Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
File: GHpwT0heEd7avFYmTl2AwUh-CEI.mft (raw, json)
Hash identifier: 2dTAiAs5qrWHhkvKwdFVNIhxYcGnHoiwvAhjt6wjWLU=
Subject key identifier: BD:25:DF:60:42:07:0D:65:D1:F3:C6:27:94:67:EB:2C:42:B3:E9:09
Authority key identifier: 18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
Certificate issuer: /CN=187a704f485e11dedabc56264e5d80c1487e0842
Certificate serial: 019EC111A138FF364173A408247E4582BDF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
Manifest number: 0497
Signing time: Sat 13 Jun 2026 13:00:18 +0000
Manifest this update: Sat 13 Jun 2026 13:00:18 +0000
Manifest next update: Sun 14 Jun 2026 13:00:18 +0000
Files and hashes: 1: AEpkQkkfLG6rJm7NAyWlaxt2CMs.roa (hash: /9I8pIAZhjtu6FrEBop1PE7UbloCJoFogvxN2q8jOmU=)
2: GHpwT0heEd7avFYmTl2AwUh-CEI.crl (hash: 46GH6XeLDBeOtzF0feje0QTw8AG+xjJ+vZMheplpup8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:11:a1:38:ff:36:41:73:a4:08:24:7e:45:82:bd:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=187a704f485e11dedabc56264e5d80c1487e0842
Validity
Not Before: Jun 13 13:00:18 2026 GMT
Not After : Jun 14 13:00:18 2026 GMT
Subject: CN=bd25df6042070d65d1f3c6279467eb2c42b3e909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:53:65:13:3c:f1:b1:0d:62:7a:c6:4e:e0:e9:
67:f6:1e:b3:bb:7c:6d:51:8e:15:d3:f1:d1:79:aa:
e4:49:02:8e:4a:f9:44:be:0b:4c:fe:27:f6:4c:f3:
21:33:cc:5a:2c:c4:55:f2:d9:86:39:5f:e2:51:f0:
0a:ce:c4:0c:17:82:16:16:93:1d:f8:47:ab:d6:7e:
e1:75:83:ce:9d:4e:14:f3:ad:03:b7:b6:6a:03:08:
7b:b5:7f:54:46:e8:a3:54:40:c0:51:e9:38:a3:6c:
6e:6b:02:9f:0c:84:b4:e0:5a:34:2d:c8:d7:1e:2c:
39:55:c5:7d:b8:96:51:9c:35:f1:64:72:93:2d:c2:
10:5a:b6:68:a4:23:bf:e2:8d:2d:d6:b0:78:eb:e9:
f7:6f:e9:01:64:2e:82:48:fd:59:0c:cc:5e:35:90:
2e:83:9c:44:8a:cf:25:0a:96:34:36:74:8b:34:15:
2d:aa:7f:3e:e0:0f:36:b1:06:51:3a:49:a4:54:e3:
8a:c7:36:cf:f6:79:b7:e6:16:5e:85:8a:7f:f4:af:
e8:40:3d:3b:2d:b5:e7:ca:d9:db:7d:64:0a:78:9b:
99:22:2a:32:b3:88:28:6b:f0:9d:fe:cb:a0:8b:ff:
f6:a1:17:7e:3d:e5:8c:4a:1a:d1:27:f9:38:ec:19:
b2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:25:DF:60:42:07:0D:65:D1:F3:C6:27:94:67:EB:2C:42:B3:E9:09
X509v3 Authority Key Identifier:
keyid:18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:4c:56:92:42:ec:bf:ca:97:84:59:e2:ae:27:5c:ad:4f:d8:
6f:42:07:17:bf:05:6d:1d:43:fb:8b:59:49:19:99:e4:b7:e7:
6a:bc:59:d4:8b:85:df:56:ec:e6:cb:e8:88:e0:78:65:b0:41:
1b:ae:76:90:4a:e7:3f:38:50:95:d7:e9:e0:76:82:3b:26:6b:
e3:0a:8c:c0:90:2b:ab:5c:dd:bd:b0:1d:04:a5:ec:84:a7:9d:
99:20:a9:b3:2d:db:81:c1:57:5c:5e:29:a9:26:1c:d2:58:1c:
25:54:ad:35:38:7e:d9:1f:82:9c:25:70:33:05:05:73:e7:12:
61:99:a0:7a:5e:6b:97:e5:62:0a:3d:58:80:e1:84:0d:da:5f:
d2:c9:62:d0:2a:8a:6b:c6:a5:ba:c3:da:41:95:b3:f8:08:84:
a5:1b:62:fa:39:90:13:bb:6b:3f:43:dd:55:96:de:a6:c5:67:
75:57:d4:4d:34:b0:87:63:52:4e:6e:81:94:e2:1d:69:ff:71:
8d:38:70:4a:5f:d8:c7:47:46:2d:f8:0b:7e:45:6b:ff:e8:e3:
b7:81:6d:49:fa:62:92:83:39:7f:9e:93:22:17:2d:d6:f2:d9:
7e:b4:19:53:33:e9:86:aa:bb:3b:5e:f3:1f:e9:24:7c:d5:81:
a8:7b:d9:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:24:08 2026 by rpki-client