Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: bDEyBNM4d977wp+Ruouf8InTdVJ9v6wVJK3UUOmfTdk=
Subject key identifier: 28:32:FB:2A:2E:6C:C2:31:E3:12:95:A7:20:F8:18:56:2E:AB:03:32
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 019CABA26655CBAB7178B54BC24A9E641B23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 04B7
Signing time: Sun 01 Mar 2026 23:01:12 +0000
Manifest this update: Sun 01 Mar 2026 23:01:12 +0000
Manifest next update: Mon 02 Mar 2026 23:01:12 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: zHYOPF5p+6/OvhNNNCeG3J8erI9PyHfo7sQw5Hc7lXU=)
2: N-nhcmtf4VXbPG95Fke-T4y6cxE.roa (hash: xYYYsHBj06laIvHrXkIBEGVHR61QyHRwXKsgeQHiEUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:66:55:cb:ab:71:78:b5:4b:c2:4a:9e:64:1b:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Mar 1 23:01:12 2026 GMT
Not After : Mar 2 23:01:12 2026 GMT
Subject: CN=2832fb2a2e6cc231e31295a720f818562eab0332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:95:9d:7e:74:b7:60:e0:53:cd:b8:e7:e6:8d:
81:c7:00:6c:d7:69:21:b2:5b:b0:49:d6:8e:1f:c4:
4f:22:bf:93:f6:52:14:75:4b:b6:17:0f:4e:50:0e:
e7:96:84:66:93:a6:07:51:52:e1:24:84:ad:a6:0a:
1a:7e:ab:38:6f:26:72:9c:ef:c9:c9:5b:7c:e1:9c:
aa:79:b0:28:d5:e8:5e:91:cb:93:d5:7b:1e:7a:ad:
64:5f:ad:11:96:59:20:1e:1c:61:68:6f:41:11:66:
5b:25:f7:eb:71:fe:0d:47:e5:4e:bc:a2:c8:6e:c3:
22:b6:17:37:13:f8:f3:b5:34:20:14:bb:70:aa:cc:
a8:27:e7:01:bb:26:f3:e8:0d:32:93:15:2e:72:dd:
b6:fa:a3:5d:09:64:2a:bb:e6:12:54:2c:ed:4f:65:
5c:eb:99:1a:50:cd:dc:27:c6:85:d4:14:b8:a0:75:
f0:24:74:dc:71:1b:5c:f3:b1:4d:e6:4c:a2:ee:2e:
79:36:a5:a3:6c:e9:38:ed:d2:0e:8e:59:29:e4:68:
dc:d1:80:18:6e:c0:52:f0:fb:0e:32:0e:2e:48:d3:
ed:14:51:41:2d:9c:89:18:18:ce:ff:a5:bd:6e:8f:
fd:09:5c:a6:89:cf:74:5a:d3:d2:9e:33:60:99:fa:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:32:FB:2A:2E:6C:C2:31:E3:12:95:A7:20:F8:18:56:2E:AB:03:32
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:d1:fc:08:dc:74:ce:57:2f:a8:4b:ef:e6:4d:9f:a2:15:91:
dd:b0:ac:99:77:0b:69:af:86:25:16:c9:e4:06:c8:52:f4:43:
26:bf:11:c4:53:10:ec:2f:54:c6:3c:86:3a:d6:93:88:ec:d4:
55:d7:81:6b:ae:43:e7:b4:ee:e2:df:b3:d0:de:03:dd:6b:cc:
fc:c1:95:64:ee:d7:75:ca:cc:84:17:e2:1d:69:9d:19:ba:b4:
d6:21:c6:d0:7f:39:46:89:b3:f2:b2:54:4a:0a:36:8f:c6:4e:
fc:3a:06:aa:ef:e5:d0:d7:12:ce:cc:48:7f:aa:b7:04:11:05:
3d:5e:18:31:a2:6f:45:b9:5d:a8:7e:6a:23:e3:07:5d:c0:df:
f2:ac:54:37:7c:bc:43:c7:85:d7:26:03:d8:b9:c4:cd:5f:2d:
97:49:a5:52:d6:43:a2:50:f4:85:38:df:9b:70:bf:20:02:8f:
31:d4:06:c9:b6:3d:a4:a7:21:40:45:56:9b:ab:11:96:2a:94:
96:5f:f0:f6:83:8e:52:4b:b0:b6:6d:63:ad:35:fd:94:42:cf:
73:71:04:a7:d2:1a:07:eb:4e:74:b7:fb:b3:65:f9:25:a9:67:
9c:84:b1:14:64:f1:5e:4d:0e:de:bd:01:13:b1:83:58:24:44:
d8:ce:34:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:37:23 2026 by rpki-client