Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: IhIZazjnC2BXnQyPDxMMMXHCX5czVnoIUHr4yEdQ7T4=
Subject key identifier: 42:D4:E4:D7:0E:8E:62:8B:14:DE:7B:44:DB:99:48:6A:D3:7F:87:15
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 019D9B50F3E2E7A46EA4C0D32F27D1BE161C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0FAA
Signing time: Fri 17 Apr 2026 12:01:06 +0000
Manifest this update: Fri 17 Apr 2026 12:01:06 +0000
Manifest next update: Sat 18 Apr 2026 12:01:06 +0000
Files and hashes: 1: OgmO1-eTgD9dDZrWj316OjI4JBA.roa (hash: 2J65qaET21q0mAcovvv6olsnYJM+JIut2vJCZjhvWr4=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: lbCGxUUav6C+DFhds5EruZDsyW6z3BnWLXh7n1abZkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:f3:e2:e7:a4:6e:a4:c0:d3:2f:27:d1:be:16:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Apr 17 12:01:06 2026 GMT
Not After : Apr 18 12:01:06 2026 GMT
Subject: CN=42d4e4d70e8e628b14de7b44db99486ad37f8715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1c:75:12:83:c2:f3:7e:9b:63:61:c0:76:1f:
ca:81:33:50:4d:52:4e:02:64:2a:c4:72:10:93:cd:
f6:b9:9f:ba:64:8a:db:42:a0:95:25:2d:11:7b:4f:
1f:b1:6d:a8:bd:54:6f:8d:a5:3a:f4:49:ae:df:d3:
a4:5a:1f:a4:44:b7:de:86:78:1a:ad:57:5e:e3:ff:
0e:6b:af:48:72:45:8c:fb:cd:40:0a:e6:f2:40:21:
4f:e4:4c:92:fd:5b:77:b6:3a:00:95:be:a3:37:77:
be:83:f6:5d:e3:a6:49:a7:40:12:39:d3:fe:0e:e5:
dc:30:6a:98:7c:e3:c7:3f:6b:3e:9a:78:65:17:ad:
1c:32:89:47:c7:b9:7e:e2:95:d2:5f:54:55:8a:0e:
06:1a:7c:aa:36:4c:8f:c8:c4:8d:dd:bd:35:7f:ff:
d0:69:51:cf:d1:57:fe:50:89:1b:4e:e6:32:4f:2b:
b2:21:78:bf:27:7a:7f:ac:33:c2:fc:89:d2:c7:1b:
a2:8e:9d:c4:9b:f3:a6:65:46:50:f8:ea:6e:25:ac:
6c:6e:48:64:66:b4:36:c0:5c:8b:44:ff:64:48:d8:
b9:a7:2a:58:fa:19:a8:9f:8e:43:11:cd:d6:47:61:
78:1c:18:03:4d:9b:81:a0:d5:c8:35:71:21:98:f6:
85:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D4:E4:D7:0E:8E:62:8B:14:DE:7B:44:DB:99:48:6A:D3:7F:87:15
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:30:41:47:1d:f6:ad:3e:4a:61:99:aa:42:b3:0c:5f:a8:e0:
e5:e4:7f:9c:24:17:95:73:7b:b7:cb:3f:80:e8:fe:bf:db:89:
d0:a1:25:5e:0d:51:67:4e:30:35:02:3a:47:65:2a:da:94:b6:
05:d8:a1:16:20:37:37:9a:a4:8b:39:c3:9c:5e:e0:6d:0f:ae:
b7:91:5e:62:72:a5:05:99:04:77:7a:3f:3a:12:47:40:b6:e3:
c0:37:38:ce:bd:ec:fc:84:f4:cf:30:24:87:97:f2:d0:05:02:
d6:f6:bb:4f:9b:a0:de:06:6e:5a:b0:4f:06:88:e3:6e:95:92:
13:dd:9e:d3:f7:11:5a:0b:0d:56:7f:09:89:46:61:ea:cc:21:
09:7f:9f:8d:31:8a:f1:7d:68:70:a5:48:1f:4d:0e:f0:25:79:
bb:35:1a:3c:65:38:21:60:c4:74:9e:5f:07:6a:9c:a2:de:ec:
36:84:d4:38:59:60:80:4e:a1:60:c7:e4:49:fc:75:bc:cf:37:
98:bf:89:c6:21:d8:ab:4a:ea:42:ae:c0:f0:ec:de:df:2c:18:
f3:b6:5b:d6:d3:e2:7a:ef:24:c6:cc:2d:5e:12:62:5f:78:47:
a3:6b:21:ac:a5:a8:c0:24:82:bc:0a:9f:0b:7c:8b:cc:6d:4c:
b3:5f:b4:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:27:08 2026 by rpki-client