Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: 6RP8dTvmIEbilM6iJleiJUZHgiyikCrdMgpN8NmGqiU=
Subject key identifier: 36:30:C4:73:09:AE:AB:3C:87:0C:4D:9A:2D:B6:DC:08:84:C1:E2:E2
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 019CE55A8073429BF22637A41C1880CE5410
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 117B
Signing time: Fri 13 Mar 2026 04:00:39 +0000
Manifest this update: Fri 13 Mar 2026 04:00:39 +0000
Manifest next update: Sat 14 Mar 2026 04:00:39 +0000
Files and hashes: 1: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: RdKhOdava0wpiEjCUeLng9S9XWQ68R54bd2ejY47EK4=)
2: bsglp_YaCzq1ZbW59TrfMCZMvqQ.roa (hash: XgQ95AvaHQg4VEsCdEh5u3f7R7yDQIeF4yBEzRXjfaY=)
3: x61bfZf0OubTZvT9w-4WsDstRxI.roa (hash: fReq0aNolFC2JKGR6X3Q7h0pZyzLILuXa5ALU/lSf40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:5a:80:73:42:9b:f2:26:37:a4:1c:18:80:ce:54:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Mar 13 04:00:39 2026 GMT
Not After : Mar 14 04:00:39 2026 GMT
Subject: CN=3630c47309aeab3c870c4d9a2db6dc0884c1e2e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:54:ac:2a:bd:12:20:f2:36:0d:45:2f:5e:0e:
cc:f0:d3:e7:b1:75:1c:18:2c:b0:e4:ad:f0:f6:93:
4f:87:10:f2:71:3c:11:71:cd:99:ea:8a:af:03:10:
78:4a:56:fe:fb:25:16:b7:c0:f3:b6:97:fb:c7:87:
63:1a:d0:f3:2e:1c:a5:58:c1:ce:e1:d9:94:ac:bc:
28:bd:bf:3b:91:d5:06:8a:76:63:c8:a3:0f:7d:54:
9c:51:96:7c:73:81:99:90:54:67:ab:d0:ea:26:9b:
f5:14:7e:60:3d:12:41:9c:ec:cb:67:d2:a8:d6:c3:
8c:eb:63:26:fd:c4:65:fb:02:e9:52:79:d1:ed:16:
a2:15:3d:a0:93:07:0f:60:68:c2:cb:76:d0:27:0a:
cd:11:ff:e1:1c:91:d0:fa:f7:05:2e:eb:42:e0:ce:
1c:d9:37:15:b0:30:78:53:0e:29:92:92:b8:55:da:
df:29:d3:20:f1:b8:df:d4:4a:f7:1b:89:73:a4:e4:
3c:fe:c9:4f:f8:3c:9f:f7:2f:b3:e6:08:27:c1:31:
06:56:45:c0:24:61:f3:cf:3f:f1:05:e9:7a:19:c5:
10:2c:8e:4b:b4:f9:65:ee:74:87:d7:a4:37:82:7e:
a5:29:64:31:f0:24:f5:04:e1:0e:b9:9e:0d:2e:45:
71:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:30:C4:73:09:AE:AB:3C:87:0C:4D:9A:2D:B6:DC:08:84:C1:E2:E2
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:15:11:3c:3c:4b:e2:30:ba:ec:6a:27:5f:8e:c8:63:9b:6c:
2f:c8:5d:c3:a6:d2:e8:5f:a5:2f:91:6a:e5:04:46:16:a4:ba:
8d:66:99:dc:82:80:72:53:ab:ba:f4:43:a3:be:1c:99:fd:7a:
39:d9:63:7d:14:d9:2e:ff:dd:aa:60:e6:d4:be:e9:fd:c8:52:
69:ed:35:74:b2:5c:6e:54:9a:36:cc:a7:64:45:05:df:43:5a:
56:2c:be:be:7f:34:14:39:fc:e7:e2:c1:c6:3e:25:1c:a3:04:
9e:b2:43:56:0f:e4:e4:bc:37:4e:f8:22:97:6a:7a:92:59:4c:
26:4f:f8:b4:d5:59:d0:61:f0:19:2e:db:e9:56:03:64:03:af:
13:5a:26:40:1c:b3:b2:ed:47:08:b5:d1:6b:c5:e0:7c:a2:fd:
b0:c5:cb:00:35:58:bc:41:83:f2:73:b4:2e:0f:7c:63:bc:c2:
49:39:f1:bd:b8:29:9b:8c:ed:34:b7:6b:b9:9e:f0:e2:95:fa:
2d:96:c8:ce:b6:97:83:85:12:85:f5:41:42:e8:fd:4f:76:f8:
85:6a:09:89:a1:6f:11:22:be:39:a8:09:5f:2e:7f:a7:26:e4:
73:79:4e:f8:03:56:c7:0b:c0:80:88:83:40:7f:85:45:81:62:
8f:79:d8:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 09:51:09 2026 by rpki-client