Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: hWfBoK3u/7GfW9YEoyZ8W1znv52hIl+2Zb+JwBljqYs=
Subject key identifier: 94:C1:25:52:06:87:8F:2B:81:C7:36:62:CF:5B:AC:64:18:DF:80:A4
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 019EB958910E2E5384E496F98EB0485B3FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 05C8
Signing time: Fri 12 Jun 2026 01:00:49 +0000
Manifest this update: Fri 12 Jun 2026 01:00:49 +0000
Manifest next update: Sat 13 Jun 2026 01:00:49 +0000
Files and hashes: 1: 4SGHkhKi4QTLFpo-qosd2bahj-Q.roa (hash: dW+Z69p8lpg56uETMd4OUZVzln7S7hdyAq7PkiXDS3o=)
2: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: SAgNMGe/FaWPRtAM/Wl1vOVgQPY+EPpA4NrHZeoUuDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:91:0e:2e:53:84:e4:96:f9:8e:b0:48:5b:3f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Jun 12 01:00:49 2026 GMT
Not After : Jun 13 01:00:49 2026 GMT
Subject: CN=94c1255206878f2b81c73662cf5bac6418df80a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a7:37:e7:e6:b1:71:df:e6:fa:e9:1c:97:a7:
27:16:83:25:77:77:6d:f5:50:4d:0b:f6:30:f2:85:
a8:a5:b1:e6:91:e0:9d:49:f8:5d:7f:1e:38:ce:9b:
d7:46:75:fd:1a:90:14:62:9a:5d:bb:52:bb:01:6c:
55:a0:3a:f6:a1:65:b0:42:5f:a5:2b:48:07:50:76:
5e:97:1d:91:80:cf:90:ba:d8:3d:e0:15:9d:fd:11:
c1:68:d1:61:eb:c1:5c:8b:b4:d7:c8:05:5d:f0:84:
51:90:0a:d9:a6:2c:b3:65:d3:64:47:cd:f9:57:59:
0b:ab:58:af:4f:96:00:00:e2:13:b1:5b:98:ab:16:
6a:59:37:7e:fd:e7:d8:fd:80:ae:3e:44:11:37:ca:
12:d6:a5:fb:97:09:0e:2d:3b:df:68:6b:75:3e:82:
35:26:74:36:c0:f1:7d:f0:09:ef:66:cc:70:eb:54:
d3:9d:91:3a:79:03:9f:fc:0b:7f:66:51:7c:62:98:
8d:b8:e6:b1:bb:4e:15:c5:4f:67:3f:b2:16:6e:1e:
14:a0:1b:7a:9d:4d:cb:f2:96:d2:fa:89:e2:2c:ea:
2d:df:80:ad:bc:db:4c:a5:c7:81:e8:05:aa:9f:87:
84:79:ff:21:e5:44:63:de:77:55:d9:76:35:6a:12:
45:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C1:25:52:06:87:8F:2B:81:C7:36:62:CF:5B:AC:64:18:DF:80:A4
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:00:89:db:db:78:6a:11:38:ad:a1:7e:69:00:f0:11:54:94:
d1:a6:4e:75:72:e2:45:e9:ae:66:aa:d8:31:0a:f5:4d:d6:e1:
53:fe:05:86:e6:25:3f:ec:9a:ea:d4:45:61:42:4e:71:a6:81:
48:be:b8:1b:ce:d1:3f:88:10:16:cc:f7:17:b4:6f:c8:e6:cf:
5f:ea:35:be:f4:27:18:a9:41:38:ec:4d:16:c6:48:bc:16:37:
df:ed:d6:b9:4c:a3:bd:c5:f7:4b:49:b9:7a:8e:61:1f:d9:71:
fc:1e:74:a8:ae:fe:fc:b1:91:0f:08:e4:db:d8:d7:d9:5e:8a:
a3:45:09:8f:47:70:9e:f1:d4:4b:48:a7:b6:30:7a:32:21:c6:
7c:25:e0:11:a7:84:43:96:33:1c:88:62:52:3c:eb:3d:ab:93:
6b:73:31:94:d8:02:bb:b9:c6:ce:bc:08:5d:8f:1f:ad:2f:92:
2e:bc:a4:27:71:5e:e7:dd:38:fc:53:9c:7f:45:36:44:f1:8f:
82:65:e5:fe:53:c7:46:e1:81:b4:4a:b6:9a:7b:5d:a1:ed:ee:
43:e6:b3:98:bf:49:aa:ee:63:ab:07:16:7c:da:a9:00:38:38:
99:71:16:8e:0a:b7:aa:ee:1c:ae:98:e7:72:ae:ea:a5:67:49:
b5:00:60:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 09:53:36 2026 by rpki-client