Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: s/YAyc2lMJJ+OR1JXPWQa53dSmnI7Ds18IExDKUJcAQ=
Subject key identifier: B0:C2:A5:CA:0C:EF:A9:DF:3A:7E:F6:7D:42:C3:70:CA:FB:8B:0A:72
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 019DA2D30123187866BEB36FC67EB872AAC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 091C
Signing time: Sat 18 Apr 2026 23:00:30 +0000
Manifest this update: Sat 18 Apr 2026 23:00:30 +0000
Manifest next update: Sun 19 Apr 2026 23:00:30 +0000
Files and hashes: 1: 0QQAvh0exmMpHPDAs7CMxVMVnMI.roa (hash: 93g3niuIRwIzAYWdelbmRnbYmNDd25Jgu86ahLHoBFE=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: QecNE5nlcrP3v/w+2P6zNVz3rqt1/S7kAulytHfyI10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 23:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:d3:01:23:18:78:66:be:b3:6f:c6:7e:b8:72:aa:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Apr 18 23:00:30 2026 GMT
Not After : Apr 19 23:00:30 2026 GMT
Subject: CN=b0c2a5ca0cefa9df3a7ef67d42c370cafb8b0a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:53:97:c4:5e:6c:cf:40:9c:e0:9b:2a:9d:ad:
7d:3a:78:a4:f2:a2:47:99:99:39:a9:91:4c:25:1c:
3c:f4:64:e4:be:3c:dd:b0:6c:a9:b6:60:89:53:84:
3c:b7:13:98:44:63:a7:db:c5:61:02:96:59:28:1e:
73:98:8b:a9:a3:58:23:d8:36:80:67:32:fb:cc:24:
5a:99:0b:35:b6:77:12:7c:6f:66:ae:26:c5:65:a6:
19:fe:d2:ee:87:48:b6:a6:53:84:82:89:0f:7b:ee:
88:c0:f5:05:b5:9d:c2:e3:ca:d6:40:c8:42:92:c9:
0b:11:6b:7e:07:12:9f:78:79:a1:18:ae:10:bc:5e:
1f:47:5f:e2:d0:30:29:53:1b:1c:33:64:35:29:43:
84:2b:cd:94:4d:3d:0a:eb:50:e8:cd:4d:09:86:da:
ea:9e:12:b5:1a:08:6e:d4:ab:e4:9c:71:6b:c6:cc:
24:b5:2c:53:93:98:83:b3:49:fe:eb:2d:d2:e0:8d:
6b:9b:ed:73:bd:4d:ae:ed:1f:a8:a9:1f:b5:5f:75:
a2:e0:ad:c8:ee:70:cf:73:7f:e3:35:35:c6:f4:3d:
7a:1f:09:18:aa:f5:db:92:83:f7:96:87:c0:0e:45:
ab:6f:b5:8b:0d:3a:ac:fd:1f:69:5c:85:7b:c8:40:
46:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C2:A5:CA:0C:EF:A9:DF:3A:7E:F6:7D:42:C3:70:CA:FB:8B:0A:72
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:d8:d9:86:47:22:36:2c:31:61:2c:ac:13:10:9e:b3:c0:fd:
8b:aa:e5:44:c6:4c:d9:af:d9:f0:a1:ab:47:56:be:29:ff:95:
65:0e:0a:4e:ff:48:96:23:b7:81:a5:a4:a4:63:3e:53:09:8e:
ac:fe:a1:6e:d4:a0:60:bd:3d:3b:ae:be:19:75:e9:9a:50:5d:
33:29:ba:16:52:d7:09:fa:18:6b:16:d2:fc:15:ab:db:56:99:
ec:30:67:44:6f:b5:45:9f:d1:6f:43:a4:07:90:bf:46:83:93:
c8:80:58:78:5e:e2:62:11:97:b4:54:d6:37:13:1a:cd:e8:3b:
ec:6d:a4:e3:84:2a:47:3b:95:73:9e:27:b9:f3:a6:81:74:e8:
41:80:b2:2e:a3:7f:31:0a:f6:06:8b:83:81:a8:89:ea:c0:59:
5a:20:b7:bd:b5:d6:c2:63:e8:7e:cd:c1:e5:57:21:0b:b3:fd:
d7:97:b8:a3:bd:b7:70:c2:33:33:fc:55:3e:ae:6e:76:76:3b:
6c:ec:f7:cb:86:4c:6d:12:3b:00:a9:03:95:46:4a:9c:b6:a3:
15:03:e7:6c:b1:c1:f3:14:6d:a4:26:15:cc:dd:88:34:8f:b4:
f4:4e:c1:8d:b4:be:24:8a:8d:89:b0:c9:bd:54:46:c4:63:40:
e7:85:0d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:17:36 2026 by rpki-client