Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
File: sejPc4YgDf2psGfbnHfTBmDXTNo.mft (raw, json)
Hash identifier: ulfqRQ+VzAKzmtJAGf/7xAA5fm+HhBUOZz9SVsk0YAs=
Subject key identifier: E5:53:5B:93:3B:16:75:27:BF:5A:D6:89:A4:B3:58:56:69:64:D2:A7
Authority key identifier: B1:E8:CF:73:86:20:0D:FD:A9:B0:67:DB:9C:77:D3:06:60:D7:4C:DA
Certificate issuer: /CN=b1e8cf7386200dfda9b067db9c77d30660d74cda
Certificate serial: 019D3A1C74488A720224EAE2898F392549E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
Manifest number: 0DAA
Signing time: Sun 29 Mar 2026 15:00:36 +0000
Manifest this update: Sun 29 Mar 2026 15:00:36 +0000
Manifest next update: Mon 30 Mar 2026 15:00:36 +0000
Files and hashes: 1: hKDjaD83iRNw9KqUmwJ4dn-wayQ.roa (hash: 10/6EyjVD8LS9DDC/nxhOd/PoDCy15V9W7b4OpC/X6g=)
2: sejPc4YgDf2psGfbnHfTBmDXTNo.crl (hash: Z+Sogc4bMTXesXWOfxahUTkkN3WGKjkmDEw0wPgUTKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:74:48:8a:72:02:24:ea:e2:89:8f:39:25:49:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1e8cf7386200dfda9b067db9c77d30660d74cda
Validity
Not Before: Mar 29 15:00:36 2026 GMT
Not After : Mar 30 15:00:36 2026 GMT
Subject: CN=e5535b933b167527bf5ad689a4b358566964d2a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2d:02:1b:81:6a:6d:03:db:51:5b:6e:49:4d:
1f:ac:ab:3c:8c:06:8e:21:f1:3a:0f:0c:1c:08:72:
46:f0:bc:f6:c6:79:8e:86:5a:ab:f7:38:5d:93:6e:
6a:21:a1:f4:cf:f9:90:f4:fd:1b:30:7c:e9:4b:b0:
c3:1d:04:eb:6e:b3:9a:00:31:e7:ef:07:75:d7:0c:
ea:73:03:56:d9:70:2a:04:4f:cd:b7:66:4e:76:59:
5c:b9:fc:0a:5f:28:11:25:37:43:d9:34:3a:cf:f1:
f3:6d:29:84:e3:c5:9a:8e:72:1f:71:a3:51:71:de:
0f:8a:a1:5f:e3:97:71:a1:61:c3:56:ba:12:41:34:
9c:88:d0:85:27:21:aa:4a:e6:c9:45:0b:7d:da:d5:
5e:4f:da:79:52:b2:2c:82:a0:a6:8b:a2:20:ec:0b:
c4:fb:19:96:89:a9:5f:46:a7:c4:fc:1e:53:bb:45:
42:eb:d0:0f:a7:4a:b6:cc:06:9d:3e:ac:65:4a:8b:
d3:ea:84:19:91:da:46:b6:94:eb:b4:92:bf:46:65:
6b:cb:2e:a8:4d:57:62:0e:87:f8:17:d1:98:4c:43:
a5:30:07:d4:fd:96:d4:cd:a2:2a:f6:2e:03:64:5d:
34:91:28:6c:36:2d:39:01:de:f9:62:ed:df:69:b3:
98:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:53:5B:93:3B:16:75:27:BF:5A:D6:89:A4:B3:58:56:69:64:D2:A7
X509v3 Authority Key Identifier:
keyid:B1:E8:CF:73:86:20:0D:FD:A9:B0:67:DB:9C:77:D3:06:60:D7:4C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:e6:70:d4:fc:4e:0a:8e:c7:b2:11:e4:ff:a9:8b:f2:a1:ad:
e2:46:a0:7d:67:21:63:2f:3e:f5:62:5e:25:54:16:a7:b5:7d:
e2:b2:4d:77:67:20:36:ca:40:cf:34:11:b8:16:e4:f2:2f:85:
aa:0d:5f:74:48:48:a8:87:bf:43:e9:7b:74:66:c2:d8:15:09:
6a:25:21:fc:aa:84:04:16:49:d9:7c:e7:6c:18:18:5e:e4:10:
94:37:1c:bc:07:f9:03:1e:48:08:f3:3f:39:5d:ca:f7:df:12:
c4:59:81:91:72:01:d9:2c:a7:c3:43:dd:82:f4:29:56:a6:8b:
67:e8:c3:a9:79:20:71:6f:a9:35:18:54:d4:cb:e3:19:c6:a6:
c4:cd:a3:ba:26:67:2f:20:9e:70:c5:e7:39:0c:39:11:e7:77:
ea:54:3d:c4:64:00:81:cb:02:5b:57:a9:cc:fa:a4:e8:9b:94:
65:35:4e:4a:d1:eb:0d:c2:ab:85:b1:58:69:11:80:d1:61:9e:
df:d1:06:e4:e8:03:2c:d3:c1:4e:41:3e:ce:52:e4:cf:4a:aa:
c9:89:bc:ca:63:9a:9b:20:13:eb:b0:f1:dc:41:a9:f6:8a:8b:
75:8a:06:bb:b7:20:3f:a8:e2:e9:d8:c1:f8:e9:4f:f9:d6:df:
40:f5:91:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:17:19 2026 by rpki-client