Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: Q71ntLlp5W/L9QVOnGNCibS2PpZdVnNOObvt0qcb1q0=
Subject key identifier: EC:D2:EC:79:26:3E:18:5D:CC:7D:A7:4C:24:96:56:9F:BD:02:4F:78
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 019DCD865FC52BCC2BC39F37C540EF7B63C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0FC4
Signing time: Mon 27 Apr 2026 06:00:28 +0000
Manifest this update: Mon 27 Apr 2026 06:00:28 +0000
Manifest next update: Tue 28 Apr 2026 06:00:28 +0000
Files and hashes: 1: OgmO1-eTgD9dDZrWj316OjI4JBA.roa (hash: 2J65qaET21q0mAcovvv6olsnYJM+JIut2vJCZjhvWr4=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: 8pDC60QbMOCSDBJQkjoNS67uRIAajh2mr90ujWxf61M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:86:5f:c5:2b:cc:2b:c3:9f:37:c5:40:ef:7b:63:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Apr 27 06:00:28 2026 GMT
Not After : Apr 28 06:00:28 2026 GMT
Subject: CN=ecd2ec79263e185dcc7da74c2496569fbd024f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:47:72:8f:30:52:b2:00:0e:8b:64:27:20:c5:
8b:7f:59:f9:95:61:61:6a:40:27:fb:77:bc:35:1f:
3d:07:09:7f:3c:f8:85:96:4e:13:ee:02:cd:c9:ba:
1a:52:bf:fe:c5:41:c4:5d:22:ee:94:b7:25:aa:0f:
e1:36:31:c5:ce:2b:f6:81:c4:91:37:a2:cd:e7:fb:
c2:da:5c:23:28:90:93:d4:49:5c:dd:d0:b7:aa:67:
4b:60:8c:10:32:06:d0:3c:8e:5a:29:b7:01:db:53:
5a:68:f5:8f:a3:12:21:d6:1f:f4:05:1d:fc:75:94:
78:02:89:4f:90:03:27:c9:66:aa:6a:67:ed:93:8b:
da:b3:14:4f:25:41:2e:df:e1:b6:78:f3:5a:0e:25:
e8:a2:d8:f3:b6:e6:b1:b1:5e:2b:61:ed:fb:5b:c5:
ce:46:5c:d4:eb:01:7d:d1:6c:bc:06:9f:6d:53:f0:
f4:42:49:d8:e3:8b:f3:cd:d6:79:4b:1a:5e:7b:c8:
6c:bb:0d:3e:cd:a7:97:bb:b9:b3:7e:fa:e3:e0:39:
3a:fd:d7:6e:be:2a:0e:5c:23:4c:b8:ef:4f:d9:3a:
30:4b:37:31:ca:c3:8b:f9:89:84:5c:22:0e:b3:d0:
c0:05:8f:43:77:9c:06:aa:94:41:19:54:f2:bc:39:
01:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D2:EC:79:26:3E:18:5D:CC:7D:A7:4C:24:96:56:9F:BD:02:4F:78
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:d1:30:ac:cf:a6:8d:f4:62:1d:cb:fe:fa:69:4d:4e:3a:17:
9e:fa:60:8d:d7:d8:42:e8:d5:9b:f7:4d:52:c5:ec:c6:97:93:
60:38:26:ca:37:6d:2f:19:0a:3d:be:4e:e6:ed:46:ab:d7:50:
32:7f:80:e0:5e:e9:da:7a:0d:30:14:5e:ea:a3:a5:81:ee:41:
7e:4d:ed:6f:36:7b:87:ad:be:c5:05:7f:f6:80:ce:7b:46:41:
d1:b9:f2:2a:ea:5d:51:a2:d5:a5:5f:db:77:a4:69:3c:09:98:
e0:c0:54:c3:3a:1b:ba:6f:4a:29:62:5c:f9:56:31:1e:b9:03:
8c:8a:1e:c0:18:7b:5d:14:d3:1c:57:73:70:d6:ae:af:06:76:
77:89:8a:fa:82:bb:85:93:1e:fd:66:e0:1b:90:26:f3:bc:95:
4f:57:14:6f:bd:26:31:e2:9c:27:8c:b0:b5:c7:fa:e6:4b:29:
54:39:19:88:a9:17:9e:80:d8:13:47:ed:3c:9b:f3:d6:8f:48:
6d:07:5d:de:96:ca:35:57:c8:e8:6f:33:4e:03:18:21:e8:28:
66:2d:04:59:f2:a6:2a:22:88:c6:8d:f9:c1:83:81:40:16:ab:
d4:88:04:ca:65:b9:b1:37:1b:57:01:45:6a:03:32:dd:30:be:
5d:c8:0a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:17:10 2026 by rpki-client