Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: opIRVO3bYx7RxdVepmv1doz+3v5FZrfWmfRX4d++ePE=
Subject key identifier: EB:5E:63:01:29:67:07:83:86:24:97:D5:07:4D:85:F9:21:C8:93:83
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 019DA378EF7A67196C38B2651A4F7E6A84A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 18C7
Signing time: Sun 19 Apr 2026 02:01:44 +0000
Manifest this update: Sun 19 Apr 2026 02:01:44 +0000
Manifest next update: Mon 20 Apr 2026 02:01:44 +0000
Files and hashes: 1: YwiBk7F0B614LD9wQoEFnkWeQjs.roa (hash: mvD8mcgS8Z/u8tn955UOEASMu8p9nleqgNicn8XmXOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: IN4VVmrKWLcOW7To+u9KPWeSouj38UqMKJAudimNakM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:ef:7a:67:19:6c:38:b2:65:1a:4f:7e:6a:84:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Apr 19 02:01:44 2026 GMT
Not After : Apr 20 02:01:44 2026 GMT
Subject: CN=eb5e630129670783862497d5074d85f921c89383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:17:89:66:d4:32:4f:44:d8:61:07:c8:84:ee:
23:2f:8c:1c:5c:51:97:72:6a:4a:f0:4c:8f:63:06:
d1:a4:c0:43:55:00:3b:a2:f7:8e:e3:e0:03:65:15:
f2:57:72:d8:52:4a:cd:ee:b5:d2:bf:53:68:4a:f7:
ee:1b:91:5d:f4:1f:12:e6:1b:7c:b3:06:a8:f9:f1:
a6:b4:72:06:63:ad:f9:ca:42:93:30:8e:88:3b:12:
3c:0a:d3:0f:0f:39:41:a0:bc:d4:8a:b9:12:a8:23:
7c:99:7a:4d:db:c6:8f:7c:53:f3:e6:f8:0c:b8:81:
83:9a:6c:a1:b2:78:58:f7:52:c8:3f:bf:53:0f:27:
66:c1:39:bd:85:23:91:3c:4e:3d:29:71:32:5c:86:
b5:25:2c:7b:f2:24:8b:7a:6e:8c:18:fa:31:67:45:
90:8a:d4:09:15:15:e6:fa:a6:ff:83:b3:eb:16:05:
27:f8:a8:76:cc:e9:62:20:78:b2:7b:78:aa:70:a3:
6e:15:6f:77:2a:71:f1:92:36:a6:ed:20:7e:5a:70:
16:59:7d:b1:de:e4:e0:d4:96:4c:68:91:f3:08:16:
ad:5d:91:0c:ab:fc:3e:a3:de:04:25:22:69:91:d4:
04:cd:c4:aa:e2:3f:c7:65:0f:f2:e9:8d:6f:75:fd:
42:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:5E:63:01:29:67:07:83:86:24:97:D5:07:4D:85:F9:21:C8:93:83
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:4b:79:0b:77:08:47:0f:f5:6c:cb:ae:a0:ae:dc:7c:91:11:
e4:8e:b7:10:82:cf:cd:91:e8:ca:f3:b2:68:ea:95:92:c4:5d:
39:dd:db:4e:5d:cc:4c:0c:24:fe:29:01:5c:91:46:58:2f:fd:
66:05:13:c3:18:13:7c:11:be:97:b8:ef:29:56:5c:b1:59:28:
ff:8a:4a:a3:fa:98:fe:be:60:0a:f3:0e:ea:81:97:b3:f4:58:
4b:7b:d6:3f:ca:75:e4:03:58:91:40:16:19:76:06:ab:f0:97:
43:30:7d:41:40:53:dd:3b:98:e8:76:25:80:6f:a0:26:6c:69:
3b:55:72:96:02:40:5b:89:5d:61:4d:3f:06:5a:af:a1:3e:02:
7e:b1:44:e7:21:93:b9:e4:ae:94:dc:68:79:b6:78:30:7d:7a:
58:3a:5b:c7:28:f1:5e:8c:c6:0c:02:e4:03:fe:dd:ae:47:0f:
5e:d3:ea:e4:fa:c5:3d:f7:cb:81:bf:da:c1:dd:5a:b2:4d:d9:
80:2e:e4:49:55:d1:2c:c5:f2:2e:40:9a:26:a1:5f:d9:d0:54:
47:a4:05:66:f9:d1:f3:99:35:fd:61:d9:12:e5:e2:9a:60:fc:
b7:d8:95:73:1a:be:58:a5:de:40:d1:17:36:54:2d:54:df:04:
26:1f:7c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:56:41 2026 by rpki-client