Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: aB71k+gilvVGYg3GeVg4hJNvroZoVJIIhnOfeS5plE8=
Subject key identifier: 04:E2:EE:BF:B1:FC:A2:7B:19:0D:29:90:5E:AC:C8:AF:96:D5:D6:FB
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 019D992B2369F9FC569824E80C40A8C5899E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 0532
Signing time: Fri 17 Apr 2026 02:00:34 +0000
Manifest this update: Fri 17 Apr 2026 02:00:34 +0000
Manifest next update: Sat 18 Apr 2026 02:00:34 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: fPSQ8BxrcdXlBFqjvPBMPEB4ew3jkh50i+cgfY3kTQM=)
2: N-nhcmtf4VXbPG95Fke-T4y6cxE.roa (hash: xYYYsHBj06laIvHrXkIBEGVHR61QyHRwXKsgeQHiEUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:23:69:f9:fc:56:98:24:e8:0c:40:a8:c5:89:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Apr 17 02:00:34 2026 GMT
Not After : Apr 18 02:00:34 2026 GMT
Subject: CN=04e2eebfb1fca27b190d29905eacc8af96d5d6fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a8:69:a3:a2:99:b0:14:30:6a:a3:e3:16:09:
e6:e8:79:78:e1:ed:ee:1b:dc:4b:ef:07:9d:65:97:
a4:0c:58:4a:a8:66:bd:50:74:90:77:09:5a:e1:cc:
c7:d1:50:8f:6a:cf:59:9f:da:4e:29:60:7c:4d:52:
f7:71:0b:9c:0b:91:fd:89:4e:40:a7:39:50:1d:05:
77:8e:86:5f:78:cb:dc:6c:43:96:b1:5b:5c:f6:0e:
56:37:6f:5f:ae:3a:57:83:fd:78:9f:2a:e6:65:48:
c2:bd:30:b3:10:72:a9:65:f1:70:3c:ee:12:5c:e1:
a0:b9:fc:db:df:3a:41:8e:c6:08:bb:15:2a:32:80:
c5:ae:a2:bc:19:89:8b:e3:34:54:4b:53:c6:59:84:
4b:f6:70:9e:56:39:46:a0:c0:d1:cb:ca:a1:2e:db:
9d:1e:d4:40:94:39:fc:ef:36:9c:f9:0e:e7:84:b8:
a1:b2:02:62:17:d9:64:60:ab:4a:48:cb:15:1a:56:
d4:1a:8f:d7:e5:b0:00:23:74:f9:e1:49:74:db:c3:
31:af:22:68:be:4d:cb:60:f2:26:46:85:9a:77:42:
db:03:48:5e:db:a3:11:39:f4:ac:cb:bd:93:20:73:
64:a9:3d:73:1c:68:cf:57:d4:6a:67:8e:ab:6d:05:
26:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E2:EE:BF:B1:FC:A2:7B:19:0D:29:90:5E:AC:C8:AF:96:D5:D6:FB
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:c3:7b:f2:5a:56:63:e4:62:81:b1:5f:19:5b:22:e7:09:a1:
bc:44:09:47:1e:92:93:aa:93:ec:9f:76:01:1e:3d:40:92:05:
fd:1b:0b:71:3f:cc:c8:95:b9:9d:9d:e6:98:38:86:12:6f:14:
a3:ff:b3:b4:0a:06:3f:89:c9:7e:74:31:07:f0:c9:66:c7:ce:
5a:8b:f7:f5:5b:1e:ca:03:9b:95:86:9f:19:bd:a5:b7:4b:92:
54:b6:35:5a:d4:e3:2b:87:df:7e:6d:95:a1:ce:11:52:c1:9d:
eb:03:35:7d:64:42:dd:5c:f8:11:08:8e:40:e9:d3:77:d5:12:
86:31:bd:2c:f5:7b:cd:31:0a:98:fe:94:41:17:7e:32:37:47:
62:62:b5:1c:97:64:dc:57:3b:65:1d:a5:87:b2:da:66:5b:f3:
83:2c:01:d0:4e:d4:e9:10:07:d5:f1:d5:66:b9:af:11:61:6c:
d7:f7:0c:08:87:af:00:a1:ab:05:0b:c9:d7:6f:58:89:cc:bf:
2e:b4:e3:09:eb:3f:9f:fc:49:11:70:91:27:0a:78:2d:65:c0:
18:a2:06:dd:02:5b:8f:46:70:20:7b:b5:7d:aa:e6:39:27:5d:
92:42:99:60:83:cb:42:ff:df:e2:e7:09:0e:49:c7:65:1f:af:
6e:94:66:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZKyNp+fxWmCToDECoxYmeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NDI3NTlhMDRmY2ZkOWRkMzg2NDg2ZjA0ODIwZTRhMDYw
Mzk3ZjIwHhcNMjYwNDE3MDIwMDM0WhcNMjYwNDE4MDIwMDM0WjAzMTEwLwYDVQQD
EygwNGUyZWViZmIxZmNhMjdiMTkwZDI5OTA1ZWFjYzhhZjk2ZDVkNmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKhpo6KZsBQwaqPjFgnm6Hl44e3u
G9xL7wedZZekDFhKqGa9UHSQdwla4czH0VCPas9Zn9pOKWB8TVL3cQucC5H9iU5A
pzlQHQV3joZfeMvcbEOWsVtc9g5WN29frjpXg/14nyrmZUjCvTCzEHKpZfFwPO4S
XOGgufzb3zpBjsYIuxUqMoDFrqK8GYmL4zRUS1PGWYRL9nCeVjlGoMDRy8qhLtud
HtRAlDn87zac+Q7nhLihsgJiF9lkYKtKSMsVGlbUGo/X5bAAI3T54Ul028MxryJo
vk3LYPImRoWad0LbA0he26MROfSsy72TIHNkqT1zHGjPV9RqZ46rbQUmrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFATi7r+x/KJ7GQ0pkF6syK+W1db7MB8GA1UdIwQY
MBaAFAhCdZoE/P2d04ZIbwSCDkoGA5fyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEt
NzAyNWUxODgwNjhjLzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEtNzAyNWUxODgwNjhj
LzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq8N78lpW
Y+RigbFfGVsi5wmhvEQJRx6Sk6qT7J92AR49QJIF/RsLcT/MyJW5nZ3mmDiGEm8U
o/+ztAoGP4nJfnQxB/DJZsfOWov39VseygOblYafGb2lt0uSVLY1WtTjK4fffm2V
oc4RUsGd6wM1fWRC3Vz4EQiOQOnTd9UShjG9LPV7zTEKmP6UQRd+MjdHYmK1HJdk
3Fc7ZR2lh7LaZlvzgywB0E7U6RAH1fHVZrmvEWFs1/cMCIevAKGrBQvJ129Yicy/
LrTjCes/n/xJEXCRJwp4LWXAGKIG3QJbj0ZwIHu1farmOSddkkKZYIPLQv/f4ucJ
DknHZR+vbpRmuQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 08:05:44 2026 by rpki-client