Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
File: ErmEbY911kX_YwjOAwCHopfms1k.mft (raw, json)
Hash identifier: jpz9ikBfhf4mA8yAXrjBeL2VtSZDFlmQuBNsfZ0YIM0=
Subject key identifier: 93:87:CD:AD:57:2A:0E:B0:92:8A:31:F5:35:A0:37:9B:B7:35:C4:76
Authority key identifier: 12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
Certificate issuer: /CN=12b9846d8f75d645ff6308ce030087a297e6b359
Certificate serial: 019CADFE9EFE3940B1B96057A3ADB71D9169
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
Manifest number: 1669
Signing time: Mon 02 Mar 2026 10:01:11 +0000
Manifest this update: Mon 02 Mar 2026 10:01:11 +0000
Manifest next update: Tue 03 Mar 2026 10:01:11 +0000
Files and hashes: 1: 0bgPaSS9Ae0rB9f1u5QtAJZ7vjQ.roa (hash: IFhoLkFpjChfV3wyKbItrjVFxiC4Oyb3ylSVZABFfD0=)
2: ErmEbY911kX_YwjOAwCHopfms1k.crl (hash: RH3vf8TwL4Ruvje6X+Aa46gK4Ig3/g7Z4qe1aTX2s14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:9e:fe:39:40:b1:b9:60:57:a3:ad:b7:1d:91:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b9846d8f75d645ff6308ce030087a297e6b359
Validity
Not Before: Mar 2 10:01:11 2026 GMT
Not After : Mar 3 10:01:11 2026 GMT
Subject: CN=9387cdad572a0eb0928a31f535a0379bb735c476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ec:4d:51:86:64:02:d9:77:92:51:f0:c2:53:
08:b8:6c:4a:de:ce:8b:77:a6:1b:95:a9:38:e6:a7:
34:26:78:8c:bb:69:dc:dc:d1:a6:ec:13:2b:9e:53:
1a:58:ec:08:09:24:d1:4c:b8:02:fd:da:0c:55:f5:
e6:8c:cb:b2:45:b6:fa:94:ee:bd:5f:df:6b:ff:e6:
de:4b:20:ee:23:ec:2e:c2:2e:75:09:64:17:48:b1:
96:96:78:71:32:dd:35:c2:9a:dd:8b:e3:2a:5e:69:
0c:bf:f3:9d:e3:fe:45:17:66:21:34:1d:48:93:4c:
da:98:2a:05:ab:a4:8e:69:9e:b7:7c:86:37:c4:12:
b8:d7:be:35:c6:4a:54:ff:8e:17:de:59:3c:99:db:
7c:1d:05:72:46:14:ef:2a:66:28:d8:18:06:78:ad:
99:81:eb:9a:b4:92:11:e2:c3:3f:dc:70:fa:ad:18:
eb:8b:48:c6:ff:c4:fb:13:74:e1:a7:4a:74:93:6c:
f6:c8:3d:35:40:8d:b0:87:a0:6c:c0:2a:39:11:36:
aa:10:ef:b5:3c:8e:b8:96:a1:d2:42:04:5e:8f:c0:
ba:bf:57:81:5e:ad:66:97:f1:f7:15:78:e1:f1:f0:
25:08:e7:d5:10:9b:07:e3:6e:54:30:52:e9:70:41:
43:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:87:CD:AD:57:2A:0E:B0:92:8A:31:F5:35:A0:37:9B:B7:35:C4:76
X509v3 Authority Key Identifier:
keyid:12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:a7:45:26:84:02:d0:ae:10:ea:26:37:f5:97:61:8d:13:a8:
80:da:ac:5a:14:6a:45:5a:01:f7:89:85:37:c7:50:35:67:38:
5b:9c:63:46:bb:43:35:fd:66:41:dd:29:2f:11:9e:ba:b6:52:
b1:f6:26:11:04:61:9b:75:7c:66:4f:2c:d4:d8:1e:c2:fc:e3:
34:22:bf:8b:f0:09:68:78:90:d4:bf:c8:d1:4e:41:45:3f:74:
04:a7:0c:03:86:12:6b:6e:28:fb:5f:67:12:a7:2a:9a:12:5e:
a1:14:67:66:54:89:1c:47:a9:c8:9e:5f:f3:64:81:6d:64:d2:
ef:a9:07:e0:a9:e7:f2:8b:9f:d9:7a:99:b3:27:54:4b:f3:d7:
80:32:1e:4d:80:8c:53:32:ec:7b:62:16:32:77:5d:ac:01:78:
e4:bf:4e:e4:a7:b2:a6:13:aa:3c:f6:b0:5f:f6:7e:92:72:3a:
90:8b:d9:39:49:e3:28:fd:5f:b5:b4:f6:13:c6:1b:ef:5b:91:
8d:77:15:72:dd:7f:b5:c4:ac:bf:36:b7:15:ae:14:86:68:95:
3a:51:e2:76:d6:4e:ac:c0:93:2e:5c:78:a7:62:2e:63:d0:48:
7a:47:f6:fe:bb:37:51:87:e0:55:d6:9e:11:91:d0:dc:df:9d:
93:cd:8a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:40:04 2026 by rpki-client