Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: 1hBQq+ky9ozbiPmu2A2ZUGFZeNuJg1w8NrrxU8JhuLI=
Subject key identifier: FD:7D:E4:16:49:B4:5A:51:AB:A1:39:64:36:9D:85:D1:1E:46:75:E0
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 019E1D90C2402E82E543327B09185B27FB86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 1630
Signing time: Tue 12 May 2026 19:01:26 +0000
Manifest this update: Tue 12 May 2026 19:01:26 +0000
Manifest next update: Wed 13 May 2026 19:01:26 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: a+WBukdeYPafvOpIOAnmW702ezLNuBgeyPQ7J7D67iI=)
2: cFauzwqXomgkVBlhCEWJrgK_IBo.roa (hash: 3eFRfx8k6ux2BDXfQobN4cZglfrrJQFQAkF7k25/Hiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:c2:40:2e:82:e5:43:32:7b:09:18:5b:27:fb:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: May 12 19:01:26 2026 GMT
Not After : May 13 19:01:26 2026 GMT
Subject: CN=fd7de41649b45a51aba13964369d85d11e4675e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:39:9e:6e:4c:da:8c:56:b0:93:f0:01:25:1f:
55:4a:6d:85:04:ba:36:18:df:86:6d:50:cf:66:0d:
b1:63:94:72:fb:bc:71:02:99:09:b8:48:57:4f:35:
1c:3f:e2:0f:89:ab:64:06:7f:1b:ff:68:86:61:77:
7e:bb:ea:c8:cd:9f:8a:bc:df:27:9d:0f:04:38:01:
0d:90:92:34:2f:ea:3d:82:94:84:ed:8c:e6:47:1c:
84:d9:42:9e:73:ec:5e:7f:31:ac:46:12:6b:5c:f2:
a7:b0:b0:43:c4:50:82:29:be:b8:a0:7d:31:d6:46:
de:09:a8:6c:94:fb:6b:59:9a:d7:3c:9d:c7:cc:15:
a8:32:5d:8c:26:0e:e8:53:d0:c9:2d:ca:1b:80:a0:
e5:1f:88:a8:35:ef:8a:40:18:13:65:cf:f0:36:04:
68:d4:05:5c:36:3d:1d:5a:fe:76:eb:b5:18:49:bb:
94:f7:a3:e6:7d:0c:11:47:f9:52:99:44:0b:57:8b:
6e:db:36:eb:59:73:68:4f:03:03:bc:4c:a2:e9:3d:
45:7f:42:29:36:bf:41:09:cd:ad:76:20:30:35:78:
e8:df:90:cf:7e:fd:5f:02:e6:da:28:c2:ea:3e:86:
b8:1c:f3:e5:01:f3:b8:88:5d:39:22:8d:a2:3d:f1:
51:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7D:E4:16:49:B4:5A:51:AB:A1:39:64:36:9D:85:D1:1E:46:75:E0
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:c1:6e:95:cd:34:e9:61:41:73:ec:1f:04:b7:0e:f9:c8:74:
97:4e:f1:00:e3:6b:37:26:dd:6d:17:d7:fb:dc:0a:78:52:bb:
48:61:d0:d0:fd:3b:6a:b1:4a:a8:80:38:19:ef:03:54:8a:a2:
84:94:bf:7a:1f:b9:27:12:82:23:f8:3a:f3:d3:36:a0:6a:a8:
31:b1:cf:d4:6e:b1:11:99:92:55:ea:2d:61:01:5f:66:b3:88:
15:f9:10:cd:45:12:a3:ac:e2:fb:08:56:f4:12:d5:f4:1c:f1:
cb:3b:ed:99:d1:07:d6:1d:aa:58:7f:80:8e:a9:e4:14:f6:54:
da:30:54:41:86:d2:5c:ea:5a:77:17:69:09:5d:c0:8b:48:1e:
42:62:2a:ce:cb:f7:de:68:b1:85:c1:34:b0:d2:df:21:64:c7:
a8:ae:0d:43:aa:c6:26:61:32:f6:f1:81:87:1d:d6:3e:d2:93:
ba:d3:22:f6:ff:0c:c2:e5:5f:f4:10:83:15:fe:39:e5:bb:cc:
88:8b:75:d3:3b:38:d5:27:28:f3:6b:70:50:0c:fb:43:fe:9b:
78:ba:c6:21:00:c1:7e:d7:a3:a9:7c:dc:73:63:af:2d:82:38:
18:4a:39:0c:d4:38:27:8e:69:be:48:df:df:58:b8:93:71:88:
d0:83:6f:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:16:35 2026 by rpki-client