Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
File: ceWC839BZJjBi2YkjevM8iQavHY.mft (raw, json)
Hash identifier: dveWr9n/XlITCVvP45CDyr2VHvkqjZEUXOct5XKyIl0=
Subject key identifier: AD:74:8A:F6:BA:9A:6C:76:89:EA:36:FF:15:C1:9F:B8:17:23:42:E0
Authority key identifier: 71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
Certificate issuer: /CN=71e582f37f416498c18b66248debccf2241abc76
Certificate serial: 019D37C0A4A0FD8B11797578B94D718B14A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
Manifest number: 082B
Signing time: Sun 29 Mar 2026 04:01:05 +0000
Manifest this update: Sun 29 Mar 2026 04:01:05 +0000
Manifest next update: Mon 30 Mar 2026 04:01:05 +0000
Files and hashes: 1: 7IBa4M21L1weC-CB5rmV2ELdcjc.roa (hash: r3PNsAmqfmfHmKjnNC5k/puJxwcYNjtuxkNcsT/TBwM=)
2: ceWC839BZJjBi2YkjevM8iQavHY.crl (hash: MKSfEZY0fh2lt3xXraO7PQHD4Zu/yMZAGWA+eUKmIFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a4:a0:fd:8b:11:79:75:78:b9:4d:71:8b:14:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e582f37f416498c18b66248debccf2241abc76
Validity
Not Before: Mar 29 04:01:05 2026 GMT
Not After : Mar 30 04:01:05 2026 GMT
Subject: CN=ad748af6ba9a6c7689ea36ff15c19fb8172342e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3c:7a:5c:2c:22:97:8b:c4:34:7b:40:39:02:
58:5f:ee:6f:30:50:d1:28:1d:96:ca:1b:47:7d:e5:
48:7d:91:89:bd:4c:10:84:28:a1:1f:c2:bf:0b:d7:
c2:2e:5f:25:eb:f7:05:dc:8d:ab:16:8b:cd:6b:96:
65:7a:27:87:df:a4:2e:86:37:17:80:7a:a1:d8:19:
c2:a2:ba:e2:16:16:11:d9:46:70:17:7f:e8:d4:fa:
0a:71:5f:4e:bc:6b:86:87:3b:6e:95:95:78:e2:4b:
ff:c4:7a:05:ff:6a:2e:6e:a2:73:db:41:53:2a:59:
b1:a0:b0:dd:b1:41:d5:79:b0:d6:e3:71:41:61:22:
2f:6a:2c:28:61:03:88:f4:4b:b8:91:95:ee:b2:b0:
c9:79:7e:b2:99:b1:ab:f3:1f:84:51:d3:f2:a3:9b:
dd:65:fa:01:9f:77:9e:08:a7:87:a8:aa:86:52:23:
8e:57:b7:3a:55:c3:0c:90:cb:73:a4:dc:a0:c2:66:
8e:23:aa:e2:fe:e9:1c:52:e1:f3:32:d9:49:f9:6c:
34:ef:b6:d7:b6:87:70:e8:b2:c7:7e:d9:a5:9d:e0:
2c:f2:64:8f:85:e9:19:32:fb:39:66:b2:9e:e4:91:
2e:9c:e6:e7:b7:26:57:54:33:0c:4c:61:9c:10:44:
d4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:74:8A:F6:BA:9A:6C:76:89:EA:36:FF:15:C1:9F:B8:17:23:42:E0
X509v3 Authority Key Identifier:
keyid:71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:fc:47:a5:75:5d:1a:0d:c7:d2:9a:ce:2e:1a:e2:e4:ce:91:
b1:21:a0:f4:80:10:05:60:cb:21:20:d8:8b:7f:4b:98:f5:cd:
39:c2:51:7b:23:e0:2a:28:f6:bb:71:e7:d1:73:b8:51:be:10:
42:5a:17:c2:46:e5:04:11:73:94:ee:72:c4:53:bc:5a:ef:b9:
c0:9f:30:ac:46:8d:a4:43:50:d9:e8:e8:fa:04:bb:8a:74:87:
d6:25:a4:0b:f1:bf:8a:5b:a0:04:1a:c4:c8:b0:b6:3e:26:53:
cb:d9:67:dd:fc:87:8f:b5:3f:8f:86:2e:f0:cd:c8:4b:07:3d:
c4:da:4c:68:09:17:22:47:f7:9a:ca:97:05:de:6a:b1:57:e3:
8c:4d:3d:74:77:8b:7d:79:be:39:1e:57:55:08:7c:70:d5:27:
96:9f:e5:1b:31:63:70:32:b1:79:0f:46:af:bc:b8:8b:4e:f1:
9e:1b:68:43:83:7e:f0:a1:c7:c1:66:41:ae:d9:da:46:d2:f8:
c1:dd:42:0b:e9:96:45:30:1c:32:e6:b2:08:0c:49:99:0b:53:
54:78:81:b6:6e:42:13:2b:ef:53:30:59:64:f7:86:24:d6:b3:
2c:44:06:64:08:ef:9b:34:e7:46:90:ca:c4:a4:3a:6a:d0:e0:
52:a1:c0:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:49:02 2026 by rpki-client