Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: hE3uW7w3x0141T7ZGkmDGX5Ar/Axu1m3YZe+ZIMoXe4=
Subject key identifier: DE:5B:E6:52:E8:3B:88:31:98:0F:21:D7:E8:75:0D:94:7B:05:94:42
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 019CAB6B8E2707B9237F16489C3370B07399
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 089B
Signing time: Sun 01 Mar 2026 22:01:18 +0000
Manifest this update: Sun 01 Mar 2026 22:01:18 +0000
Manifest next update: Mon 02 Mar 2026 22:01:18 +0000
Files and hashes: 1: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: wqTXDtq9AK9rXsyixUyNuL21wtIpCiYmDjj+RqKwMpI=)
2: jva2M432j_rD8mTBUYUSbS90ZOo.roa (hash: x+Rwc4Wf1eEhVET3M68V/c6esRHOLkjEU8A0yZ6pNnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:8e:27:07:b9:23:7f:16:48:9c:33:70:b0:73:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Mar 1 22:01:18 2026 GMT
Not After : Mar 2 22:01:18 2026 GMT
Subject: CN=de5be652e83b8831980f21d7e8750d947b059442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:89:db:0f:9f:c6:49:75:e6:b5:77:d4:09:2b:
6a:59:86:6e:49:12:6a:f9:4c:7a:5a:f3:69:e4:ec:
52:56:a0:1c:4a:98:da:78:dd:e6:d3:a1:3a:9c:5f:
66:7e:fe:88:f7:77:3f:d3:5d:4b:98:c0:67:44:13:
f8:d9:35:b5:ae:ee:f0:af:53:97:95:c8:9a:35:0d:
8c:e0:64:63:ab:77:07:43:d9:e5:c0:d5:fe:83:45:
c8:d2:36:81:46:ac:c3:54:b6:be:59:41:93:fc:10:
f3:a1:5e:ce:6f:51:26:94:27:02:6e:08:8e:ab:7c:
1d:da:f5:3f:9e:08:13:aa:a0:98:f0:40:d7:40:84:
30:03:7f:67:e7:d8:fe:0d:4f:94:27:1d:d3:39:0d:
d7:b7:a3:e1:f7:a1:6a:32:74:60:d2:bb:74:d3:44:
0d:7e:d5:6f:49:04:7c:d3:d9:56:f1:29:e5:8b:ff:
6c:85:1e:6d:b6:ad:aa:f5:82:b0:20:b3:2e:9f:20:
cd:7b:a0:12:19:17:5b:94:07:ce:94:2d:a6:d0:99:
c4:bf:e5:94:9f:72:c9:16:5a:1b:ec:1a:ab:9e:34:
55:54:5c:bc:47:64:81:79:b6:d4:cf:fc:20:88:df:
03:18:f7:f1:56:35:0e:7f:bf:4c:58:7d:96:90:7e:
41:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:5B:E6:52:E8:3B:88:31:98:0F:21:D7:E8:75:0D:94:7B:05:94:42
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:b2:d7:b6:96:a4:45:05:95:2f:91:07:e7:5e:36:27:c0:45:
ab:12:0e:a2:89:c8:c9:7d:2e:ba:ea:8e:5b:b5:8e:a4:88:14:
55:1a:c8:25:06:bb:01:0c:65:5f:7e:42:af:ad:2a:09:e9:24:
08:91:71:a9:e0:a8:f8:f4:65:25:79:9a:b6:25:3d:9b:66:82:
d4:a7:66:1c:12:58:fa:3a:5e:37:79:44:54:f2:72:e4:fc:53:
bc:75:bb:4b:43:d3:42:6a:1c:69:ff:6b:a6:d0:e0:29:38:23:
56:18:9b:e5:bd:d9:a2:9c:08:a3:e7:0b:71:a6:8a:aa:bf:8a:
a1:b8:5c:1a:a6:6d:c6:f1:04:99:73:ca:11:d2:2d:72:9e:7e:
01:f5:f8:64:80:a2:10:86:9b:17:d7:e7:dd:60:ff:5d:8c:05:
62:84:a8:0b:a2:9a:2e:70:c1:64:1c:ec:58:13:0d:94:06:71:
e4:63:36:ef:53:75:e3:7d:e8:20:c7:5b:46:bc:59:f4:8e:53:
f4:d2:0d:8b:a6:6c:d5:2c:00:13:2a:3b:cd:01:90:4e:b1:6a:
c5:32:e5:83:6a:7e:5a:5d:43:74:7d:97:e1:f2:3b:2e:c7:a1:
2d:37:2c:5d:99:60:e5:30:c0:c4:29:cb:9c:4a:fb:1b:3a:56:
e2:6e:e1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:14:36 2026 by rpki-client