Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
File: EdGf2unFPY0oseQcqROcM1VrpiU.mft (raw, json)
Hash identifier: jLseOczjr4EWPAtRPHjTpD8vHwQBic0QA9p8zji5Xzo=
Subject key identifier: C8:9D:07:88:35:D6:7F:F7:B8:CF:87:F5:3C:55:B0:95:58:42:3D:D7
Authority key identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
Certificate issuer: /CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Certificate serial: 019D25841B1CCABDF58C93899DBE3337A8DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
Manifest number: 0CE5
Signing time: Wed 25 Mar 2026 15:01:47 +0000
Manifest this update: Wed 25 Mar 2026 15:01:47 +0000
Manifest next update: Thu 26 Mar 2026 15:01:47 +0000
Files and hashes: 1: EdGf2unFPY0oseQcqROcM1VrpiU.crl (hash: gvmU7kTaLGVnJ+HgffjDZ6Il+H9n132cavGR+uN6ISY=)
2: _cYlNrPZ4aNJF3IHILF10hUz1QE.roa (hash: 055GVfTacul6sO6E7JP7r8Y/ZviD+fN14ITbu8RYmeg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:84:1b:1c:ca:bd:f5:8c:93:89:9d:be:33:37:a8:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Validity
Not Before: Mar 25 15:01:47 2026 GMT
Not After : Mar 26 15:01:47 2026 GMT
Subject: CN=c89d078835d67ff7b8cf87f53c55b09558423dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e7:a9:5b:73:eb:11:a3:12:4a:5e:b7:0d:71:
fc:5d:9c:cf:75:9d:e4:f2:91:19:06:3c:52:9c:73:
8f:90:08:8c:b2:8a:a7:ca:d8:e6:07:d0:8c:b5:8f:
a2:20:55:28:a3:01:09:20:3b:d2:73:42:13:5c:80:
cb:fc:5a:af:c5:e3:eb:d0:0d:95:8d:a7:49:7a:e0:
90:02:55:31:bd:eb:6b:a1:bf:53:0b:2a:7e:d6:65:
5c:ff:b6:de:c2:1d:64:2c:bf:16:67:de:40:ed:84:
5b:a7:f8:9f:56:31:64:a3:64:02:90:6e:48:e7:44:
56:55:7e:17:8d:e3:c2:25:8e:a1:ca:6f:26:c3:9a:
13:29:44:46:a2:37:be:2e:30:f3:12:48:5a:f0:1f:
05:43:1f:f8:3c:e9:d7:62:31:e0:da:83:5e:a2:de:
e0:a8:5f:08:b9:ba:ac:66:39:27:5a:57:8b:9c:89:
6b:bd:ca:8a:dc:a0:08:62:64:18:78:2f:73:d2:bb:
2f:25:20:c7:a5:ed:6d:a1:9a:3e:1c:5c:e4:98:ee:
a5:fe:b4:dc:c8:95:39:e7:07:e1:b6:ea:83:31:f1:
02:d5:f5:4b:6e:17:2a:3c:b3:64:7d:de:ec:80:e6:
47:b3:9c:f2:5b:a6:23:4d:db:93:98:64:50:70:4a:
50:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9D:07:88:35:D6:7F:F7:B8:CF:87:F5:3C:55:B0:95:58:42:3D:D7
X509v3 Authority Key Identifier:
keyid:11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:ab:25:5a:49:32:f3:1e:bb:bb:d7:ff:1c:37:39:5c:8e:5c:
a9:89:e7:89:5d:4d:37:a5:0c:80:b8:fc:53:92:38:9a:f5:4c:
56:29:85:c0:60:66:0d:27:5e:8b:50:7c:d8:7d:55:a8:e5:84:
15:ab:e7:e7:73:fe:ca:5a:12:da:10:f4:96:fa:70:11:5f:2f:
87:8c:7b:1b:d3:d1:ea:c6:fa:01:93:bb:ab:c5:0d:6f:34:31:
2f:55:73:e9:92:83:04:65:8d:4e:9c:af:e2:06:65:6a:3c:ce:
11:12:c1:25:43:6a:f8:23:c8:8c:70:e0:8b:26:1a:5c:2a:4e:
a7:f1:93:d6:65:76:39:21:d1:54:eb:a3:b1:c3:b3:7c:7c:47:
7a:40:0c:63:a1:1c:71:16:86:b4:01:fd:2c:85:62:24:45:06:
36:0c:9a:8c:81:b6:d0:5f:2c:23:87:93:7a:8d:28:40:14:82:
a8:c2:44:8a:97:38:b8:97:e9:89:ae:f6:7a:e6:20:fd:3b:27:
68:a2:0c:a4:c7:8a:8b:e3:46:5f:01:16:4a:77:d6:0a:1f:a4:
b2:8c:91:36:61:bf:dc:d4:f9:70:4f:67:e7:5a:5e:2d:50:f6:
76:b5:97:7f:bd:28:01:c7:38:81:fb:b5:68:22:1a:02:21:2f:
7a:20:58:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:15 2026 by rpki-client