Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
File: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft (raw, json)
Hash identifier: Bj1hxUwgCrL7b8WbUY9C9aN17uXDUK1kLYDVLvcDJw8=
Subject key identifier: F2:1D:52:43:33:AE:2E:D5:D9:37:CF:62:B3:BD:01:D1:72:22:CD:41
Authority key identifier: 09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2
Certificate issuer: /CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2
Certificate serial: 019D394072068CE7457E01334355463EADF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
Manifest number: 0583
Signing time: Sun 29 Mar 2026 11:00:17 +0000
Manifest this update: Sun 29 Mar 2026 11:00:17 +0000
Manifest next update: Mon 30 Mar 2026 11:00:17 +0000
Files and hashes: 1: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl (hash: AA/NEHolFdFF0urMzEuPncGJm5J40teqvhJjgwopLTQ=)
2: Db42gVIOc-r6U0XdkPGEkaUQ_F8.roa (hash: +dorelrzD6UM9OjrHdBTn8xKkODdpeZOExmq1+y6uHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:72:06:8c:e7:45:7e:01:33:43:55:46:3e:ad:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2
Validity
Not Before: Mar 29 11:00:17 2026 GMT
Not After : Mar 30 11:00:17 2026 GMT
Subject: CN=f21d524333ae2ed5d937cf62b3bd01d17222cd41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:74:14:2e:d0:c0:e4:a1:52:02:4b:65:4d:97:
9f:c8:75:35:26:f7:a6:32:1d:44:07:e9:59:ee:b2:
03:4f:31:34:56:51:06:e3:7f:ed:00:96:57:d3:a9:
51:1a:6f:df:79:4f:8c:78:ae:2c:c2:91:7a:2a:40:
05:0b:b0:b8:a9:73:40:87:5f:e3:8d:a9:ff:5a:32:
ca:7c:71:45:09:27:78:b7:96:ce:88:b7:12:7e:3f:
91:16:9f:15:ed:aa:2c:09:37:01:fe:a4:c8:85:d8:
6d:5b:ef:aa:54:6d:97:35:86:b4:fc:d9:a4:97:07:
eb:ed:bf:9c:92:36:8a:e4:85:e0:81:23:35:99:a0:
70:79:58:5b:62:13:38:42:e5:b3:e5:2c:1a:45:ff:
36:e4:07:1b:94:a6:27:a5:af:53:06:fd:44:dd:0c:
23:74:fc:e2:2b:eb:46:f8:48:74:3f:72:2e:f4:2e:
b2:d4:d0:26:4f:3e:89:a9:e3:d6:63:fb:b6:6b:1c:
94:c8:24:97:60:1e:0c:b8:77:5c:0e:c7:34:a4:7d:
33:2a:11:ba:27:9c:9b:a6:83:76:d3:83:45:b7:8a:
9f:ac:ce:51:ca:32:46:d2:2a:70:d1:ad:07:fc:c0:
8b:01:40:65:f8:9b:50:7f:1f:4d:ab:2a:26:db:57:
3b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1D:52:43:33:AE:2E:D5:D9:37:CF:62:B3:BD:01:D1:72:22:CD:41
X509v3 Authority Key Identifier:
keyid:09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:e4:ab:a0:f8:f3:36:5e:b7:87:79:4f:bc:c4:a0:0f:e2:83:
d2:2c:e2:43:ba:36:7b:9e:61:46:8e:15:fe:58:87:08:0b:ee:
0a:d0:c2:88:cb:f5:a1:e1:1c:35:49:e2:db:b5:5e:5d:8f:52:
13:ed:e1:13:4c:5a:0b:da:09:73:1d:42:b1:86:1d:ce:da:90:
fe:c3:11:27:6a:1b:08:0a:77:51:cb:cf:23:00:c0:58:f0:9d:
e3:23:37:7c:2f:eb:b7:19:b0:62:69:f3:ea:29:c3:91:b0:e5:
18:c7:08:25:b8:c5:45:82:87:c1:b2:22:14:f2:21:d9:c8:f0:
59:d1:98:16:d9:e1:10:ab:37:e6:18:9d:4c:8a:8b:a3:9e:ed:
c4:d5:9b:c0:ae:47:e6:c2:b3:1f:bc:97:71:56:38:d2:55:a8:
9f:51:4f:90:ed:46:68:6a:72:98:f0:3c:ba:f1:00:24:cd:81:
4b:e2:4b:73:3a:03:b4:1d:03:15:4b:0b:4a:fe:4c:31:c7:a1:
13:7e:a5:40:4a:a2:c1:ea:45:1a:4d:84:72:da:c3:29:5e:03:
28:b6:23:b8:98:81:4b:2d:15:51:57:f2:7f:c1:ae:ea:4b:aa:
55:67:66:3b:23:0b:f3:ee:f7:b5:bf:05:52:fc:26:75:c9:57:
c2:31:3f:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QHIGjOdFfgEzQ1VGPq30MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZWYwYjhlNWJiYWIyOWExMzMwZmEwZTc0OTNmMmExNzk4
NDdiYjIwHhcNMjYwMzI5MTEwMDE3WhcNMjYwMzMwMTEwMDE3WjAzMTEwLwYDVQQD
EyhmMjFkNTI0MzMzYWUyZWQ1ZDkzN2NmNjJiM2JkMDFkMTcyMjJjZDQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3QULtDA5KFSAktlTZefyHU1Jvem
Mh1EB+lZ7rIDTzE0VlEG43/tAJZX06lRGm/feU+MeK4swpF6KkAFC7C4qXNAh1/j
jan/WjLKfHFFCSd4t5bOiLcSfj+RFp8V7aosCTcB/qTIhdhtW++qVG2XNYa0/Nmk
lwfr7b+ckjaK5IXggSM1maBweVhbYhM4QuWz5SwaRf825AcblKYnpa9TBv1E3Qwj
dPziK+tG+Eh0P3Iu9C6y1NAmTz6JqePWY/u2axyUyCSXYB4MuHdcDsc0pH0zKhG6
J5ybpoN204NFt4qfrM5RyjJG0ipw0a0H/MCLAUBl+JtQfx9Nqyom21c7FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPIdUkMzri7V2TfPYrO9AdFyIs1BMB8GA1UdIwQY
MBaAFAnvC45burKaEzD6DnST8qF5hHuyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC80MDU0M2UtMTk1YS00MzMyLWE4ZWQt
MzczNzRlMzk2YzdkLzEvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC80MDU0M2UtMTk1YS00MzMyLWE4ZWQtMzczNzRlMzk2Yzdk
LzEvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIeSroPjz
Nl63h3lPvMSgD+KD0iziQ7o2e55hRo4V/liHCAvuCtDCiMv1oeEcNUni27VeXY9S
E+3hE0xaC9oJcx1CsYYdztqQ/sMRJ2obCAp3UcvPIwDAWPCd4yM3fC/rtxmwYmnz
6inDkbDlGMcIJbjFRYKHwbIiFPIh2cjwWdGYFtnhEKs35hidTIqLo57txNWbwK5H
5sKzH7yXcVY40lWon1FPkO1GaGpymPA8uvEAJM2BS+JLczoDtB0DFUsLSv5MMceh
E36lQEqiwepFGk2EctrDKV4DKLYjuJiBSy0VUVfyf8Gu6kuqVWdmOyML8+73tb8F
UvwmdclXwjE/3A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:54:40 2026 by rpki-client