Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
File: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft (raw, json)
Hash identifier: fBwwPV2+jUIziCb49vDC5Y9X6cbDodQHPCqfkkzAgfQ=
Subject key identifier: BF:34:1E:85:BE:85:4C:A3:D5:57:92:40:7A:5D:3D:54:0D:90:93:C0
Authority key identifier: AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA
Certificate issuer: /CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa
Certificate serial: 019F11C0617B02D8C386BFDD0DADAAEE304D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
Manifest number: 0EA3
Signing time: Mon 29 Jun 2026 05:00:48 +0000
Manifest this update: Mon 29 Jun 2026 05:00:48 +0000
Manifest next update: Tue 30 Jun 2026 05:00:48 +0000
Files and hashes: 1: 6PvsgVwbpjjge_V2egl4nj0Eov4.roa (hash: U1ac2CnvIyxkgh4LffLq2pt3hg9vUAszqogwRbgBBLY=)
2: INbvbexKikJqE06AvP-OgH6xyns.asa (hash: 6+8nON8zORmJVsBb/5wLz53qepNYird7lFy9z0e2zr0=)
3: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl (hash: BLa1LxL9crx8zhvLBMJBPdE0DD1Jrlo1kNV5W7NwtiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:61:7b:02:d8:c3:86:bf:dd:0d:ad:aa:ee:30:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa
Validity
Not Before: Jun 29 05:00:48 2026 GMT
Not After : Jun 30 05:00:48 2026 GMT
Subject: CN=bf341e85be854ca3d55792407a5d3d540d9093c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b1:f4:ad:62:c1:6a:97:15:c8:c9:41:1a:f5:
db:cd:5c:51:04:a2:0a:4e:0c:84:c7:e1:f6:22:c2:
9a:fb:92:64:70:78:36:2d:0d:a3:44:9c:41:b4:cf:
83:9a:a7:b9:48:e1:d9:90:6c:75:68:9e:1a:57:5a:
03:cf:c1:19:69:ab:14:d8:b4:0e:5d:16:67:e2:69:
a0:db:24:78:1c:87:1b:71:88:21:8c:09:42:7e:62:
a8:19:fe:9a:77:15:f8:62:74:83:1b:4f:a4:bc:ec:
ac:ad:f9:c9:3b:6a:0d:21:a0:77:3a:06:4a:c1:52:
10:9f:4b:35:85:04:ac:84:c5:23:1e:45:a6:10:40:
a4:af:e1:dc:9c:76:00:4e:c7:83:25:a1:60:c5:a2:
97:e8:d4:d7:89:77:34:06:0b:de:67:60:cc:ed:f2:
d6:ab:ad:94:e6:eb:15:bc:6f:3e:da:7f:43:b3:c3:
35:37:ad:48:ef:e4:55:0a:28:ea:4b:1d:b6:7b:bf:
a1:24:01:76:07:85:c4:e7:2c:7d:e3:d2:46:7b:53:
cb:fa:e4:c2:84:35:9f:7e:3c:53:87:27:a7:99:57:
aa:f8:a3:cd:d8:41:23:f3:c7:8b:b4:2b:f6:a5:42:
ee:e7:9e:50:68:26:77:f8:f2:65:de:c6:71:eb:35:
43:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:34:1E:85:BE:85:4C:A3:D5:57:92:40:7A:5D:3D:54:0D:90:93:C0
X509v3 Authority Key Identifier:
keyid:AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:4a:3b:3e:f6:db:db:b3:4d:9b:82:29:39:b5:47:41:76:a4:
80:dc:2d:ee:2e:41:56:b5:f2:a5:82:82:1a:3f:9a:9b:c9:d2:
d3:03:11:e8:73:58:32:ef:30:d8:8f:54:b2:14:7b:4f:c4:65:
ff:94:52:11:48:e4:29:77:9d:51:e5:3d:9a:b4:2c:8b:ec:57:
c4:36:aa:a7:ad:ac:0f:78:16:90:ce:e2:3a:3a:78:e8:7e:4e:
2f:f2:cf:95:d5:b3:4b:21:a7:19:1b:74:8f:c6:33:95:a7:44:
c6:78:03:ba:53:81:25:5e:f1:cb:68:bb:ae:e3:2d:9b:9a:d2:
82:ab:c1:9e:b6:7b:f9:2a:fa:d1:75:52:26:f0:de:2a:fe:31:
7f:71:ab:83:99:40:c8:24:9c:02:18:50:95:0f:c3:4b:1b:f8:
96:25:9c:77:88:07:32:dd:49:93:84:bb:39:9a:1d:30:4f:af:
7a:08:a7:32:19:94:36:55:97:d7:b3:6d:7f:1b:44:a7:34:2f:
a2:e0:8b:7f:8d:79:aa:31:9a:9b:0b:71:b8:4f:6c:e4:a4:24:
e7:dc:61:af:e2:fd:d7:26:bc:ab:9b:54:06:5f:41:5e:ae:0e:
30:aa:6c:67:86:3c:af:40:9b:bf:63:11:19:17:6f:18:87:bf:
09:a8:6e:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:42:38 2026 by rpki-client