Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
File: ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft (raw, json)
Hash identifier: IpsASY1TKKzVkR0NjU6/Gq2QJ5z1iY3/aZL2ZpgZwcM=
Subject key identifier: 2D:AD:C6:90:E3:6C:FA:E1:41:74:94:17:6F:76:49:8C:C7:FA:C3:0F
Authority key identifier: 7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
Certificate issuer: /CN=7a43253a368fc6475853971ba9235be0233d8b7c
Certificate serial: 019E1CB4A429618D22272BC1452B6F01E447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
Manifest number: 137E
Signing time: Tue 12 May 2026 15:01:00 +0000
Manifest this update: Tue 12 May 2026 15:01:00 +0000
Manifest next update: Wed 13 May 2026 15:01:00 +0000
Files and hashes: 1: CWHHJeYwgvu_DkfFEA9PpyyrrFU.roa (hash: oofrp1EIh2uZ/w767SyVcjsAPCoRcbFcavREaGG+ayc=)
2: ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl (hash: CXmLhjlU3vom7HIwEPjFgdFONs9y5ETHGlv4AIT5whI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:a4:29:61:8d:22:27:2b:c1:45:2b:6f:01:e4:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a43253a368fc6475853971ba9235be0233d8b7c
Validity
Not Before: May 12 15:01:00 2026 GMT
Not After : May 13 15:01:00 2026 GMT
Subject: CN=2dadc690e36cfae1417494176f76498cc7fac30f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:55:48:fc:91:e0:2c:ff:15:53:6c:39:79:0e:
f1:49:c9:a6:14:46:3d:5c:d6:1b:19:5b:76:c2:d6:
fe:7a:88:15:a0:69:91:d4:a9:15:3e:f9:61:8e:6f:
38:67:b4:d8:19:68:63:c5:e5:c4:97:6d:10:13:ef:
7b:98:54:78:52:8b:47:bc:2b:26:69:a8:e5:cd:9e:
8c:6e:12:6e:89:31:1c:d0:a4:f5:79:50:3f:53:cf:
64:ac:ed:aa:ac:cd:8f:2f:7c:7a:36:23:f5:43:14:
5a:84:66:62:23:fd:ba:5b:a3:e3:10:eb:18:57:67:
be:8c:cf:02:52:c8:27:a0:f3:f0:c3:ee:ca:e5:6c:
50:1c:3d:6c:64:36:9f:80:9e:3a:ee:26:eb:62:45:
00:92:92:90:fd:8a:f5:b8:78:fc:b5:e3:84:ed:1b:
4c:35:ab:0e:12:a3:ab:94:10:81:07:15:52:f1:24:
c5:b8:92:c4:be:d8:5f:9d:6e:f5:5c:48:15:a7:2b:
93:ce:e0:e2:1f:6c:5b:ce:ff:2f:25:a5:15:7a:a4:
71:43:68:6e:31:0d:67:f2:6c:3e:b7:e3:64:65:a0:
5e:49:1e:37:a5:0b:54:e0:dc:36:ef:c4:66:02:6d:
44:c4:c2:d2:9a:e2:3e:a8:33:97:28:64:4f:9e:0b:
45:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AD:C6:90:E3:6C:FA:E1:41:74:94:17:6F:76:49:8C:C7:FA:C3:0F
X509v3 Authority Key Identifier:
keyid:7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:ec:b0:08:bf:15:6e:1d:46:8e:c5:54:9b:10:ff:7f:4b:d7:
74:32:e1:41:5c:54:83:aa:91:83:00:c0:ce:14:0c:6b:ec:97:
20:54:0b:74:f2:b2:57:8c:02:94:fb:44:8d:05:e8:6f:e2:97:
2d:e3:4c:7e:2d:de:3c:50:79:4c:e8:23:46:70:4e:12:68:f7:
6f:02:2b:4c:9e:f7:ae:d1:23:01:d2:46:37:56:28:f3:e2:24:
4b:fd:42:23:53:fe:8d:e1:0d:a4:99:06:ef:c1:e3:6a:3f:c7:
6f:18:4b:ce:cc:ba:ac:d8:cf:3d:12:71:89:c2:8e:eb:16:7d:
f6:4e:5d:5f:a0:2a:56:1d:f3:92:5e:d4:3f:59:0c:67:16:32:
2c:84:bc:2a:f4:d0:1f:09:4e:d3:1d:c0:ba:ca:ba:bc:fe:5a:
6a:e9:b0:85:e4:f6:05:63:7b:b7:b5:a1:14:d0:9b:12:3f:55:
18:0b:53:0b:e0:52:7c:17:80:d9:fb:b9:5d:c3:2f:dc:b9:ab:
65:08:9d:ee:c1:e5:a0:89:6a:ba:4a:d7:ee:14:16:e8:6e:8e:
09:48:a2:b4:08:22:5e:8d:d8:bd:a9:ce:29:3d:18:49:a8:44:
91:b5:e4:1c:2a:c1:a7:e9:26:5c:15:f6:0c:e8:d1:6a:a5:15:
83:29:07:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:03:05 2026 by rpki-client