Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: Tsp9L5nbmNTIZMKr8QVPwNIKRC7DuRI5bbFdHDfh9x4=
Subject key identifier: 6E:4B:25:78:75:ED:AA:B5:58:BC:9D:3A:65:AF:5B:69:7A:29:AF:0C
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 019DD12CFA18A580A6B824C9FE50AF0A6C95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 054F
Signing time: Mon 27 Apr 2026 23:01:18 +0000
Manifest this update: Mon 27 Apr 2026 23:01:18 +0000
Manifest next update: Tue 28 Apr 2026 23:01:18 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: HMmhWvI0Wrna4ClvPV8bJzfKupVAvWg18MQA+bMN3q4=)
2: N-nhcmtf4VXbPG95Fke-T4y6cxE.roa (hash: xYYYsHBj06laIvHrXkIBEGVHR61QyHRwXKsgeQHiEUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 23:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:2c:fa:18:a5:80:a6:b8:24:c9:fe:50:af:0a:6c:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Apr 27 23:01:18 2026 GMT
Not After : Apr 28 23:01:18 2026 GMT
Subject: CN=6e4b257875edaab558bc9d3a65af5b697a29af0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4c:b3:0f:a8:4f:de:7c:2e:aa:e3:fe:36:b5:
cf:91:51:64:8c:8c:46:6f:39:0e:04:83:30:36:82:
f0:b2:8f:ed:42:d1:af:32:eb:eb:65:69:70:47:1e:
b0:fa:23:c0:3a:2d:67:70:f9:40:fe:44:21:1b:29:
8a:5b:e9:56:72:75:96:78:3c:29:fa:0a:7f:7f:cd:
75:cf:10:de:d8:87:c2:6a:3c:41:13:18:9c:d8:4c:
0d:6e:d6:49:5a:36:90:c8:76:9e:dd:84:f5:bf:0b:
eb:cb:73:48:14:f1:ff:1c:a4:14:6c:9e:c3:60:df:
b0:08:68:21:80:58:53:4b:2a:83:62:93:51:0f:f7:
2d:82:ad:75:c5:64:74:a3:d9:9f:38:09:e2:84:60:
78:3f:8e:4e:4c:0a:bc:8e:6f:26:2c:0f:28:1b:06:
ef:05:e0:4c:25:87:7c:24:01:b5:e4:81:e7:49:3f:
ef:28:69:ae:fd:66:c6:7c:78:eb:e6:b5:ff:6f:78:
a9:6e:eb:d6:91:51:28:4b:02:f4:1f:a3:11:34:ce:
3a:e1:64:09:de:8d:f9:4e:95:81:cc:e9:d9:a6:c6:
dc:d9:59:38:ce:5d:84:ba:b2:10:48:4e:f0:bf:2b:
b8:2e:44:09:c6:2d:87:18:70:76:d0:6b:11:5b:f3:
53:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:4B:25:78:75:ED:AA:B5:58:BC:9D:3A:65:AF:5B:69:7A:29:AF:0C
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:ef:50:31:5f:c1:0b:4a:1e:7c:de:0e:8e:97:c1:e6:06:51:
0c:7f:09:c1:94:c5:aa:c8:cf:2e:c1:d8:c3:16:8c:0c:25:6a:
e2:3e:67:3c:1a:c4:87:e2:96:3d:54:5a:ac:ff:59:7c:de:26:
e9:4b:8b:34:c5:03:d4:0a:2d:d3:80:2c:a2:02:82:83:aa:9a:
d5:64:08:28:a1:1c:b4:91:12:44:62:85:0f:67:7f:09:16:e6:
5f:38:23:6d:50:b1:a8:47:8c:87:4d:1c:d0:ed:30:24:b3:f5:
fe:7b:40:39:fe:7f:2d:20:cb:a3:d5:35:9c:c2:80:75:fb:7a:
8b:92:32:fc:9a:ac:b3:f2:79:5a:2d:5a:53:9a:8b:ed:e8:8e:
ae:5f:78:7e:4c:ec:0f:08:1b:1b:dc:45:96:0d:c7:18:8c:e2:
6d:e1:f8:50:36:90:9f:a4:ab:7f:b8:db:94:fa:84:dd:b7:a7:
3c:e9:59:01:24:76:73:1a:cb:2b:42:10:1c:3a:b8:59:c8:da:
3c:ac:4d:4d:f4:c3:b9:68:c2:0d:bf:dd:f5:72:02:e0:6b:92:
04:03:ba:b4:e0:27:77:f7:c1:66:0c:2b:7c:d1:bc:fd:bd:49:
e7:30:02:62:a6:1d:2d:dd:1d:69:9c:1a:15:22:07:b3:16:4a:
53:c9:5f:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3RLPoYpYCmuCTJ/lCvCmyVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NDI3NTlhMDRmY2ZkOWRkMzg2NDg2ZjA0ODIwZTRhMDYw
Mzk3ZjIwHhcNMjYwNDI3MjMwMTE4WhcNMjYwNDI4MjMwMTE4WjAzMTEwLwYDVQQD
Eyg2ZTRiMjU3ODc1ZWRhYWI1NThiYzlkM2E2NWFmNWI2OTdhMjlhZjBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEyzD6hP3nwuquP+NrXPkVFkjIxG
bzkOBIMwNoLwso/tQtGvMuvrZWlwRx6w+iPAOi1ncPlA/kQhGymKW+lWcnWWeDwp
+gp/f811zxDe2IfCajxBExic2EwNbtZJWjaQyHae3YT1vwvry3NIFPH/HKQUbJ7D
YN+wCGghgFhTSyqDYpNRD/ctgq11xWR0o9mfOAnihGB4P45OTAq8jm8mLA8oGwbv
BeBMJYd8JAG15IHnST/vKGmu/WbGfHjr5rX/b3ipbuvWkVEoSwL0H6MRNM464WQJ
3o35TpWBzOnZpsbc2Vk4zl2EurIQSE7wvyu4LkQJxi2HGHB20GsRW/NT9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG5LJXh17aq1WLydOmWvW2l6Ka8MMB8GA1UdIwQY
MBaAFAhCdZoE/P2d04ZIbwSCDkoGA5fyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEt
NzAyNWUxODgwNjhjLzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEtNzAyNWUxODgwNjhj
LzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN+9QMV/B
C0oefN4OjpfB5gZRDH8JwZTFqsjPLsHYwxaMDCVq4j5nPBrEh+KWPVRarP9ZfN4m
6UuLNMUD1Aot04AsogKCg6qa1WQIKKEctJESRGKFD2d/CRbmXzgjbVCxqEeMh00c
0O0wJLP1/ntAOf5/LSDLo9U1nMKAdft6i5Iy/Jqss/J5Wi1aU5qL7eiOrl94fkzs
DwgbG9xFlg3HGIzibeH4UDaQn6Srf7jblPqE3benPOlZASR2cxrLK0IQHDq4Wcja
PKxNTfTDuWjCDb/d9XIC4GuSBAO6tOAnd/fBZgwrfNG8/b1J5zACYqYdLd0daZwa
FSIHsxZKU8lfUw==
-----END CERTIFICATE-----
Generated at Tue Apr 28 08:21:59 2026 by rpki-client