Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
File: ceWC839BZJjBi2YkjevM8iQavHY.mft (raw, json)
Hash identifier: GjOzSdHfIQBamHDkXYyBMs3YP2d3R4PgDTT5/d93ing=
Subject key identifier: 49:31:C9:CB:64:52:AA:49:10:FB:1B:71:40:A1:A8:97:9D:9A:5C:1B
Authority key identifier: 71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
Certificate issuer: /CN=71e582f37f416498c18b66248debccf2241abc76
Certificate serial: 019E29265941A5D7E8D749692F6CF80F075C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
Manifest number: 08A8
Signing time: Fri 15 May 2026 01:00:39 +0000
Manifest this update: Fri 15 May 2026 01:00:39 +0000
Manifest next update: Sat 16 May 2026 01:00:39 +0000
Files and hashes: 1: 7IBa4M21L1weC-CB5rmV2ELdcjc.roa (hash: r3PNsAmqfmfHmKjnNC5k/puJxwcYNjtuxkNcsT/TBwM=)
2: ceWC839BZJjBi2YkjevM8iQavHY.crl (hash: dyFa5YdrNikJqnRGIhEQAn8DDTCEqdrqIsyfcjBendQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 01:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:26:59:41:a5:d7:e8:d7:49:69:2f:6c:f8:0f:07:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e582f37f416498c18b66248debccf2241abc76
Validity
Not Before: May 15 01:00:39 2026 GMT
Not After : May 16 01:00:39 2026 GMT
Subject: CN=4931c9cb6452aa4910fb1b7140a1a8979d9a5c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:10:e3:43:a9:18:4f:74:65:c2:be:b4:4f:33:
20:59:47:8b:39:21:ab:8d:e4:28:ab:48:51:f4:ae:
e2:15:b5:d3:23:54:01:3a:78:ab:a7:f1:7a:d3:ba:
92:c6:c6:44:1a:10:7c:53:ef:e0:48:40:8c:77:54:
31:d6:f5:71:4b:5e:f5:41:a2:25:b5:69:cc:12:4a:
6b:70:50:27:8f:1f:b3:ff:9a:41:ed:63:b4:fa:1e:
4b:0c:7f:1c:18:a8:39:05:a4:b3:f4:be:69:28:3e:
92:1b:1a:ed:e1:68:11:2b:5c:50:5b:fb:52:24:2b:
d7:ce:5d:35:3c:54:0c:29:db:6a:50:37:bd:1c:7a:
34:4f:99:3b:8f:96:d9:91:66:9e:98:72:99:63:b9:
a2:9f:ae:63:67:1c:ac:13:a3:6b:ef:ed:ea:3e:df:
82:66:23:c4:08:9b:67:c5:f7:cd:ee:2f:e3:f5:39:
a2:7b:74:61:22:1f:fe:80:fd:fe:38:ad:e8:0a:c9:
f7:85:66:ad:ad:4e:21:9a:27:e4:88:f9:0c:a2:85:
95:e2:1e:19:e8:f4:de:e8:f5:12:c5:f3:76:3f:da:
4a:ae:ad:ab:94:06:c7:e4:d3:6f:3a:82:01:8d:f7:
fe:81:6a:40:b4:38:21:36:a3:30:3c:56:a4:86:0b:
9d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:31:C9:CB:64:52:AA:49:10:FB:1B:71:40:A1:A8:97:9D:9A:5C:1B
X509v3 Authority Key Identifier:
keyid:71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:5c:98:aa:d9:34:12:8e:44:6c:a6:b8:ec:76:82:6a:1d:6d:
66:55:c2:45:c9:e4:7c:54:c2:c0:0a:96:53:b5:6d:ea:c8:be:
49:a3:39:a3:da:c8:db:83:84:d2:37:d4:4a:5f:50:7c:62:c9:
96:73:89:6a:b2:8e:d4:31:2a:62:df:ea:35:60:b1:b8:bd:ef:
b7:d4:e3:28:ab:2f:96:ec:27:e1:2f:89:86:24:07:c7:b0:53:
85:70:f2:c6:69:27:ef:7a:bf:81:95:a6:cc:51:31:e3:c5:be:
19:a9:a4:4f:14:ff:ef:23:0a:18:9e:2b:c0:47:ca:fa:8a:7f:
d8:fb:bf:d8:5d:e6:e0:71:61:93:98:1e:66:45:b5:b0:fb:e5:
ff:8e:33:91:74:c9:48:f7:c5:8b:81:2e:30:cf:67:50:4e:77:
83:dc:69:d2:c3:96:e2:8c:8d:5d:bd:e4:b0:00:21:6f:29:8b:
e2:d7:a9:5d:62:1c:af:13:02:fe:1e:e9:ba:d0:c5:4a:24:68:
b9:43:37:61:ca:bb:5e:c6:46:7c:3c:9a:ae:91:9e:8f:57:82:
37:45:4a:05:47:13:5c:ab:ef:03:de:53:2d:75:6a:0f:3d:c4:
e7:25:8b:13:9c:37:3a:0b:95:78:43:f3:d6:f8:7a:45:60:a9:
75:36:0a:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 09:51:20 2026 by rpki-client