Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
File: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft (raw, json)
Hash identifier: cQUtCfUAlyNOGxOWBtV0VfNpdwdl+jty3Q1cvK0XZFY=
Subject key identifier: C2:B8:86:CD:D7:22:18:40:74:94:B8:77:B6:B4:D9:04:C2:54:34:E5
Authority key identifier: AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA
Certificate issuer: /CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa
Certificate serial: 019D389C27403926672F87D3C0D315261DC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
Manifest number: 0DAE
Signing time: Sun 29 Mar 2026 08:00:50 +0000
Manifest this update: Sun 29 Mar 2026 08:00:50 +0000
Manifest next update: Mon 30 Mar 2026 08:00:50 +0000
Files and hashes: 1: 6PvsgVwbpjjge_V2egl4nj0Eov4.roa (hash: U1ac2CnvIyxkgh4LffLq2pt3hg9vUAszqogwRbgBBLY=)
2: INbvbexKikJqE06AvP-OgH6xyns.asa (hash: 6+8nON8zORmJVsBb/5wLz53qepNYird7lFy9z0e2zr0=)
3: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl (hash: w7ZW8npLDatx6xr6cK7WRF1yewPBBOHJtYf7Y5Fc6vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:27:40:39:26:67:2f:87:d3:c0:d3:15:26:1d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa
Validity
Not Before: Mar 29 08:00:50 2026 GMT
Not After : Mar 30 08:00:50 2026 GMT
Subject: CN=c2b886cdd72218407494b877b6b4d904c25434e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:93:3a:c7:43:dc:c2:5f:16:28:91:f8:ff:46:
57:75:27:dc:fe:7e:3a:5d:11:52:ee:0d:d5:06:cf:
bb:c4:3a:52:81:c5:bc:34:84:75:11:15:4a:0e:d3:
52:63:a1:74:50:d3:b0:be:58:12:cf:3c:01:81:f0:
b4:be:26:4f:8b:20:2f:53:c0:05:b7:50:28:ef:26:
f1:97:0e:79:84:ab:20:a0:96:ff:49:97:6b:4f:12:
fe:21:3e:16:cd:5b:d3:d2:d1:e6:6f:8a:74:7d:31:
32:27:8a:14:16:d6:d5:66:d8:c9:0b:22:3e:e6:de:
93:70:d2:ec:09:4d:a0:53:ae:af:86:87:d6:40:5f:
59:69:a9:98:3c:60:fa:06:58:5b:ad:41:ab:ff:2d:
4c:97:a5:08:76:d6:e3:ec:a5:4d:a6:9e:a3:59:00:
52:4b:82:37:19:6c:dc:ce:9c:92:40:01:64:cf:ef:
43:ef:76:61:b9:fb:95:16:a2:1f:56:57:f5:7b:7d:
6e:d4:7f:56:a6:0b:70:12:b3:fc:a4:b0:a0:82:42:
94:9c:ee:d6:4c:c6:fe:9b:0e:c4:02:e7:cb:99:d8:
28:91:13:95:01:81:60:55:ec:ef:85:a2:14:7c:33:
e0:b2:fb:d3:a2:b7:25:07:25:bc:4a:30:50:53:83:
1b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B8:86:CD:D7:22:18:40:74:94:B8:77:B6:B4:D9:04:C2:54:34:E5
X509v3 Authority Key Identifier:
keyid:AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:6d:e0:d0:37:8e:48:bb:08:3e:1d:b3:a7:a4:01:fa:2c:a3:
7a:b8:11:5e:2e:cf:e7:10:1f:c9:32:6b:db:9f:79:98:15:bb:
6e:c7:85:9d:d2:81:b2:ea:18:b3:c6:9e:ac:8a:55:d5:13:2b:
c3:aa:5c:7f:60:ea:c4:2a:f4:1e:c5:a5:1f:2e:7a:c8:42:0a:
f0:b8:cd:b8:3d:2e:e7:70:b5:ca:20:65:23:86:53:cb:3d:26:
77:78:00:85:3b:16:31:ab:06:89:ee:f9:07:8f:dc:1b:ba:0e:
be:61:83:c5:76:a4:b0:72:ed:b3:0a:34:ad:c7:6d:f2:5b:8d:
71:a6:53:b8:23:4d:2f:d3:31:c6:21:9f:4c:fa:fd:38:a1:92:
f0:12:61:11:82:9b:63:a0:a8:82:34:fe:a2:70:4e:4a:a1:a1:
79:2f:43:40:6b:88:8d:ae:f6:10:21:ad:13:d3:b3:60:06:2e:
14:f7:d9:01:a5:48:21:14:e5:51:dd:0c:2d:85:95:10:95:1a:
06:ee:7f:97:57:d7:fe:64:19:ef:a9:07:3c:51:4d:6d:9d:61:
0e:f4:0e:55:49:1f:6d:5f:01:75:e5:89:76:72:e1:71:c7:4f:
16:36:e6:5b:71:35:e0:32:e6:a4:a9:1e:01:23:f0:c3:ed:f7:
eb:09:8b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:37 2026 by rpki-client