Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
File: ePKehzghWcpegTh9fud-US-tFjY.mft (raw, json)
Hash identifier: JSNIHBkBq2V++db4xNA+DbM8AqZ3AHmStGU8m37zE9Q=
Subject key identifier: F3:D1:DA:21:EC:2F:27:55:CC:27:87:CB:B4:D8:19:47:63:9A:CC:2E
Authority key identifier: 78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
Certificate issuer: /CN=78f29e87382159ca5e81387d7ee77e512fad1636
Certificate serial: 019D2929A89F412BB3A1697BCEBD123A0EAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
Manifest number: 08DD
Signing time: Thu 26 Mar 2026 08:01:29 +0000
Manifest this update: Thu 26 Mar 2026 08:01:29 +0000
Manifest next update: Fri 27 Mar 2026 08:01:29 +0000
Files and hashes: 1: 0QQAvh0exmMpHPDAs7CMxVMVnMI.roa (hash: 93g3niuIRwIzAYWdelbmRnbYmNDd25Jgu86ahLHoBFE=)
2: ePKehzghWcpegTh9fud-US-tFjY.crl (hash: eSSsyAM40QxS4rJJgV7nwaljTgOaS9ZzT9GlSRqIq9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:a8:9f:41:2b:b3:a1:69:7b:ce:bd:12:3a:0e:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78f29e87382159ca5e81387d7ee77e512fad1636
Validity
Not Before: Mar 26 08:01:29 2026 GMT
Not After : Mar 27 08:01:29 2026 GMT
Subject: CN=f3d1da21ec2f2755cc2787cbb4d81947639acc2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d0:c9:de:c8:24:4c:f5:55:e1:b8:88:53:48:
e0:48:41:91:70:66:b2:f5:2d:4b:7b:d2:fd:0e:13:
21:8b:58:62:74:65:06:73:31:79:f6:ee:9c:20:54:
1c:92:e4:7a:f6:d8:72:dd:fc:64:32:de:f5:f5:98:
54:d5:5b:69:29:1a:25:b2:23:c7:a2:b6:90:53:4d:
2b:2a:ca:11:2b:52:7c:0b:2a:ed:9a:b7:70:c3:84:
20:70:a5:66:c3:dc:b3:5a:4d:7b:7d:28:1d:52:52:
24:a3:58:7a:4b:4c:d7:ce:4e:d4:bc:e3:75:f8:4c:
e3:62:b1:d8:09:7a:87:03:cf:63:f4:9b:65:b1:b1:
51:68:cc:17:6f:14:36:3c:d4:16:e8:fe:3b:84:a5:
06:24:72:e7:06:1b:a5:fd:be:99:15:d8:b5:19:b9:
f8:48:c0:ec:fd:84:a1:82:4b:d0:d0:dc:1f:24:62:
3c:26:b1:68:52:53:ed:9a:17:b2:32:b2:9f:67:f3:
f1:70:79:31:b9:32:e7:5b:86:26:61:f2:73:07:ee:
01:35:84:d3:1b:65:0d:82:c2:75:e3:75:b5:59:d9:
33:4d:4c:91:73:4f:51:85:4a:14:d2:4b:fc:c9:13:
82:cd:c0:26:96:05:5e:e3:3c:88:e5:b5:03:b3:dc:
bc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D1:DA:21:EC:2F:27:55:CC:27:87:CB:B4:D8:19:47:63:9A:CC:2E
X509v3 Authority Key Identifier:
keyid:78:F2:9E:87:38:21:59:CA:5E:81:38:7D:7E:E7:7E:51:2F:AD:16:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ePKehzghWcpegTh9fud-US-tFjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4b48b-462e-45a6-860d-82f89cba26d8/1/ePKehzghWcpegTh9fud-US-tFjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:43:99:b1:94:37:7a:ab:22:1c:ad:8b:cf:4b:77:56:4a:1f:
5e:5d:68:1c:5f:af:0d:e1:7a:e6:c2:b8:95:9f:76:fe:86:9a:
96:91:16:2a:94:6c:83:90:82:3a:5d:22:a1:32:cf:9e:90:f8:
47:1f:19:c5:12:b9:ba:10:f0:eb:97:57:53:b9:6a:14:6c:28:
15:e6:f0:0b:c1:48:02:c6:ef:c2:29:9f:88:0d:6f:e7:ba:e2:
3c:0d:b8:ef:c0:d9:a7:03:38:5b:b5:09:ed:d2:7e:01:ee:45:
6e:91:8e:bd:3c:ba:62:9e:38:3a:c1:e8:b1:12:7b:02:b6:77:
f9:75:c4:5b:56:9d:26:03:e1:30:b9:f5:87:f4:b8:ea:df:91:
8b:d1:39:b1:33:fd:fb:d5:5c:f0:74:0b:36:bc:5d:36:89:5d:
29:1d:0a:ed:6f:ad:d6:ae:09:89:81:9d:29:ff:56:d5:eb:f7:
e2:1a:c3:39:22:7a:c8:9f:03:23:17:06:37:b4:84:da:a8:14:
5b:a7:28:5a:59:fe:b1:44:21:85:e3:ed:07:49:bb:77:f5:29:
6d:91:3e:73:8b:a0:d6:f9:fc:95:87:c5:e0:20:63:c7:e6:16:
c5:02:a0:a7:af:fb:c8:0f:e9:ea:33:d2:ed:65:60:11:50:3e:
f4:11:da:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:09:20 2026 by rpki-client