Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
File: e20oQEBEI571gkLyEOCxZmfrQNA.mft (raw, json)
Hash identifier: L6yIVg52vhl9F707u59Cv8U/+xXkHi5fj1rbtDUseHo=
Subject key identifier: 57:AF:CD:66:F8:70:E7:64:B6:B8:DB:6E:8C:09:BF:D8:07:B7:06:24
Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0
Certificate serial: 019D273AA77DBA07AA7918D6115ECFA7C240
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
Manifest number: 1816
Signing time: Wed 25 Mar 2026 23:00:48 +0000
Manifest this update: Wed 25 Mar 2026 23:00:48 +0000
Manifest next update: Thu 26 Mar 2026 23:00:48 +0000
Files and hashes: 1: AWdnvO_fGYURQMiK3WsDBvu78og.roa (hash: xYb7mnfBNaWhh8LFpOFQkvNwUNvj1x9GSJ76i4T9ScE=)
2: e20oQEBEI571gkLyEOCxZmfrQNA.crl (hash: LagxWDoP12VSaCBinTnSL9jjI2HmRE5IuZN8hUr3La8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:a7:7d:ba:07:aa:79:18:d6:11:5e:cf:a7:c2:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0
Validity
Not Before: Mar 25 23:00:48 2026 GMT
Not After : Mar 26 23:00:48 2026 GMT
Subject: CN=57afcd66f870e764b6b8db6e8c09bfd807b70624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ba:3b:cc:a4:88:4d:c7:f4:45:53:7a:26:5c:
8f:f6:e8:68:5c:56:58:b5:de:a4:9a:3b:b5:ea:e3:
33:ac:f0:d7:bb:b6:d5:93:10:08:35:8c:5f:c1:36:
9b:b7:05:e7:22:d1:ad:f2:58:35:f0:59:86:de:d3:
3c:d6:7e:43:54:57:f2:74:00:ef:2f:ff:ad:28:95:
ca:af:e8:2f:f4:c7:5f:85:28:f9:9e:27:f0:46:a4:
09:ee:e8:8e:6a:d9:58:6d:3d:7f:53:8c:d9:b1:40:
81:04:e8:4d:21:e2:af:7c:d2:d2:90:64:9b:c0:63:
f4:e9:72:ae:b5:1f:bc:b1:85:bd:2b:4b:66:fe:1e:
66:60:f2:f6:d0:c0:16:7b:01:b5:42:a0:c8:42:89:
fc:88:ff:b9:b6:93:67:2b:6a:3c:04:64:02:b2:f3:
90:b4:2e:71:d5:3d:55:43:6b:b0:21:4e:d5:ee:62:
b8:49:c9:ea:24:46:33:e4:32:a6:74:d8:f5:45:c5:
96:22:f6:0d:ba:76:90:d4:10:37:68:ed:45:05:6f:
ac:49:99:70:ab:a2:d3:32:46:01:88:c2:90:cb:57:
fa:44:0b:cc:3a:36:f3:dd:bd:98:9c:35:c9:42:86:
ec:fe:79:eb:4e:64:2e:0b:d1:28:c7:8c:e0:5b:26:
75:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:AF:CD:66:F8:70:E7:64:B6:B8:DB:6E:8C:09:BF:D8:07:B7:06:24
X509v3 Authority Key Identifier:
keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:b5:4d:38:5d:cd:fb:76:b1:be:48:04:a9:52:f4:08:f2:d8:
08:b8:59:9e:f9:f3:ea:86:8e:4f:1c:81:18:d2:f0:63:d8:40:
39:ad:e2:c2:3d:da:4a:3e:58:67:6d:eb:eb:13:a4:c6:80:5d:
ee:75:c0:49:61:1a:b7:12:0c:62:da:a2:77:ca:37:ea:5a:5c:
18:28:e2:31:dc:21:66:4c:72:48:b6:6c:41:7f:38:ad:e2:41:
65:e0:3e:e8:30:81:9c:4b:70:f6:d9:62:4d:8b:0c:b3:d4:39:
8f:21:de:f4:3c:44:a4:39:8f:de:f2:2a:7a:9e:cb:5d:de:5e:
9c:ee:a9:60:af:dd:63:bf:4f:6e:07:ac:83:93:de:d0:30:23:
90:d3:ab:e4:26:f2:71:54:55:f6:f7:32:f5:5c:f6:29:9b:94:
7a:c2:e2:8a:26:98:be:cd:03:f9:a2:89:27:01:78:ff:3d:48:
e0:81:b2:32:8f:48:fd:02:ba:b1:a2:f9:b6:c6:e8:ca:b0:b3:
ea:ec:da:95:cc:68:7c:1d:1f:c2:b1:ae:50:a6:b1:3f:6a:da:
35:86:46:f5:ca:a8:09:07:33:df:f8:ef:05:4f:39:01:99:f3:
f9:31:73:14:b9:54:2e:35:ad:b6:9a:4b:b4:97:b1:1b:3a:4b:
da:ba:60:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:36:43 2026 by rpki-client