Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
File: cEZO_kc3QepObM9sPFo3xm89oXk.mft (raw, json)
Hash identifier: 4PENJrP+9GaCUwYI8e5618AQr//I8s29lN5U6xRK4pY=
Subject key identifier: 32:3F:1D:C7:60:69:9A:FF:BD:5C:CF:99:D1:F6:8B:51:E2:37:E1:56
Authority key identifier: 70:46:4E:FE:47:37:41:EA:4E:6C:CF:6C:3C:5A:37:C6:6F:3D:A1:79
Certificate issuer: /CN=70464efe473741ea4e6ccf6c3c5a37c66f3da179
Certificate serial: 019EC06E4F9715B12BDCA0CB36CAAF941B2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
Manifest number: 0172
Signing time: Sat 13 Jun 2026 10:01:55 +0000
Manifest this update: Sat 13 Jun 2026 10:01:55 +0000
Manifest next update: Sun 14 Jun 2026 10:01:55 +0000
Files and hashes: 1: ROpNx89soFP8JE-okJDCTVHVXDs.roa (hash: 5HtcGDIbCLb9z7TZql7Z+rs2Xx1sglk4pFTRwXa2X+g=)
2: cEZO_kc3QepObM9sPFo3xm89oXk.crl (hash: 7s5kBVH9vbcKZTH3XkLa+J+kJTVJDlIbM0qVM4NCU1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6e:4f:97:15:b1:2b:dc:a0:cb:36:ca:af:94:1b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70464efe473741ea4e6ccf6c3c5a37c66f3da179
Validity
Not Before: Jun 13 10:01:55 2026 GMT
Not After : Jun 14 10:01:55 2026 GMT
Subject: CN=323f1dc760699affbd5ccf99d1f68b51e237e156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:fb:a4:b7:d3:93:df:6a:b5:39:c3:bc:e1:90:
ca:fb:48:de:9c:ce:70:4a:b2:c3:2e:ff:e5:a0:48:
9d:76:f2:17:eb:b7:54:a3:9d:39:32:0c:f8:e2:35:
ee:d6:b2:c1:df:04:cd:e3:94:2b:c1:c5:2a:83:9d:
f0:3b:a6:3f:03:f0:e5:92:38:6a:75:7e:78:ff:c3:
96:e5:ab:8e:88:3a:e9:3e:8e:54:3a:58:04:1f:2c:
47:23:bb:32:96:74:db:e5:94:5e:7c:91:24:2c:cb:
2b:92:92:1f:71:f7:97:a9:a8:f7:58:f5:66:7a:30:
c3:a4:82:b8:41:e0:01:58:06:d6:e3:0a:38:de:40:
74:81:cb:57:09:51:4f:d2:52:70:65:c9:2c:f4:b8:
40:64:8c:1a:82:03:06:f5:cd:0f:ca:c3:e7:51:51:
97:9f:be:95:82:06:25:1b:d4:68:ec:99:23:fc:4b:
dc:cb:0b:83:f5:1c:ba:1d:df:a8:ec:a4:70:66:84:
6e:de:1e:27:f0:03:67:8c:72:63:d2:c6:e8:e2:79:
c5:ab:87:69:be:72:09:32:5b:7b:82:b5:6d:91:d5:
d0:3f:0f:a9:09:70:36:41:8f:48:2d:83:79:44:f4:
2d:a1:63:86:1c:93:3c:cf:ac:e5:20:dc:e1:cc:71:
f9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3F:1D:C7:60:69:9A:FF:BD:5C:CF:99:D1:F6:8B:51:E2:37:E1:56
X509v3 Authority Key Identifier:
keyid:70:46:4E:FE:47:37:41:EA:4E:6C:CF:6C:3C:5A:37:C6:6F:3D:A1:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:92:0a:48:11:da:75:e0:e6:fc:16:78:90:9d:5b:a7:20:8e:
c0:c8:dd:97:83:81:0d:cd:de:4d:9d:08:b2:29:8e:a6:8d:2e:
6c:df:87:b3:29:ed:e0:7c:f5:33:47:7a:7f:85:f1:ec:ef:71:
95:a3:4d:29:fe:d2:67:d3:6e:3e:86:52:fb:1f:b4:c3:05:d2:
4f:5c:42:4c:b5:83:47:1d:3c:bf:7a:50:a2:25:99:e5:93:f9:
6c:97:bd:54:55:37:d6:dc:c8:92:a5:80:df:92:64:d9:5c:52:
b7:a2:6b:92:8d:36:8c:bd:56:c9:d5:fd:df:9d:35:c6:c5:c0:
b2:6b:4b:a4:7f:9f:fd:12:f1:2e:21:e4:5f:fb:1f:85:af:71:
98:56:c6:90:50:94:86:85:03:36:29:f8:40:9d:47:b6:de:03:
24:ab:9e:9b:cb:55:b7:ca:25:63:aa:5c:cf:75:80:9c:f7:19:
19:c5:e0:c8:6f:a5:1d:fe:3b:98:21:bd:a5:f7:dd:e7:8f:a9:
d1:da:2d:11:7e:8a:2f:dd:ed:d1:34:63:62:d0:63:b7:56:98:
69:ec:d6:df:11:7b:65:1a:20:5a:f8:91:5a:e7:ed:bb:2a:84:
06:03:d1:09:e2:b1:a0:62:73:1c:80:3e:0b:32:a1:4d:b1:62:
e8:fe:a4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:55:22 2026 by rpki-client