Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: Lto+XUUUZXUPiHxHTvt98Iuv6Gbrvwym4dj+6Djzguw=
Subject key identifier: A9:28:06:94:64:FA:86:17:A4:FB:74:0C:98:E7:0C:38:DE:50:A2:EE
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 019CE3DA57AFE4388224213088B742453070
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0F4B
Signing time: Thu 12 Mar 2026 21:01:03 +0000
Manifest this update: Thu 12 Mar 2026 21:01:03 +0000
Manifest next update: Fri 13 Mar 2026 21:01:03 +0000
Files and hashes: 1: OgmO1-eTgD9dDZrWj316OjI4JBA.roa (hash: 2J65qaET21q0mAcovvv6olsnYJM+JIut2vJCZjhvWr4=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: QMNL53WUvAQ/E3KWzyb1sBWh49zxqXZnd30KjZEwIco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:da:57:af:e4:38:82:24:21:30:88:b7:42:45:30:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Mar 12 21:01:03 2026 GMT
Not After : Mar 13 21:01:03 2026 GMT
Subject: CN=a928069464fa8617a4fb740c98e70c38de50a2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1f:32:30:ec:1f:5e:03:5f:4a:4c:c3:93:f6:
c5:4b:bb:e3:ab:dd:1d:63:eb:01:0f:a5:8e:fd:83:
26:35:1e:22:85:5f:22:89:9e:a9:08:4b:5e:05:84:
a1:22:4f:cd:2b:e6:8f:de:a7:11:c3:3f:4f:89:9d:
19:3c:ab:ce:01:9d:45:1c:81:f3:7c:e4:07:c6:47:
ea:a3:6e:36:b1:0f:a3:92:61:42:ff:ed:7e:44:33:
ce:cd:f8:73:33:22:ea:57:d6:04:cb:e9:43:b3:74:
94:50:1d:bf:d7:21:4e:a4:52:36:48:88:bb:e5:b1:
1d:37:ab:24:e7:4a:d1:09:06:4a:af:54:61:aa:75:
46:84:b8:da:f0:b5:99:d3:3f:83:29:61:d3:c4:9d:
2a:ab:01:9c:39:96:61:7c:06:82:4b:e5:0e:5a:e8:
0c:34:bc:d8:e2:e7:6e:3e:c6:7f:a2:f6:17:88:b0:
a9:42:59:1b:cd:1f:be:1c:b8:5d:4a:a4:0a:d2:08:
15:c5:62:a8:b7:89:9b:78:68:0f:4c:e8:1a:62:8c:
8b:30:20:96:91:2a:36:f6:01:48:fd:27:8d:80:92:
b4:a3:00:19:52:76:5a:c6:8f:17:2d:77:e9:b2:3b:
a0:b8:6a:49:de:ac:93:83:13:58:ec:de:00:99:26:
2c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:28:06:94:64:FA:86:17:A4:FB:74:0C:98:E7:0C:38:DE:50:A2:EE
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:67:70:99:00:dc:8c:3b:75:48:45:5f:60:0f:c8:bc:15:12:
04:b9:55:8f:46:09:75:f4:7e:e5:a2:3a:a3:fc:1c:c0:12:99:
b5:9a:65:fb:27:50:1e:11:73:ac:ea:dd:8f:20:4e:f9:2c:2b:
c0:30:33:8a:a8:06:5c:35:ae:91:67:ec:4e:62:4e:0d:3f:1d:
76:5f:43:cb:ab:41:43:e8:96:b1:d1:77:ba:a1:ba:67:4e:29:
03:89:da:a7:61:99:f7:5e:51:9e:3f:28:40:bc:5a:35:ba:d1:
fb:b0:46:93:43:13:e8:9d:70:6b:15:e6:d7:d7:7c:9a:0f:24:
e6:98:23:a2:98:b5:9f:03:c8:e1:f5:76:bf:a8:aa:02:82:d5:
a9:a6:b5:9a:3b:ae:f1:6b:a0:a7:2b:fb:a6:fe:ca:62:47:28:
2e:72:47:c5:be:c5:3a:29:ac:fb:d1:93:fd:a4:0f:e6:f0:8e:
07:16:73:60:0e:9e:e2:49:f5:19:55:4e:26:39:38:d1:2d:e7:
02:84:5b:66:5a:3b:5c:28:f9:5f:ed:e8:87:3e:bc:d7:ca:b7:
53:b6:50:ea:8b:57:92:d7:52:2e:29:bc:fe:1b:72:4e:b8:77:
5c:4e:ec:40:ac:e1:23:69:88:06:37:49:c2:42:15:fc:93:e3:
ea:2a:8f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 04:30:49 2026 by rpki-client