Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: bY9hb5bqiip0m80MUma6HpGSXExC4x7/hu0Ib3yHYWg=
Subject key identifier: 69:1B:39:2E:98:87:BF:10:58:0A:04:F8:28:B7:3F:E2:79:FA:86:67
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 019CABD8F9D4185CF32593303DCFFBC636D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0F2E
Signing time: Mon 02 Mar 2026 00:00:49 +0000
Manifest this update: Mon 02 Mar 2026 00:00:49 +0000
Manifest next update: Tue 03 Mar 2026 00:00:49 +0000
Files and hashes: 1: OgmO1-eTgD9dDZrWj316OjI4JBA.roa (hash: 2J65qaET21q0mAcovvv6olsnYJM+JIut2vJCZjhvWr4=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: 4FCKetZhYs95jQIvIwXPmYz0vnSNXlVv0iO34om/t4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:f9:d4:18:5c:f3:25:93:30:3d:cf:fb:c6:36:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Mar 2 00:00:49 2026 GMT
Not After : Mar 3 00:00:49 2026 GMT
Subject: CN=691b392e9887bf10580a04f828b73fe279fa8667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d9:ee:a0:15:8c:3f:75:51:e2:77:89:c3:72:
39:0f:3d:fd:9a:1e:a2:5b:1f:26:7d:12:0c:c4:ad:
43:43:88:8d:21:14:e1:14:6b:57:d4:e2:6a:02:35:
79:a2:dd:8f:c9:d5:b2:29:4a:f4:8b:08:88:62:09:
a4:e4:c7:10:6d:12:9d:ba:ca:d2:28:a6:0d:b7:9a:
b0:bd:27:c5:c6:70:30:c1:cc:e6:c0:72:e6:76:3a:
f2:48:aa:6f:82:66:a3:c1:fd:5c:f4:0c:ce:cf:22:
0a:a7:79:e7:18:b9:cc:9b:17:16:0b:d7:ff:63:8a:
10:08:32:5d:9d:c0:9d:63:92:ab:a3:e5:30:2e:db:
b5:22:8e:de:7a:16:39:57:5e:9c:9d:94:ca:a6:b5:
1d:65:83:61:19:48:d2:7a:23:a5:30:a3:f0:44:e6:
93:57:cd:9f:c5:75:d0:28:b1:a0:59:63:53:50:e5:
4f:94:e7:a2:25:92:bf:6c:18:d8:41:a5:ae:d4:17:
0c:59:31:3d:e8:71:76:45:ac:34:e2:94:20:c9:11:
a7:0c:7c:5e:5b:0b:3b:e5:0a:8e:3a:23:8c:a3:36:
f1:99:4a:7d:47:0a:db:03:76:3f:0e:89:07:24:63:
5d:c7:ab:04:58:6d:30:f2:7c:6a:9b:e9:00:b7:1a:
47:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:1B:39:2E:98:87:BF:10:58:0A:04:F8:28:B7:3F:E2:79:FA:86:67
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d7:4f:28:49:17:82:4d:d1:7d:eb:3e:d7:3d:c4:99:98:d9:
5e:18:ad:37:fd:c6:16:ec:8a:48:6c:54:1f:08:7f:94:d8:1d:
01:b1:77:86:46:8b:2a:39:4e:b7:49:51:c7:dc:f6:3c:a6:dc:
ca:c0:23:4b:d9:92:08:d7:44:4d:8b:83:23:aa:de:2e:d1:85:
d1:8b:96:a6:27:71:b7:5d:84:26:37:6e:36:41:5e:7e:3a:58:
c1:84:1e:69:ac:08:dd:af:58:04:95:d0:fe:63:db:73:71:a9:
51:d5:12:41:bc:41:3d:4c:1a:a7:b2:eb:21:80:02:fa:7f:cf:
e7:b2:b0:3e:3a:bb:80:ac:6e:5b:8f:a1:50:b9:5c:12:36:0d:
36:b4:28:ef:d5:3a:00:7b:1a:6c:5d:70:96:28:bf:3b:0f:75:
5c:75:e5:20:e4:d9:a0:0a:f7:3e:6e:11:13:43:77:7a:81:a7:
15:8d:b0:1d:1f:87:65:63:d7:db:50:55:e8:e4:ad:6d:06:1f:
2c:46:c1:5c:78:d6:ca:00:81:07:43:9a:9d:eb:f4:2e:80:15:
f1:19:ce:58:ab:32:40:38:c5:4f:9b:24:58:25:87:de:4a:65:
0e:a4:d1:30:28:80:04:7c:e8:fb:d7:f1:0b:5c:38:4b:ff:0f:
fb:44:4d:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:24:29 2026 by rpki-client