Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
File: cEZO_kc3QepObM9sPFo3xm89oXk.mft (raw, json)
Hash identifier: lBUlw+GAU38vIn2vnn4wsrnS0KzwRq2daNlmznPuGLo=
Subject key identifier: 2B:93:04:AA:F3:E0:7D:5B:6D:6E:F0:6B:3E:44:5C:2A:B7:8A:49:EA
Authority key identifier: 70:46:4E:FE:47:37:41:EA:4E:6C:CF:6C:3C:5A:37:C6:6F:3D:A1:79
Certificate issuer: /CN=70464efe473741ea4e6ccf6c3c5a37c66f3da179
Certificate serial: 019DA48B04D0826AC81F10972DCA5624186A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
Manifest number: DF
Signing time: Sun 19 Apr 2026 07:01:07 +0000
Manifest this update: Sun 19 Apr 2026 07:01:07 +0000
Manifest next update: Mon 20 Apr 2026 07:01:07 +0000
Files and hashes: 1: ROpNx89soFP8JE-okJDCTVHVXDs.roa (hash: 5HtcGDIbCLb9z7TZql7Z+rs2Xx1sglk4pFTRwXa2X+g=)
2: cEZO_kc3QepObM9sPFo3xm89oXk.crl (hash: yT2s06qhKNG8wbvL7pbzJSdjmJ1wLZ/DCteK9u6PPPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8b:04:d0:82:6a:c8:1f:10:97:2d:ca:56:24:18:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70464efe473741ea4e6ccf6c3c5a37c66f3da179
Validity
Not Before: Apr 19 07:01:07 2026 GMT
Not After : Apr 20 07:01:07 2026 GMT
Subject: CN=2b9304aaf3e07d5b6d6ef06b3e445c2ab78a49ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:00:d7:a0:75:48:fb:38:bc:a2:06:a8:ce:4c:
38:e4:e5:5a:76:12:63:4d:a1:63:ee:b9:95:76:aa:
52:52:9a:53:0a:70:eb:fc:95:90:03:65:f7:89:5c:
8a:c9:e9:f6:f8:6f:b1:ce:1f:d3:b9:9d:df:02:83:
b3:5c:82:74:20:26:4f:93:f5:84:79:cf:9a:4b:3e:
ad:64:f4:69:cd:46:43:21:13:64:a3:a8:0c:45:4d:
1f:79:5e:94:a1:8d:c0:1c:2f:58:83:3c:f4:17:ea:
d7:c3:cb:2e:c7:ba:8d:60:83:68:82:73:d6:8b:28:
14:7b:35:93:d3:9d:ff:b8:fa:62:2a:7a:4b:73:7d:
15:e4:c0:c3:6a:89:56:22:72:8a:e5:bd:12:8c:e5:
22:93:e7:50:bc:87:60:28:47:f6:fe:45:c2:f5:10:
55:c1:8a:d4:61:8b:d5:72:0f:9a:b1:73:1a:84:35:
27:50:6f:e8:be:f0:58:ec:f7:cf:fc:40:68:5f:51:
ce:1a:4c:2d:df:39:d2:33:2f:98:13:20:07:65:3c:
2b:b7:96:20:8c:fb:5d:3c:19:c9:9e:6c:30:07:ee:
42:ee:1a:3c:55:4c:b5:30:b6:5a:28:b7:d2:ae:61:
fb:92:af:96:4d:9d:5a:9b:ba:65:b4:a4:26:5d:c9:
f1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:93:04:AA:F3:E0:7D:5B:6D:6E:F0:6B:3E:44:5C:2A:B7:8A:49:EA
X509v3 Authority Key Identifier:
keyid:70:46:4E:FE:47:37:41:EA:4E:6C:CF:6C:3C:5A:37:C6:6F:3D:A1:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:0a:07:01:24:62:67:f2:dc:d1:5e:52:31:64:0d:a0:6b:8c:
5a:f6:96:24:5f:45:0e:80:c8:db:55:78:13:4b:f3:28:88:2b:
17:6b:54:13:eb:f3:00:d3:f5:51:96:37:e6:fd:4b:f4:4f:69:
de:f0:31:3b:f2:01:63:15:1b:ba:2e:3d:75:0b:83:cb:c3:16:
81:50:52:46:f2:ad:c2:07:44:45:e5:74:2f:4e:d9:6b:7d:04:
bc:fd:e6:8a:8d:2b:08:8c:aa:2c:e6:3f:10:43:dd:b3:8e:8e:
7d:cb:69:e0:31:47:0a:15:77:a7:fb:29:80:86:61:5c:c6:80:
d3:5c:31:89:14:5a:20:3c:1c:66:6f:a7:90:63:af:49:cd:28:
df:29:32:d4:a9:88:04:3b:57:eb:1b:8d:86:eb:6f:7d:7c:3c:
a1:f2:fe:a2:92:fb:3d:c3:9e:4f:56:9e:11:44:47:a1:1b:91:
b9:e9:e4:d4:9c:3c:8c:43:3e:91:bd:10:1e:d0:af:cc:44:59:
b0:e3:cb:ae:51:77:54:8a:03:14:a0:98:56:8e:b6:3d:f9:72:
66:fd:c0:12:51:35:1a:83:24:77:85:a5:dc:fe:93:45:32:f9:
b8:f4:2d:8b:3e:3b:a0:27:72:2d:08:c3:f9:5e:b7:54:89:38:
ef:3b:44:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:44:23 2026 by rpki-client