd:8a:ef:ef:e7:a3:3f:c1:4a:03:f4:b9:38:48:ec:
b0:db:e4:93:7f:de:27:5c:62:22:d3:d5:71:e3:e5:d0:c5:c2:
3f:ef:f1:86:3a:2c:a9:61:74:5b:30:f4:4b:fb:6d:39:48:45:
0a:a2:55:c6:44:93:ca:36:4e:81:30:64:12:4b:f9:01:40:0c:
4b:78:e5:e6:5a:ab:c0:54:a5:02:0f:20:94:7d:fe:61:34:90:
51:65:e3:66:bc:11:7d:a8:8b:91:6f:71:0b:52:59:c0:14:3f:
51:c3:9b:97:83:4b:c9:83:92:58:0e:7f:5b:5b:37:44:c0:ea:
3d:6c:11:f1:e2:75:1b:0a:41:a4:a3:5c:49:b3:e2:63:d2:cb:
bb:52:c4:1b:26:41:c9:3f:ab:7b:df:dd:2d:21:fe:10:83:bf:
11:aa:a0:d1:17:f2:cb:db:dd:91:ed:26:f4:5f:75:c7:fe:ee:
d3:b6:f6:6d:02:2a:eb:fc:f7:f8:8f:02:ab:be:7a:5e:45:55:
7f:f4:fe:f8:7b:30:eb:da:8e:e2:e4:67:10:86:ba:db:b4:fa:
b6:2f:d9:90:68:69:0d:e0:00:f3:fe:42:56:60:56:f6:5d:01:
24:38:d5:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:37:31 2026 by rpki-client