Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft
File: ePDYlQwP20Hf1XxZSCglIGEcFsM.mft (raw, json)
Hash identifier: 6C6e7m/ox45scZj5AhCjzW8N1T5HZOP5AfA9Z/NjJKY=
Subject key identifier: 91:A8:F4:5F:2D:15:13:2D:CE:9A:13:DB:73:15:6E:30:C4:27:1D:EA
Authority key identifier: 78:F0:D8:95:0C:0F:DB:41:DF:D5:7C:59:48:28:25:20:61:1C:16:C3
Certificate issuer: /CN=78f0d8950c0fdb41dfd57c5948282520611c16c3
Certificate serial: 019D0C682D30D18132A13E408D9FF33A91F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft
Manifest number: 0688
Signing time: Fri 20 Mar 2026 18:00:47 +0000
Manifest this update: Fri 20 Mar 2026 18:00:47 +0000
Manifest next update: Sat 21 Mar 2026 18:00:47 +0000
Files and hashes: 1: ePDYlQwP20Hf1XxZSCglIGEcFsM.crl (hash: k/JfXhGVV6y/4ZciKy+SGRdv59/66BsGqM3tcCB43Eg=)
2: rjbSkxz-4cu5cqH4jYl96KrxlVc.roa (hash: XVOb1I/t4hzTQaOAGbnu6LFgBSFN/IZvCjKfHKsc1Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Mar 2026 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0c:68:2d:30:d1:81:32:a1:3e:40:8d:9f:f3:3a:91:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f0d8950c0fdb41dfd57c5948282520611c16c3
Validity
Not Before: Mar 20 18:00:47 2026 GMT
Not After : Mar 21 18:00:47 2026 GMT
Subject: CN=91a8f45f2d15132dce9a13db73156e30c4271dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:41:3a:d7:46:f1:ab:1e:49:71:d7:68:2a:ba:
fc:2b:e7:01:0c:c7:80:a1:5b:aa:8f:aa:9f:a5:55:
67:29:a7:b6:f2:e6:2f:83:79:39:07:dc:56:96:a0:
8d:1d:d3:13:8c:aa:27:a3:47:b5:9e:6d:a3:d0:bb:
57:4b:21:b8:bd:11:8e:fd:a8:9c:c5:21:78:b2:ae:
d8:d5:a3:28:fe:5c:ff:a7:e6:ce:71:66:27:1e:06:
96:f8:f2:1d:8d:cf:d7:a6:b0:f4:df:81:1e:26:86:
11:f6:3a:0f:90:7d:b9:df:34:cf:fb:81:72:24:9e:
ad:24:e5:0b:fb:e6:53:cc:98:a1:1e:0b:ff:7d:1c:
38:35:9b:68:91:5d:27:91:29:b8:5f:2c:c9:34:26:
0b:09:ae:9a:8b:aa:41:9b:31:97:e5:77:35:6c:f2:
11:98:d4:f3:5b:57:c3:4f:7d:60:5d:f9:12:59:63:
8a:62:ad:16:fc:97:98:77:00:fe:d8:5a:69:b1:68:
62:af:85:0d:c3:08:de:ff:bc:98:bd:5f:1c:b5:e8:
86:97:dd:ce:be:36:ee:6a:65:c1:83:00:65:af:8b:
57:54:4f:fe:79:05:fc:61:40:47:e7:57:6d:13:91:
51:ab:ab:35:1b:74:43:ec:d1:7f:e4:98:ff:9d:2d:
9c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A8:F4:5F:2D:15:13:2D:CE:9A:13:DB:73:15:6E:30:C4:27:1D:EA
X509v3 Authority Key Identifier:
keyid:78:F0:D8:95:0C:0F:DB:41:DF:D5:7C:59:48:28:25:20:61:1C:16:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePDYlQwP20Hf1XxZSCglIGEcFsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a267f0-9efb-44af-a06a-61ddbf1c349b/1/ePDYlQwP20Hf1XxZSCglIGEcFsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:b1:03:b6:9f:18:d1:72:c9:83:89:0a:a3:14:d4:2b:44:e9:
b6:f2:43:41:4b:99:30:84:b9:eb:b0:1d:5a:49:15:f1:2c:87:
84:6a:05:3f:67:f0:c7:9a:05:9a:9c:e6:95:e7:cb:81:08:7b:
ab:43:cb:d1:d9:a7:45:58:03:95:45:bb:c0:22:89:16:0d:ff:
18:a1:e0:ac:b7:19:e2:e8:6c:e0:ba:26:00:29:bf:c6:e7:23:
8a:a8:a2:53:ba:ca:d7:10:bc:0f:31:68:4f:81:7c:f0:6d:0b:
1e:74:91:fa:77:03:e6:45:df:5f:5d:56:e9:a3:78:c8:08:89:
f9:56:b9:7e:a0:fb:f4:f3:e3:67:c0:10:dc:ab:eb:76:ad:ac:
e3:a1:c2:db:0f:04:42:1a:85:af:0f:be:98:49:68:f2:40:e4:
d3:43:31:22:76:d1:a5:27:fb:12:02:17:1c:42:c0:3f:25:af:
b0:76:97:ab:a1:56:ea:b8:3e:e0:ba:2c:7c:3a:b2:bb:d4:5b:
71:29:b4:af:87:62:16:d8:18:4d:cc:34:fd:cc:b4:cd:d1:8e:
66:d2:0e:2e:41:e0:53:08:bd:fa:9b:ff:36:ea:cd:b7:02:09:
b5:2f:cf:9d:74:43:f0:f5:ea:f3:2b:16:72:a2:1e:a4:aa:49:
db:b3:c6:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 02:54:11 2026 by rpki-client