Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
File: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft (raw, json)
Hash identifier: TVsR/K1ZCaloy/wDK4SVEaNkFHVkxsJyIeKv1HTOE2k=
Subject key identifier: 8C:2A:FC:2E:F0:A8:0B:8C:0D:93:BE:5D:CC:2D:6E:74:8D:8C:38:5D
Authority key identifier: AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA
Certificate issuer: /CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa
Certificate serial: 019E2A02AA73E52B6022F8B634CFD3DC4F24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
Manifest number: 0E2B
Signing time: Fri 15 May 2026 05:01:18 +0000
Manifest this update: Fri 15 May 2026 05:01:18 +0000
Manifest next update: Sat 16 May 2026 05:01:18 +0000
Files and hashes: 1: 6PvsgVwbpjjge_V2egl4nj0Eov4.roa (hash: U1ac2CnvIyxkgh4LffLq2pt3hg9vUAszqogwRbgBBLY=)
2: INbvbexKikJqE06AvP-OgH6xyns.asa (hash: 6+8nON8zORmJVsBb/5wLz53qepNYird7lFy9z0e2zr0=)
3: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl (hash: FljDt0Z+HX6Cbj4KCgc1kabKJAilBKO4gj606Gaf8RY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:aa:73:e5:2b:60:22:f8:b6:34:cf:d3:dc:4f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa
Validity
Not Before: May 15 05:01:18 2026 GMT
Not After : May 16 05:01:18 2026 GMT
Subject: CN=8c2afc2ef0a80b8c0d93be5dcc2d6e748d8c385d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:87:6a:77:e4:3e:c2:2b:60:7d:ae:87:8b:
60:77:6e:44:66:ac:88:1d:8d:89:36:12:db:2e:77:
7c:20:e9:45:83:1b:82:e9:ba:26:2c:8c:0b:3d:9e:
a4:b4:16:14:cc:2f:57:4d:7f:cd:1f:d5:97:cd:c0:
85:3e:3b:33:6e:26:02:43:c3:84:a1:af:e1:27:b0:
6a:72:0c:3a:2b:bb:73:22:06:11:a1:34:7a:eb:3e:
ee:1b:0a:d4:1d:a2:ba:3d:26:c3:f2:ef:b4:c6:52:
59:6b:1b:f0:91:9f:6c:de:79:28:cb:9d:b0:63:fc:
7d:43:d5:2d:e5:7f:80:b4:de:a3:76:34:d5:c1:de:
84:94:94:b2:41:39:cd:4d:93:82:30:e6:a0:79:87:
ff:d8:51:c5:87:aa:be:97:43:5d:87:70:ea:21:40:
47:d0:a1:83:16:65:a3:c9:ae:78:71:cc:a0:5c:d0:
73:6f:29:3f:7b:3a:0c:88:60:ed:ad:f6:69:39:f4:
6a:df:be:79:2d:db:68:a6:69:97:61:2d:43:40:58:
70:9d:0b:be:80:7a:07:eb:4a:12:86:e1:59:e1:d9:
b0:5b:04:16:29:a3:43:e3:a1:9d:17:70:24:f5:07:
61:47:5f:65:07:02:4e:a2:71:c9:6e:0b:ab:eb:f7:
f8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:2A:FC:2E:F0:A8:0B:8C:0D:93:BE:5D:CC:2D:6E:74:8D:8C:38:5D
X509v3 Authority Key Identifier:
keyid:AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e4:60:e6:ac:53:b5:57:6f:f4:b7:06:2c:5b:fb:8f:19:93:
7e:71:f7:82:c6:ba:f0:34:20:bc:d8:19:40:83:89:15:41:ab:
42:8b:bc:cb:ff:5a:fd:9f:77:c0:b3:a9:81:c0:b3:10:e5:e9:
78:99:f8:5d:66:ea:3b:04:fc:4a:6a:d6:17:0a:58:98:0d:54:
28:88:0f:bc:c7:bf:d9:8e:de:e1:cb:f2:bf:63:28:85:e1:a3:
d0:37:de:e0:74:39:87:d5:6e:20:aa:a1:c1:6d:52:6f:cd:94:
61:d5:74:67:d6:86:11:a7:69:83:ec:38:72:48:7b:85:bc:9f:
7c:6f:d9:94:02:4f:6f:e4:42:9c:71:58:f5:30:22:6e:a5:9f:
20:d2:38:76:57:a6:78:e2:2d:d2:58:b1:14:4f:a1:fa:74:d1:
fc:50:07:5c:cf:81:04:41:8d:1a:5d:52:a7:98:f5:33:56:3d:
ff:c4:10:13:4b:ac:7f:a2:d0:9f:cb:11:5c:9b:5e:70:02:c9:
68:61:d8:6e:45:92:7a:a7:91:88:fc:56:47:57:46:71:89:a4:
c7:d0:b5:fb:fb:72:6b:0d:a6:cb:bf:ad:34:8e:46:9b:a6:91:
4f:5f:33:e4:da:d3:d0:5e:e8:e2:fb:98:62:1a:7e:6a:e2:8b:
f7:5e:61:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:58:36 2026 by rpki-client