Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: JOO7DHh5B2JrPOOtYLqXkGJUf/twoFi+BVR0/T+y1Rs=
Subject key identifier: C5:F0:89:9E:09:B6:4A:4E:6F:4F:11:F0:F0:D3:2B:9D:3A:10:02:AC
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 019E30E05F80621B42E777B9BB63D4FDDD9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 163A
Signing time: Sat 16 May 2026 13:01:11 +0000
Manifest this update: Sat 16 May 2026 13:01:11 +0000
Manifest next update: Sun 17 May 2026 13:01:11 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: VwqVVT3MtfdyVvppacyAU0pOpad6u9PIFQNV1IC3aO0=)
2: cFauzwqXomgkVBlhCEWJrgK_IBo.roa (hash: 3eFRfx8k6ux2BDXfQobN4cZglfrrJQFQAkF7k25/Hiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:5f:80:62:1b:42:e7:77:b9:bb:63:d4:fd:dd:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: May 16 13:01:11 2026 GMT
Not After : May 17 13:01:11 2026 GMT
Subject: CN=c5f0899e09b64a4e6f4f11f0f0d32b9d3a1002ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f1:76:86:91:43:41:28:d6:ef:b1:16:b8:b3:
8e:32:0a:02:2f:59:d3:f5:9e:5b:58:1f:50:fc:6b:
2a:98:48:8b:0c:3a:5e:e7:96:57:56:15:6c:7a:94:
39:0a:0a:54:c3:57:4f:7e:ab:2d:3f:a8:0f:41:c3:
90:fd:18:d1:73:24:dd:a6:dd:d9:61:89:00:b5:05:
1c:02:89:11:d8:40:0d:6a:fe:26:2e:78:68:23:df:
f0:6c:31:f4:43:79:76:8b:c2:5e:99:5c:57:0b:2e:
c3:2e:1c:fb:5a:38:9d:48:57:19:8b:aa:ef:24:a4:
29:d8:55:82:51:cc:ee:92:06:2e:7a:26:85:f1:55:
0c:89:8a:21:c0:61:09:6d:d5:b5:46:c9:c6:59:66:
25:c1:7a:ec:0a:63:1e:0a:5a:25:d8:3f:61:7f:ad:
3c:63:bb:84:b0:aa:cc:d8:7c:9b:b3:1c:f5:05:72:
4e:d7:b8:67:56:c8:dd:51:f4:18:e3:6d:ba:18:ce:
55:91:36:65:f4:c5:65:7a:a7:8e:3e:b4:b8:5a:69:
67:2f:b3:14:4c:51:09:5d:7e:ba:38:19:9a:f2:0e:
62:ba:df:e9:d8:04:88:8b:b9:bc:ab:09:35:7c:2f:
b5:5d:22:e2:77:2f:e5:b9:58:90:d4:d2:20:98:04:
19:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F0:89:9E:09:B6:4A:4E:6F:4F:11:F0:F0:D3:2B:9D:3A:10:02:AC
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:49:cd:6a:0f:a5:cf:64:20:c9:be:d7:5e:74:fe:fb:37:1c:
08:e8:5b:80:57:2c:aa:3f:c1:a5:fd:a6:ae:70:ec:b9:7c:32:
f3:c9:28:70:02:ee:f6:52:81:44:6c:1b:2d:0d:ca:5e:8a:62:
27:bc:e1:ba:02:57:cd:b9:17:23:ca:55:1a:ea:bb:f8:75:01:
4f:56:7b:64:0d:b3:b4:d2:88:16:29:0f:53:6c:00:c1:ad:b4:
29:ed:e3:00:37:be:1a:8a:63:95:39:02:d5:c4:92:90:98:08:
b9:e1:b5:89:dd:eb:db:b6:2e:b0:80:87:b8:1b:9f:c4:42:77:
e8:c0:7e:27:fa:62:96:55:64:f2:73:56:90:54:69:71:c7:d8:
34:bb:0e:cd:42:b1:1d:e6:7c:36:b2:5e:71:9e:fb:b5:3f:89:
cb:fc:6d:fc:2f:23:57:9d:34:a1:f8:65:b0:ea:0e:7e:d6:5f:
e6:61:eb:04:87:1e:13:4e:68:a5:5b:1a:b1:53:f4:a8:1d:86:
04:66:59:cc:bf:89:88:55:6f:37:32:00:a9:98:70:80:72:26:
97:3f:15:ad:50:cb:98:40:5b:6f:4c:17:14:d5:1d:b4:6b:cf:
62:70:c7:44:38:4f:f1:6a:8c:6c:46:7b:c3:02:5e:e2:d0:b9:
40:4a:17:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:09:05 2026 by rpki-client