Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
File: e20oQEBEI571gkLyEOCxZmfrQNA.mft (raw, json)
Hash identifier: 9nn53tBaslRO3AnuuyNKCQbiJtOASQjWYdtRMMyrM5A=
Subject key identifier: DA:4F:07:6C:06:50:A8:91:6F:CD:A2:74:35:1A:C0:D9:68:DC:B3:5D
Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0
Certificate serial: 019E1E6C5AB08E6C333B2D70435B0A2CFDE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
Manifest number: 1896
Signing time: Tue 12 May 2026 23:01:18 +0000
Manifest this update: Tue 12 May 2026 23:01:18 +0000
Manifest next update: Wed 13 May 2026 23:01:18 +0000
Files and hashes: 1: AWdnvO_fGYURQMiK3WsDBvu78og.roa (hash: xYb7mnfBNaWhh8LFpOFQkvNwUNvj1x9GSJ76i4T9ScE=)
2: e20oQEBEI571gkLyEOCxZmfrQNA.crl (hash: Psi9P+BnGenzy7bva3FTU62Hyxgto12i3vO53eH4FkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:5a:b0:8e:6c:33:3b:2d:70:43:5b:0a:2c:fd:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0
Validity
Not Before: May 12 23:01:18 2026 GMT
Not After : May 13 23:01:18 2026 GMT
Subject: CN=da4f076c0650a8916fcda274351ac0d968dcb35d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b0:64:d5:c4:e6:c8:5b:f9:88:c0:33:09:92:
99:51:5a:39:b0:55:ba:12:da:2b:73:e2:a8:42:f0:
af:47:3d:2e:2e:86:5e:ac:69:33:28:4b:9a:6d:fe:
a8:d2:78:a7:d3:d2:43:06:fd:bc:af:e5:03:17:27:
2f:e7:9a:76:d2:dd:51:ed:17:8a:26:80:25:bb:b8:
37:d0:93:a4:46:b5:85:55:f2:d8:b3:76:c0:b2:a6:
fd:6a:70:a5:68:82:f7:a9:ea:a7:47:e2:3e:af:ff:
ec:17:99:28:fd:4e:41:3c:29:37:ea:77:c2:55:c6:
3b:9a:1b:e5:60:0a:ac:2f:43:bb:ec:74:37:e6:55:
9f:ab:ef:31:97:64:e6:c2:99:8e:50:c7:1b:3c:94:
a7:98:60:0c:dc:37:52:93:64:f0:22:d4:8e:75:79:
7b:a3:be:e9:6d:bc:6f:e5:3f:97:05:ad:df:d5:99:
41:3e:0f:2a:b4:f1:a6:9c:21:41:a7:68:91:20:93:
af:ca:a5:45:b6:77:c3:b9:be:9a:8f:d7:ef:6a:02:
8b:46:38:51:e3:10:0c:bb:6a:ed:82:fb:5b:4d:e3:
bf:4c:0e:0f:72:7a:41:dd:83:8d:e8:28:92:77:e6:
67:5b:17:ec:fc:1f:b7:54:73:f3:47:84:74:22:ba:
42:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:4F:07:6C:06:50:A8:91:6F:CD:A2:74:35:1A:C0:D9:68:DC:B3:5D
X509v3 Authority Key Identifier:
keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:75:51:af:b1:8a:e4:a6:cf:a9:b2:13:cf:ee:bd:74:64:08:
6f:79:ff:af:23:cb:9a:54:5c:1e:e5:03:e5:12:df:e4:ba:4e:
a1:7b:53:82:d7:77:83:ea:89:0a:b9:ff:b5:3b:fb:e1:14:bd:
09:fb:8d:62:60:ce:49:55:23:78:4e:df:02:2a:7a:78:e5:de:
39:f6:00:a3:c5:fd:08:fd:72:ae:3d:90:e4:dc:dd:44:48:b4:
f2:83:3a:48:ed:65:2e:3c:93:38:87:61:69:e5:77:27:15:bd:
55:98:f6:80:23:5e:7d:b9:5e:fe:ce:4c:87:2f:49:51:2b:c1:
15:bf:f7:4b:78:7a:95:43:98:b1:7b:98:60:7a:09:bb:46:bd:
bf:3e:db:54:81:a7:5b:26:77:19:0b:d2:6f:ed:49:8a:61:b0:
8e:f9:11:d5:d5:f8:34:af:c8:16:a2:ec:fd:75:2f:87:dd:8c:
f5:ad:05:08:05:fe:c3:05:64:cc:f6:8f:33:af:0b:03:d4:cf:
7d:2d:4d:b5:1f:85:fc:d5:83:9f:f6:9a:dd:a9:af:af:4e:2e:
b8:ac:6c:6a:4c:9e:ff:aa:4f:53:78:cc:fd:ac:21:19:ce:69:
32:5d:6c:d6:20:ad:70:7c:6e:32:52:bc:c4:ae:f2:cd:6e:62:
7c:15:e5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:00:32 2026 by rpki-client