Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
File: eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft (raw, json)
Hash identifier: UtYFDSRuYx3Jizy1ufpHvzTuqmQLzwP5yJo3IhXzZKQ=
Subject key identifier: 74:48:B1:DD:75:F1:97:4A:C7:84:F4:4B:3C:63:98:EF:DB:D8:2E:1F
Authority key identifier: 79:95:F9:1E:99:82:25:01:5F:47:06:3C:32:8E:0C:50:1D:68:B5:9D
Certificate issuer: /CN=7995f91e998225015f47063c328e0c501d68b59d
Certificate serial: 019D98F427D92FC3DC52DB4252E193E3F14A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
Manifest number: 1399
Signing time: Fri 17 Apr 2026 01:00:30 +0000
Manifest this update: Fri 17 Apr 2026 01:00:30 +0000
Manifest next update: Sat 18 Apr 2026 01:00:30 +0000
Files and hashes: 1: eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl (hash: 9bl1kFbhnS/NpMJK9WFX3iRKsRJ90RL73qys6IhoOk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:27:d9:2f:c3:dc:52:db:42:52:e1:93:e3:f1:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7995f91e998225015f47063c328e0c501d68b59d
Validity
Not Before: Apr 17 01:00:30 2026 GMT
Not After : Apr 18 01:00:30 2026 GMT
Subject: CN=7448b1dd75f1974ac784f44b3c6398efdbd82e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b4:3b:c8:bd:d4:dc:c1:c7:bb:cc:56:0f:68:
d4:6e:07:63:cf:37:1d:f4:fe:06:2a:85:89:37:3b:
ff:fc:9b:ff:f1:d3:b7:42:fc:24:c2:fa:d6:ac:1e:
b0:bf:b4:a4:e1:48:51:b1:b4:87:17:2b:bc:ea:ab:
47:f7:22:a9:95:84:3b:ca:63:3b:83:7b:28:db:24:
b4:32:9b:e8:67:75:ba:47:85:03:8e:1e:11:25:df:
21:10:6b:b1:b4:34:ec:22:e9:74:8d:c7:7b:38:bd:
a9:ca:15:b5:fa:fb:83:63:59:02:dc:05:60:3b:8e:
4a:d5:83:9f:7c:ba:34:0a:65:e1:6a:7f:cb:61:34:
a5:27:37:43:52:1b:60:f9:d6:bf:9e:60:de:c6:08:
26:0d:7e:d0:29:bb:26:01:af:55:19:88:8a:07:e7:
3c:a3:bc:4d:09:6a:2d:42:1e:e3:93:33:16:97:c0:
33:63:7c:a2:b0:ea:28:d0:5f:aa:1a:ff:0b:e8:70:
ac:4f:a5:ae:78:7e:46:b7:81:6e:20:de:c4:18:62:
59:21:25:c5:8c:38:30:c7:3e:f0:04:de:e8:63:08:
8d:48:1d:8c:2a:ad:76:56:1a:bd:20:84:15:21:78:
3c:be:82:a5:e1:ed:a3:aa:94:28:52:35:ec:a9:f8:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:48:B1:DD:75:F1:97:4A:C7:84:F4:4B:3C:63:98:EF:DB:D8:2E:1F
X509v3 Authority Key Identifier:
keyid:79:95:F9:1E:99:82:25:01:5F:47:06:3C:32:8E:0C:50:1D:68:B5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b411f5-a7f8-4b84-85e3-a09d6c5d3552/1/eZX5HpmCJQFfRwY8Mo4MUB1otZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:6c:c9:c7:ae:96:8e:fc:14:c9:1f:3a:9e:28:77:37:c0:6b:
54:0d:53:7c:52:3e:c9:17:52:c1:37:4d:d4:18:f9:48:c8:96:
58:63:4f:71:6e:ae:a8:82:61:0e:cc:12:11:04:5b:be:e5:cb:
a7:05:0d:61:b2:38:3b:6c:47:3e:9b:44:5e:e0:4a:22:61:35:
e7:ff:8f:c3:ce:1f:e1:13:84:00:77:0f:a3:18:8b:f7:f4:4e:
01:cb:59:18:f0:1e:5c:57:13:dc:df:28:d2:73:83:90:b7:1a:
e8:ae:52:e6:53:c9:45:fb:60:52:4d:72:8f:20:56:e7:35:8f:
8f:38:86:a0:82:8d:a3:a7:fe:f2:a1:9d:40:75:d4:ac:26:d5:
3c:d5:11:61:c8:3d:d0:0c:88:7c:76:e5:28:78:dc:6d:16:bf:
0e:36:94:a5:b2:71:02:ba:ba:cc:50:78:c6:03:49:7e:36:46:
0e:ca:1c:66:d7:48:8e:74:e0:51:dd:1c:6e:d9:b0:fb:59:0a:
f5:0f:dc:01:3b:b9:79:3f:70:d8:42:92:e5:ff:e0:10:02:54:
89:34:55:0d:32:93:08:9c:90:9f:40:97:19:c3:2f:51:03:f0:
79:b0:dd:2a:23:04:21:b3:58:bf:a5:28:4f:4a:ef:59:f7:21:
08:2e:b6:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:25:27 2026 by rpki-client