Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: QdyKXdy96lB3nTCyHCfQp532XBOTcKk2Sxdu20YpAU8=
Subject key identifier: 64:E9:8A:19:53:59:76:9A:4D:F6:83:57:35:1D:D6:AB:86:F0:EB:3C
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 019CE77FFA95FD919B627488E70EDFF42921
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 04D6
Signing time: Fri 13 Mar 2026 14:00:49 +0000
Manifest this update: Fri 13 Mar 2026 14:00:49 +0000
Manifest next update: Sat 14 Mar 2026 14:00:49 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: LnEoz6KerOuHEEoApXVd5iC1aBf6ijdSMPl0qPTBcJk=)
2: N-nhcmtf4VXbPG95Fke-T4y6cxE.roa (hash: xYYYsHBj06laIvHrXkIBEGVHR61QyHRwXKsgeQHiEUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:7f:fa:95:fd:91:9b:62:74:88:e7:0e:df:f4:29:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Mar 13 14:00:49 2026 GMT
Not After : Mar 14 14:00:49 2026 GMT
Subject: CN=64e98a195359769a4df68357351dd6ab86f0eb3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e1:60:76:09:ae:1c:70:68:f4:9d:fd:2b:d3:
ae:30:a6:7b:26:94:cb:a6:ec:2b:47:af:0a:3a:b2:
5b:23:82:e7:b3:c7:e6:04:35:3a:c1:59:f8:93:75:
11:71:a9:fe:f8:a2:a1:f1:8b:f2:14:0b:24:eb:2f:
a9:66:ba:71:ee:17:bb:3d:dc:df:1d:d8:d9:cd:5c:
06:26:df:7d:bd:bf:11:fe:89:59:de:35:d3:56:28:
68:15:e7:b3:0d:53:7a:81:3f:43:f7:0c:09:59:09:
f9:69:91:b7:7c:2f:7a:64:57:12:1f:c5:74:92:73:
fb:5b:6a:62:8e:ee:de:cc:fa:dd:cf:68:62:37:38:
ef:88:cb:ee:52:9a:38:78:c2:e9:ae:23:da:a4:4b:
f3:ad:dd:f8:b9:bd:16:23:60:85:3e:96:72:ed:35:
37:9c:14:b0:9e:5e:e6:51:f5:3e:0e:eb:9d:03:d9:
92:7b:08:f4:5c:a8:85:6b:b3:73:12:e4:b7:2a:1b:
45:28:79:29:4d:71:0a:2f:40:f4:10:dd:87:e2:81:
2a:2b:e2:b8:05:2b:33:0f:e8:b1:9c:18:42:b4:03:
ca:3f:3a:6a:34:4a:9a:ff:b9:33:54:f0:55:0d:b7:
15:da:c8:f5:a0:19:d6:a1:2a:b8:6d:8e:21:1f:c9:
c0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E9:8A:19:53:59:76:9A:4D:F6:83:57:35:1D:D6:AB:86:F0:EB:3C
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:08:1b:d4:f3:8a:8b:4b:71:d9:d2:17:86:81:b6:61:d9:52:
48:23:08:d7:a5:2b:1f:cc:87:96:27:d1:20:6d:88:1e:72:12:
38:85:6a:b9:1f:b7:39:50:d6:91:f8:ef:cc:30:af:7a:8f:f0:
9a:97:ba:7f:0f:2c:2b:e5:02:a1:5a:57:80:04:4b:7e:ea:6e:
49:06:72:af:e2:98:fe:12:d0:72:57:a3:35:d4:e5:3c:b7:1b:
66:bf:33:40:c0:7d:88:6c:0f:8d:eb:fb:d9:97:d2:fd:e7:51:
37:40:0f:4a:97:20:0c:72:0d:a1:7b:38:2e:fb:ee:6b:fd:ec:
a4:76:b9:e0:53:e9:f3:70:46:d8:02:7a:a2:c0:ea:fc:1f:42:
74:c6:52:50:99:c1:86:95:8f:35:42:8d:0f:97:6c:8d:f9:0e:
6f:11:cf:6b:da:32:d4:42:dc:89:1b:76:94:9d:9f:58:7f:41:
06:aa:0e:5e:00:18:d7:04:b0:92:0a:a3:40:7e:f9:44:d7:8d:
63:67:97:f8:ab:70:86:fd:52:e2:81:77:8c:cc:65:b4:0c:82:
65:48:ad:92:f3:2c:53:70:5f:dc:0d:62:f7:be:05:38:64:e8:
a4:fe:54:17:1e:d7:fe:ec:93:f0:cd:a3:ab:4a:c5:22:c7:f5:
aa:b3:eb:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 23:41:00 2026 by rpki-client