Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
File: cEZO_kc3QepObM9sPFo3xm89oXk.mft (raw, json)
Hash identifier: iV6sraOuEYi/adteFp9DT5+SOygWOtNC4OmRHCYCzIQ=
Subject key identifier: 52:2E:95:1F:99:1F:E7:B9:83:C9:08:7A:E7:CD:93:4E:CD:50:B8:9D
Authority key identifier: 70:46:4E:FE:47:37:41:EA:4E:6C:CF:6C:3C:5A:37:C6:6F:3D:A1:79
Certificate issuer: /CN=70464efe473741ea4e6ccf6c3c5a37c66f3da179
Certificate serial: 019CAD59AC15F3D8692D7385E264C6274FF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
Manifest number: 5F
Signing time: Mon 02 Mar 2026 07:01:00 +0000
Manifest this update: Mon 02 Mar 2026 07:01:00 +0000
Manifest next update: Tue 03 Mar 2026 07:01:00 +0000
Files and hashes: 1: ROpNx89soFP8JE-okJDCTVHVXDs.roa (hash: 5HtcGDIbCLb9z7TZql7Z+rs2Xx1sglk4pFTRwXa2X+g=)
2: cEZO_kc3QepObM9sPFo3xm89oXk.crl (hash: ww5rb2UPdOl4TgUyoLr3h8zWHt4rz87LrJC73UdXbCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:ac:15:f3:d8:69:2d:73:85:e2:64:c6:27:4f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70464efe473741ea4e6ccf6c3c5a37c66f3da179
Validity
Not Before: Mar 2 07:01:00 2026 GMT
Not After : Mar 3 07:01:00 2026 GMT
Subject: CN=522e951f991fe7b983c9087ae7cd934ecd50b89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:53:b6:78:51:8d:21:3d:79:38:4d:6e:93:c6:
a3:99:1f:84:9d:b5:6e:4a:1b:fd:b1:e5:b7:74:ee:
ae:16:a7:58:03:ac:f8:a5:6e:61:87:3a:09:58:82:
0b:15:72:1f:a0:f4:e7:94:a5:0b:ec:86:d3:5c:3f:
81:ec:d8:44:58:fc:cf:63:ae:c4:df:0a:4e:7d:28:
37:6a:01:bc:cf:72:46:d4:3a:b9:cc:56:7c:0e:b6:
14:69:10:e8:b3:51:96:4e:97:3e:1d:3a:ed:2b:0c:
2a:c8:cc:6e:b5:ea:42:9a:f2:19:a8:d4:91:93:a7:
cd:18:3b:24:93:88:2c:66:78:5b:87:02:a7:34:72:
7a:43:cf:98:7d:b1:9c:06:92:ce:ce:d6:90:e0:b0:
ab:fc:5a:04:e2:b5:41:37:2d:8b:df:1b:5a:fa:d5:
ce:b5:57:5d:81:3e:8a:66:85:8a:a3:80:dd:00:e5:
e3:f7:2d:fd:dd:2e:df:40:fc:06:0d:17:db:b1:0d:
60:1c:0e:ec:f4:c7:a0:45:67:ac:70:69:1c:06:ae:
6c:91:58:84:87:26:0a:30:db:1d:c5:a1:0c:83:79:
4e:64:41:39:87:4e:29:90:7c:60:02:fa:2d:8b:4c:
49:7f:9f:e7:b0:94:62:96:94:89:1f:4e:ea:c5:95:
75:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2E:95:1F:99:1F:E7:B9:83:C9:08:7A:E7:CD:93:4E:CD:50:B8:9D
X509v3 Authority Key Identifier:
keyid:70:46:4E:FE:47:37:41:EA:4E:6C:CF:6C:3C:5A:37:C6:6F:3D:A1:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cEZO_kc3QepObM9sPFo3xm89oXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ec4b80-46ed-43b5-9cfa-9b807de60902/1/cEZO_kc3QepObM9sPFo3xm89oXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:99:cf:d9:be:ba:38:9b:79:ae:ff:c9:e1:e5:7a:01:1f:f6:
96:17:79:21:e8:f9:a8:43:49:e3:cf:39:de:df:e3:a5:bc:90:
e7:b2:2d:a9:dd:cb:3d:63:41:77:04:e1:d3:5c:45:71:c7:e5:
65:58:6e:68:5c:e8:90:28:89:80:22:1b:51:99:ef:cc:2e:7b:
40:e6:38:39:62:fe:d1:43:1b:49:86:77:36:48:d8:a1:82:73:
b8:a7:4f:69:95:a8:e9:d4:e0:df:61:07:51:0f:d2:e7:be:e4:
eb:d2:3c:59:dd:9c:c6:15:b4:df:4e:72:b1:3b:a3:32:ee:46:
fa:d2:dd:2f:f6:38:07:a9:fb:ce:de:bb:d4:d2:bd:9f:08:b3:
75:f5:c7:3e:67:fd:1d:04:64:66:91:d5:89:1e:96:f2:19:b2:
8f:f3:4a:c6:67:8c:d7:a5:0f:6e:dd:1a:56:51:67:e7:83:c6:
27:34:db:ed:33:b3:40:ef:4c:13:b4:d4:37:da:29:aa:fa:3d:
cb:a2:39:5b:34:2b:f9:f9:e2:1d:24:24:e3:a8:31:21:a7:35:
a9:33:e8:87:b0:46:f4:3b:03:c0:f0:e2:53:ef:ff:18:f5:4d:
a2:5c:3f:0c:96:78:31:7b:38:40:32:c5:a5:5a:55:51:19:d8:
c0:f2:29:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:06:17 2026 by rpki-client