Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
File: ceWC839BZJjBi2YkjevM8iQavHY.mft (raw, json)
Hash identifier: 7OnxDGBGC4lQGftY2hnK+8hHAnHTdJuf/bKl3mnkA2A=
Subject key identifier: E9:0E:95:DA:02:E6:9D:57:4E:4B:DF:84:3C:82:2A:4C:25:2E:30:08
Authority key identifier: 71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
Certificate issuer: /CN=71e582f37f416498c18b66248debccf2241abc76
Certificate serial: 019F12D3769791618ACB183D8A92A76070F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
Manifest number: 0921
Signing time: Mon 29 Jun 2026 10:01:16 +0000
Manifest this update: Mon 29 Jun 2026 10:01:16 +0000
Manifest next update: Tue 30 Jun 2026 10:01:16 +0000
Files and hashes: 1: 7IBa4M21L1weC-CB5rmV2ELdcjc.roa (hash: r3PNsAmqfmfHmKjnNC5k/puJxwcYNjtuxkNcsT/TBwM=)
2: ceWC839BZJjBi2YkjevM8iQavHY.crl (hash: /3UHtlFSNPNhNX+5hXGs6ajAmmXYTcmTAcI0yv05a+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 10:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:d3:76:97:91:61:8a:cb:18:3d:8a:92:a7:60:70:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e582f37f416498c18b66248debccf2241abc76
Validity
Not Before: Jun 29 10:01:16 2026 GMT
Not After : Jun 30 10:01:16 2026 GMT
Subject: CN=e90e95da02e69d574e4bdf843c822a4c252e3008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:aa:78:fc:53:99:6c:7a:9b:53:f1:3e:ca:b7:
a7:a1:8b:b7:bc:46:d9:7a:cb:66:9d:53:c1:39:93:
8d:08:50:30:01:f1:1e:89:48:40:42:d1:d4:29:ed:
17:15:a3:01:41:69:6f:70:cb:81:80:61:e8:66:c4:
dc:7e:75:39:04:38:a2:41:32:2b:16:8f:5e:ae:a0:
94:7f:c7:61:1b:45:5e:e1:9a:a2:92:aa:de:25:83:
0a:bd:ba:7c:7c:4f:49:fa:a8:07:25:4e:6c:84:60:
27:95:36:f5:02:3b:ef:4c:5e:25:ac:78:b4:f6:97:
48:d8:ef:3a:4c:31:38:67:6d:21:ba:9a:91:ae:11:
5b:19:10:46:49:a6:00:ca:b3:e1:7a:af:2e:76:e5:
58:27:05:00:11:13:7a:63:8f:6b:9f:4b:b2:b7:1c:
52:88:76:bf:0f:d6:ee:b1:65:83:69:1c:88:3f:7f:
ef:4b:92:fc:8e:ed:57:22:91:ae:b5:ef:ee:f0:78:
51:56:84:58:b4:1f:ee:c9:95:af:d0:86:bf:41:fe:
cb:c1:fb:21:68:41:9c:8b:b3:e1:56:a4:34:7c:0b:
6a:42:39:b0:f0:c1:ed:ce:32:ed:6f:9d:ca:2c:c6:
02:91:e1:f5:3e:8c:80:61:24:cb:e8:97:68:07:e1:
ef:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0E:95:DA:02:E6:9D:57:4E:4B:DF:84:3C:82:2A:4C:25:2E:30:08
X509v3 Authority Key Identifier:
keyid:71:E5:82:F3:7F:41:64:98:C1:8B:66:24:8D:EB:CC:F2:24:1A:BC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceWC839BZJjBi2YkjevM8iQavHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/fd9ea0-8357-458b-b596-9f34f6716259/1/ceWC839BZJjBi2YkjevM8iQavHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:07:80:76:83:a3:aa:bb:ea:72:10:90:d6:06:9d:48:4d:59:
64:67:9a:80:3c:c3:e4:9b:49:4e:4f:c3:d7:fb:2e:4d:ff:18:
f0:00:d2:a4:8c:cd:68:f4:6c:00:a3:53:7f:a6:24:db:6a:ae:
5d:4f:29:49:17:8c:3b:f8:3a:60:69:35:4c:bc:f0:84:a1:09:
5e:52:89:bb:23:ca:b4:46:f8:44:db:a4:83:e7:fd:ee:d3:9e:
a2:60:00:e5:3e:fe:6c:e1:40:8d:38:af:f3:4b:b3:5c:27:59:
35:6f:e8:4e:2b:f4:d7:1a:14:96:5f:77:e4:75:66:4b:3d:8f:
fb:7e:01:0f:69:a6:4c:36:cc:d9:33:0f:a4:ae:2d:6b:a1:56:
ad:a8:eb:03:4a:e8:90:bb:a8:d1:f6:1c:5f:3b:03:a0:0d:d6:
ea:b3:df:f3:ee:c2:90:4c:c7:e7:8a:d4:ad:3e:57:92:91:15:
66:fe:00:ef:a7:41:a5:59:6a:a1:0a:e4:ec:33:9a:b6:a4:7f:
bb:da:7d:df:a9:37:7c:e7:97:6f:d5:4e:2b:75:4c:a9:64:90:
00:7e:ad:41:bb:12:08:ba:5e:ea:35:d0:0c:96:ed:94:15:4d:
96:f0:b0:11:a6:a4:e5:1c:fc:83:68:23:97:4a:54:7f:78:4c:
ae:48:d6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:41:51 2026 by rpki-client