Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: seuymqP+2G+PTCz0X4zqzfkx1LGiTfkGT+lDXqYywEw=
Subject key identifier: 1B:E8:90:BC:A1:2B:DF:AF:F5:BB:FA:FA:2C:06:94:3C:D5:F3:3F:FC
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 019EBF233FE0F9C9FC7E34A60F9B7616593B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 05CB
Signing time: Sat 13 Jun 2026 04:00:18 +0000
Manifest this update: Sat 13 Jun 2026 04:00:18 +0000
Manifest next update: Sun 14 Jun 2026 04:00:18 +0000
Files and hashes: 1: 4SGHkhKi4QTLFpo-qosd2bahj-Q.roa (hash: dW+Z69p8lpg56uETMd4OUZVzln7S7hdyAq7PkiXDS3o=)
2: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: toG8K8GE9AX69suoHJtdCx+9r7Et5GtaSE56KA+LjbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:3f:e0:f9:c9:fc:7e:34:a6:0f:9b:76:16:59:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Jun 13 04:00:18 2026 GMT
Not After : Jun 14 04:00:18 2026 GMT
Subject: CN=1be890bca12bdfaff5bbfafa2c06943cd5f33ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b5:04:3f:43:cd:84:8d:8f:6e:64:d5:c6:38:
14:8a:e3:16:0b:0e:2f:0e:f4:c1:f9:89:1f:96:fd:
7a:d3:0a:f7:7e:58:03:15:7f:22:d6:12:fd:a4:7d:
87:e6:f5:78:96:a0:55:f6:28:7b:fa:cd:62:6b:97:
59:8e:9e:65:25:55:b2:f7:0f:d3:83:b6:a2:07:c4:
fa:7a:fb:39:a5:cc:aa:53:8c:a6:fb:ad:f1:fd:e0:
29:60:60:79:a5:b5:97:da:e4:b5:8e:2b:e2:ec:c8:
71:b7:d3:24:60:8b:47:f5:49:0d:29:41:c0:c0:2c:
93:11:c7:5d:bb:bf:22:d2:48:4b:0d:d7:59:37:6f:
34:89:69:d7:e6:9b:53:b7:c7:2b:97:52:42:c3:0d:
03:81:9f:8f:6e:21:13:b4:85:da:61:63:e4:86:d4:
91:94:e4:06:80:00:a8:48:83:13:f3:6d:3c:9e:17:
7b:74:bb:22:8d:80:f0:72:87:41:7e:a7:2c:4b:9b:
24:e6:44:c7:92:6a:15:3a:06:80:87:a6:b8:59:7b:
c9:15:33:68:08:81:28:42:46:eb:38:ff:f4:2c:51:
e6:05:c8:9c:26:a0:19:83:a9:9e:1e:b9:3e:9e:23:
71:6f:d5:87:45:91:e8:44:a5:d5:1b:39:22:a4:e4:
9d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E8:90:BC:A1:2B:DF:AF:F5:BB:FA:FA:2C:06:94:3C:D5:F3:3F:FC
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:45:fa:5b:8e:4f:99:b9:99:0a:57:18:5d:6e:c5:6f:93:2c:
dd:27:f5:e2:ff:e3:ba:a7:be:0b:df:b0:7e:79:36:9d:ed:ce:
18:ac:c1:60:cf:7a:ea:6e:6e:b8:58:02:f5:b0:34:2c:35:6b:
d3:a1:30:38:b8:67:37:42:4b:01:08:7d:db:7c:58:22:10:36:
87:63:17:38:41:60:a2:e8:5a:bb:da:23:f5:c1:08:50:c3:66:
0c:1c:71:b0:cd:03:be:d9:c7:f7:0d:a7:ff:fa:f0:3d:a5:fe:
fe:af:83:99:5b:ef:d6:b8:fe:8f:48:2e:a6:96:0d:5d:70:45:
67:bd:d2:cc:a9:e7:25:c5:3f:4c:9e:b4:c8:60:6c:d3:95:5c:
94:36:9a:10:9e:21:2a:54:3f:44:0a:b4:a6:46:eb:16:d6:50:
8e:9b:12:46:f4:0a:d9:7f:bc:4b:fa:7d:a6:92:9c:9b:3e:d4:
dd:9b:cd:8d:98:5b:03:4c:d7:67:51:4c:6a:25:1a:dd:54:3c:
f1:b0:e5:8e:9a:77:2a:2e:11:fb:ef:0b:c7:d4:e9:42:9c:1c:
78:dd:f3:8f:5c:99:e9:1b:72:17:e6:dd:8c:d9:01:79:9d:d2:
70:f3:34:be:0b:4a:88:88:9d:59:b2:c6:cb:1a:0d:60:76:b9:
b8:a7:eb:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:25:54 2026 by rpki-client