Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
File: CeVm4OteXiEQflX8lg-x7iGHRHQ.mft (raw, json)
Hash identifier: el73NOOf8SiVs0csITdgNapAmN6fToswVRjRrEID8pk=
Subject key identifier: 4F:D6:39:FF:DA:60:89:F3:6E:0C:EA:EE:5E:14:D1:FC:6D:1A:78:00
Authority key identifier: 09:E5:66:E0:EB:5E:5E:21:10:7E:55:FC:96:0F:B1:EE:21:87:44:74
Certificate issuer: /CN=09e566e0eb5e5e21107e55fc960fb1ee21874474
Certificate serial: 019DCF07488DE70E3DAF5C77226D31273F8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
Manifest number: 1724
Signing time: Mon 27 Apr 2026 13:00:54 +0000
Manifest this update: Mon 27 Apr 2026 13:00:54 +0000
Manifest next update: Tue 28 Apr 2026 13:00:54 +0000
Files and hashes: 1: CeVm4OteXiEQflX8lg-x7iGHRHQ.crl (hash: nFZ8L295pNTegmqBuMOiFy5cJA7SsYGUXW9zTgPnlvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:07:48:8d:e7:0e:3d:af:5c:77:22:6d:31:27:3f:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e566e0eb5e5e21107e55fc960fb1ee21874474
Validity
Not Before: Apr 27 13:00:54 2026 GMT
Not After : Apr 28 13:00:54 2026 GMT
Subject: CN=4fd639ffda6089f36e0ceaee5e14d1fc6d1a7800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:44:d2:00:89:18:94:ff:b2:3b:d8:28:d1:a5:
db:20:04:12:16:01:08:fe:0f:2c:a9:a6:76:ea:59:
65:c4:12:73:bf:80:25:2e:f7:5a:26:5a:eb:7f:5a:
0e:24:37:f7:b6:a8:3c:2b:7a:6f:71:b7:21:01:26:
f3:a1:f4:d9:2b:87:e2:36:09:18:2f:11:55:b1:71:
26:c8:8a:9e:50:9e:09:d8:20:fd:b0:be:b8:d7:81:
c6:40:2d:b5:b7:a3:89:be:78:4e:5a:a6:be:be:16:
56:31:81:51:82:a9:fe:37:04:8b:3a:2e:db:ce:5b:
ec:eb:3b:53:76:4b:cd:9a:5e:e7:25:3f:a7:4c:8e:
17:34:fa:c6:2e:6e:d8:c4:23:b5:45:94:b5:77:8f:
a2:75:92:c3:89:3f:45:ba:35:3a:80:62:57:0f:cf:
9f:70:70:3a:89:33:82:28:18:0c:79:33:f9:0f:e8:
7a:6c:0a:23:ad:57:6c:8f:5c:c3:ea:ea:29:56:06:
3b:28:0f:85:5e:4c:4c:9e:4b:d2:1e:3a:69:78:38:
54:50:29:2c:4a:89:52:01:14:1e:80:de:d7:f2:7f:
88:58:66:f0:ba:d1:de:ba:e7:8e:61:45:bd:bf:5b:
df:21:53:cc:f8:d6:d6:d4:94:0b:33:37:48:9e:c3:
d5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D6:39:FF:DA:60:89:F3:6E:0C:EA:EE:5E:14:D1:FC:6D:1A:78:00
X509v3 Authority Key Identifier:
keyid:09:E5:66:E0:EB:5E:5E:21:10:7E:55:FC:96:0F:B1:EE:21:87:44:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVm4OteXiEQflX8lg-x7iGHRHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/0008cd-e129-424c-b5af-0af1de8f1ff1/1/CeVm4OteXiEQflX8lg-x7iGHRHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:18:c6:6c:af:4e:6d:49:41:9a:e9:4c:b3:e2:44:1b:a8:31:
b9:6f:33:f9:10:fc:84:3f:79:77:d1:ce:31:ed:85:3e:80:3e:
47:d8:c6:10:f8:7c:e5:47:fe:4e:ef:c8:c1:1d:15:9a:7d:b0:
3d:a1:7c:87:63:95:6c:ef:98:67:2b:3b:8e:62:24:28:81:49:
21:a8:0b:51:fa:9e:d1:45:93:ff:1f:b5:89:d4:fa:83:74:3f:
e0:8c:b5:4d:5a:a9:af:ec:97:7a:b4:5b:5e:ce:4b:51:18:43:
43:08:42:13:01:83:59:dd:40:26:d4:a6:ff:11:3c:24:ac:03:
7f:ef:e8:bc:81:83:05:b3:91:57:12:d2:e1:36:48:6b:e5:67:
58:84:01:f3:86:d2:4e:cc:8b:d5:89:59:97:f9:29:48:14:23:
bb:03:b6:70:8c:59:6a:d6:96:55:1d:52:5f:02:72:bf:4e:39:
c5:56:3f:8e:4c:7f:0c:80:c4:b5:9e:65:ae:1c:f7:20:b1:c3:
b6:00:c2:a8:80:22:ea:03:aa:8a:db:60:f5:88:86:2e:b9:87:
7f:f8:b2:80:54:14:05:fd:e1:c4:e6:2c:ae:1d:5a:d3:7f:a1:
23:45:72:17:5f:1b:80:f1:c5:58:96:27:96:06:a9:79:cd:85:
d9:c8:b4:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 17:04:07 2026 by rpki-client