Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
File: EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft (raw, json)
Hash identifier: BP0dyqh1IiE1n1aIfgAdm7+d7CaKJNS4ka/7iN5d34w=
Subject key identifier: 46:2F:6C:B5:43:CD:2E:0D:F1:3B:D8:CA:09:5B:D1:E6:8C:7D:4D:FC
Authority key identifier: 11:0F:05:3A:6D:B5:4B:1B:F3:96:F8:50:63:A6:FC:CA:0A:34:6E:C3
Certificate issuer: /CN=110f053a6db54b1bf396f85063a6fcca0a346ec3
Certificate serial: 019D9AABC50066B305DCB92CC90BB4FE875F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 09:00:41 +0000
Manifest this update: Fri 17 Apr 2026 09:00:41 +0000
Manifest next update: Sat 18 Apr 2026 09:00:41 +0000
Files and hashes: 1: EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl (hash: ni5L93yrz2qT7KQ5BCR+TOx+B6dj1eTfLUaHBoU+UX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:c5:00:66:b3:05:dc:b9:2c:c9:0b:b4:fe:87:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=110f053a6db54b1bf396f85063a6fcca0a346ec3
Validity
Not Before: Apr 17 09:00:41 2026 GMT
Not After : Apr 18 09:00:41 2026 GMT
Subject: CN=462f6cb543cd2e0df13bd8ca095bd1e68c7d4dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:df:44:03:f7:98:14:12:41:70:ff:94:fa:be:
32:5d:c8:1f:51:0f:35:0a:eb:fe:da:43:ff:38:25:
2e:53:72:d0:44:2f:63:f6:4b:1f:9d:a5:4c:37:71:
1d:32:9f:09:42:55:07:f6:90:07:c6:4d:32:16:7b:
b3:66:65:ab:f3:30:03:93:27:82:18:04:17:8d:6a:
81:98:7d:5b:f0:fb:8e:ca:fd:21:46:75:0c:50:7d:
5b:85:06:85:2d:18:5b:dc:36:42:aa:71:35:11:2d:
bc:e3:54:8a:b2:64:4e:0e:78:a3:ae:4e:05:78:30:
84:ac:16:07:e0:dc:9b:ff:00:f8:79:8c:e8:7a:26:
27:dd:0b:28:1c:9d:e9:12:74:b7:76:e1:8a:f3:b6:
0a:f0:70:41:b6:34:1b:ef:03:33:5e:c1:c6:57:54:
da:5b:23:53:12:ff:9d:d5:25:a2:0a:97:16:98:a3:
5c:d8:52:63:c2:1a:68:fd:0f:40:d9:7d:e8:13:d1:
ff:b0:d5:09:38:9c:ef:fd:83:ba:3c:9e:bd:28:3b:
6b:d3:3b:74:2b:b8:6a:9c:29:ca:17:94:4d:af:3c:
cf:ae:7e:19:76:af:3c:29:c6:f7:69:31:de:21:af:
69:2d:c8:a9:ac:b2:cd:50:e5:e1:7a:83:50:4c:f2:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:2F:6C:B5:43:CD:2E:0D:F1:3B:D8:CA:09:5B:D1:E6:8C:7D:4D:FC
X509v3 Authority Key Identifier:
keyid:11:0F:05:3A:6D:B5:4B:1B:F3:96:F8:50:63:A6:FC:CA:0A:34:6E:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:19:0a:eb:38:8f:28:77:0c:a2:6f:06:28:f3:20:7f:68:c0:
1c:03:2c:7f:88:96:8a:d6:ec:1e:f8:92:67:30:80:00:fe:67:
ed:82:e4:c4:ef:ca:6c:2a:f9:56:75:2b:d9:76:d3:b7:23:98:
23:80:b4:51:61:89:18:19:26:c2:78:cb:81:6d:a2:d0:15:4a:
ee:e7:ed:de:b7:e0:f5:aa:2d:45:b9:a3:3c:eb:c5:bb:9b:78:
d4:03:1b:64:42:b7:09:c2:2d:88:48:67:f5:e5:78:6b:ea:46:
47:d2:7c:d1:cb:7b:94:31:6b:a9:6b:11:b7:8d:eb:11:76:b3:
bf:67:29:51:31:1e:a5:61:c2:90:c2:8d:ac:87:95:f4:41:52:
ac:f3:a3:b6:ab:97:84:a2:69:dc:89:81:5d:ac:08:cc:3f:76:
19:b0:5d:f5:69:84:d3:4b:a1:e2:12:6d:4a:4b:33:53:53:0d:
c6:14:c1:09:a1:07:94:42:d7:0c:1f:1f:70:3a:b6:d5:d8:21:
f3:9e:cd:57:85:a3:23:9d:7a:3f:93:aa:aa:4a:84:d9:cd:d7:
3a:5e:d2:51:cf:16:43:bc:61:27:10:e1:ae:28:a2:6c:d8:db:
57:4e:e6:2a:f4:24:76:ad:fb:94:6f:e1:33:8b:71:cb:c1:61:
8d:69:63:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:20:55 2026 by rpki-client