Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
File: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft (raw, json)
Hash identifier: q3mJD/jRc3/70N7lzStEcMl1YuW9U/Hi8YR6Nx2LL5Y=
Subject key identifier: B1:EE:2C:0D:0C:5F:A8:F1:77:74:08:32:10:BC:00:A5:38:E7:96:FA
Authority key identifier: 09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2
Certificate issuer: /CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2
Certificate serial: 019F18308332F703559000FC1B689B90E57B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
Manifest number: 067B
Signing time: Tue 30 Jun 2026 11:01:00 +0000
Manifest this update: Tue 30 Jun 2026 11:01:00 +0000
Manifest next update: Wed 01 Jul 2026 11:01:00 +0000
Files and hashes: 1: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl (hash: R+NLU+s7MmxwiA9owRjz8Xq0XkbNfgYndXyj4Nntyys=)
2: Db42gVIOc-r6U0XdkPGEkaUQ_F8.roa (hash: +dorelrzD6UM9OjrHdBTn8xKkODdpeZOExmq1+y6uHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:83:32:f7:03:55:90:00:fc:1b:68:9b:90:e5:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2
Validity
Not Before: Jun 30 11:01:00 2026 GMT
Not After : Jul 1 11:01:00 2026 GMT
Subject: CN=b1ee2c0d0c5fa8f17774083210bc00a538e796fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c2:1a:52:38:d8:e0:82:b6:49:c9:ae:6e:43:
4a:33:2f:d6:60:b0:88:07:3c:82:fa:5c:02:e3:9b:
a5:bd:1f:10:e2:de:4c:10:c7:60:bb:7b:ef:2c:f3:
79:8d:23:c3:86:aa:60:73:26:a0:21:1d:96:46:11:
7b:63:af:ee:cc:79:f9:f8:97:13:fe:ff:3b:57:c4:
17:49:10:5a:b2:a9:f9:ad:4f:40:56:c6:54:b6:d1:
f5:0a:30:e4:60:53:4b:20:8c:56:af:e6:4b:14:b5:
dd:5b:f5:19:62:94:f7:64:8d:40:b0:9d:ce:0b:90:
ad:1d:26:02:10:ef:aa:a3:8a:00:a9:bf:7f:0f:99:
f2:9b:6a:39:9c:62:0e:7b:4f:7e:6f:dd:3b:fb:c5:
d8:63:ed:98:92:c2:7a:bb:12:96:98:de:f4:08:9d:
fa:c0:db:0a:ed:93:38:98:d8:b8:d0:32:d8:73:2d:
db:45:6e:e9:7d:46:a1:3e:83:56:91:fa:b3:db:05:
73:7c:b0:68:73:4c:9d:fd:7a:00:52:83:cb:8b:4e:
ad:a4:c9:a1:f7:fa:1a:c3:18:a9:40:52:09:a0:81:
c7:db:a7:56:9d:94:c8:c4:ec:7d:44:a5:99:e3:88:
7b:2b:38:42:f1:b4:0d:67:74:88:8a:b5:ad:15:42:
ca:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:EE:2C:0D:0C:5F:A8:F1:77:74:08:32:10:BC:00:A5:38:E7:96:FA
X509v3 Authority Key Identifier:
keyid:09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:b0:c0:d1:6d:1a:af:13:ab:70:ca:b6:78:36:3f:6e:04:c0:
f0:12:c5:11:ff:84:e9:13:91:4f:7a:7b:0a:55:c4:c1:b9:05:
c4:a7:d1:1d:62:83:33:78:a2:e3:f5:1d:36:27:e4:64:db:1f:
de:6d:57:bd:d2:35:eb:83:49:68:14:22:c1:2e:05:af:14:f6:
76:8a:bd:3d:60:8e:95:e4:18:65:1b:a2:b5:4e:c6:c5:db:eb:
dc:be:17:64:04:bb:1d:b9:19:6c:84:a7:89:5c:45:6b:b4:62:
d6:ae:a2:fb:9c:96:3c:16:86:3c:1a:b4:2b:97:57:54:96:a3:
b3:ec:0f:99:ef:54:a0:7c:f8:98:aa:01:8c:57:92:cd:f8:52:
dc:36:4c:ab:bf:69:d2:7d:8c:8e:90:f5:0b:46:5e:16:9c:13:
2a:b9:c4:a5:82:3f:d7:59:57:94:80:87:7b:7c:85:61:d7:c3:
2d:2d:3e:d4:e8:58:c2:23:4c:de:10:7e:71:8f:4a:1d:0d:93:
75:a8:8c:49:87:a3:08:cf:d3:16:80:02:5e:55:22:0c:9d:29:
06:bc:5d:5c:d2:80:43:06:14:26:46:49:3a:00:64:e7:a8:5c:
4b:27:08:7c:10:2b:db:f1:5d:87:c3:72:7f:91:25:8a:03:6e:
94:a1:b1:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YMIMy9wNVkAD8G2ibkOV7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZWYwYjhlNWJiYWIyOWExMzMwZmEwZTc0OTNmMmExNzk4
NDdiYjIwHhcNMjYwNjMwMTEwMTAwWhcNMjYwNzAxMTEwMTAwWjAzMTEwLwYDVQQD
EyhiMWVlMmMwZDBjNWZhOGYxNzc3NDA4MzIxMGJjMDBhNTM4ZTc5NmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsIaUjjY4IK2ScmubkNKMy/WYLCI
BzyC+lwC45ulvR8Q4t5MEMdgu3vvLPN5jSPDhqpgcyagIR2WRhF7Y6/uzHn5+JcT
/v87V8QXSRBasqn5rU9AVsZUttH1CjDkYFNLIIxWr+ZLFLXdW/UZYpT3ZI1AsJ3O
C5CtHSYCEO+qo4oAqb9/D5nym2o5nGIOe09+b907+8XYY+2YksJ6uxKWmN70CJ36
wNsK7ZM4mNi40DLYcy3bRW7pfUahPoNWkfqz2wVzfLBoc0yd/XoAUoPLi06tpMmh
9/oawxipQFIJoIHH26dWnZTIxOx9RKWZ44h7KzhC8bQNZ3SIirWtFULKLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLHuLA0MX6jxd3QIMhC8AKU455b6MB8GA1UdIwQY
MBaAFAnvC45burKaEzD6DnST8qF5hHuyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC80MDU0M2UtMTk1YS00MzMyLWE4ZWQt
MzczNzRlMzk2YzdkLzEvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC80MDU0M2UtMTk1YS00MzMyLWE4ZWQtMzczNzRlMzk2Yzdk
LzEvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAabDA0W0a
rxOrcMq2eDY/bgTA8BLFEf+E6RORT3p7ClXEwbkFxKfRHWKDM3ii4/UdNifkZNsf
3m1XvdI164NJaBQiwS4FrxT2doq9PWCOleQYZRuitU7Gxdvr3L4XZAS7HbkZbISn
iVxFa7Ri1q6i+5yWPBaGPBq0K5dXVJajs+wPme9UoHz4mKoBjFeSzfhS3DZMq79p
0n2MjpD1C0ZeFpwTKrnEpYI/11lXlICHe3yFYdfDLS0+1OhYwiNM3hB+cY9KHQ2T
daiMSYejCM/TFoACXlUiDJ0pBrxdXNKAQwYUJkZJOgBk56hcSycIfBAr2/Fdh8Ny
f5EligNulKGxXw==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:45 2026 by rpki-client