Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: gPcCoWnMOss7+eJNtuOtdxaR+UlKnnOn/5s1xJonnE8=
Subject key identifier: F0:2D:33:D5:5F:3E:AE:AD:BE:30:74:8D:BF:1A:3D:F2:A2:3E:4A:36
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 019F1265BC7FEAEF5A3EE2C397D4306C1ED9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 129D
Signing time: Mon 29 Jun 2026 08:01:25 +0000
Manifest this update: Mon 29 Jun 2026 08:01:25 +0000
Manifest next update: Tue 30 Jun 2026 08:01:25 +0000
Files and hashes: 1: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: vuO83LKSKXwiA2rjnGgi08U9/IfuMvl/m2fQ5TDl2PE=)
2: bsglp_YaCzq1ZbW59TrfMCZMvqQ.roa (hash: XgQ95AvaHQg4VEsCdEh5u3f7R7yDQIeF4yBEzRXjfaY=)
3: c_9m0xgcLh9YaBDewGJWYh_14As.roa (hash: LgXs4WCpXr8O/VOFf7/hPYK7Aqr9ArHatWk7VUk10XE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 08:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:65:bc:7f:ea:ef:5a:3e:e2:c3:97:d4:30:6c:1e:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Jun 29 08:01:25 2026 GMT
Not After : Jun 30 08:01:25 2026 GMT
Subject: CN=f02d33d55f3eaeadbe30748dbf1a3df2a23e4a36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f5:62:9e:1e:0a:de:fb:24:21:a3:82:21:40:
6a:32:30:28:95:99:c7:32:18:99:03:73:f1:35:06:
7a:fc:ae:3b:4a:ef:4f:cd:8b:81:77:d3:7a:97:21:
86:59:b6:60:3f:50:6c:f1:2e:68:a3:de:7f:41:ea:
6c:f5:6c:f8:f7:4b:cd:a1:ae:d5:db:6d:74:a3:5c:
3c:29:e3:60:75:7b:cc:02:ad:8d:8a:6a:d5:59:03:
1c:3a:98:be:1d:d8:55:67:03:dc:17:ff:1d:95:7f:
8b:47:9c:39:73:b7:ac:11:2b:3e:ce:d3:8e:41:f5:
14:b7:a1:13:6d:5e:ee:4e:a3:06:5d:0d:73:4a:ef:
b1:2f:de:de:6f:48:c5:1b:ff:87:4c:92:67:7b:49:
9c:76:0a:88:9c:5b:4c:43:9f:be:60:dd:29:30:ae:
35:30:ef:62:c2:95:64:18:05:cb:37:d1:0b:8a:77:
a4:05:66:24:dc:f5:74:c2:b8:b5:22:b3:53:01:f4:
73:1c:36:03:47:74:71:a0:10:c9:90:f1:88:af:73:
55:9f:59:0e:2f:f5:ab:be:b0:88:2f:81:68:c3:3a:
67:3c:e3:fc:81:80:e0:d6:5a:3b:84:c4:15:0b:a7:
f6:aa:46:f5:07:26:26:04:93:92:03:ac:ba:e4:88:
ab:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:2D:33:D5:5F:3E:AE:AD:BE:30:74:8D:BF:1A:3D:F2:A2:3E:4A:36
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ea:9c:dc:a5:7c:0e:6f:e4:a2:d9:da:68:96:b7:7a:e1:cb:43:
ec:05:75:1d:32:a2:f2:ad:3e:b2:f0:51:52:52:c6:31:0f:b1:
d6:ff:22:ff:bf:41:ce:50:21:53:38:69:bc:31:a7:cd:87:f1:
ec:ef:95:15:d8:0a:5c:7d:88:56:bb:bf:36:69:ad:0f:4d:6c:
29:f3:06:47:59:c4:97:81:da:eb:e5:f7:df:11:22:2e:f8:c2:
e2:20:d0:78:f8:39:c7:27:d0:7e:ed:6e:f9:dd:73:f4:d2:a5:
8e:b0:c1:7b:99:b0:ae:5e:5b:ec:82:c1:70:38:92:18:fa:d7:
3f:64:14:8d:51:12:6f:00:2c:61:db:55:5c:37:83:99:d4:36:
f6:df:0a:93:3d:d4:97:07:93:0f:7b:ae:20:ba:6a:7c:13:e1:
86:e2:7d:fa:58:31:01:5c:d7:c7:e2:8a:c5:14:8c:5a:14:0c:
8c:bd:7f:1c:8e:70:50:c7:11:82:16:18:6d:ff:f5:9d:7e:65:
4d:39:e2:f0:87:a1:70:a4:a1:9f:09:a7:88:e8:66:06:85:83:
af:41:ba:ab:09:37:cd:a9:86:21:e3:58:c9:c5:55:43:bc:4e:
69:00:17:4e:d8:df:be:11:1b:c1:44:c7:d6:5e:e1:d3:b4:69:
32:b0:2c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 14:48:04 2026 by rpki-client