Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json)
Hash identifier: QTE2wvF12C4kItf3E+IGWq8MNi6oVmdSZPwjjXhjqcE=
Subject key identifier: 11:B7:97:D2:23:8A:E9:C2:EE:4F:28:C2:8C:38:DF:85:49:5B:F4:99
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 019D284D66C258D64858D98E06223C24D56A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
Manifest number: 15B1
Signing time: Thu 26 Mar 2026 04:00:54 +0000
Manifest this update: Thu 26 Mar 2026 04:00:54 +0000
Manifest next update: Fri 27 Mar 2026 04:00:54 +0000
Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: 4cICnnZJJl41seQ0lviIJVwed2sst8C8VQQOfMW4kdM=)
2: cFauzwqXomgkVBlhCEWJrgK_IBo.roa (hash: 3eFRfx8k6ux2BDXfQobN4cZglfrrJQFQAkF7k25/Hiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:66:c2:58:d6:48:58:d9:8e:06:22:3c:24:d5:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: Mar 26 04:00:54 2026 GMT
Not After : Mar 27 04:00:54 2026 GMT
Subject: CN=11b797d2238ae9c2ee4f28c28c38df85495bf499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:f8:d4:dd:2e:60:01:d0:6c:41:03:69:95:
27:e8:1b:8d:5b:5f:d1:e2:07:88:36:13:80:3d:c8:
64:5f:ce:06:a1:04:48:3e:1b:93:2c:1f:d2:d9:c6:
a1:d2:5c:a5:f6:4c:ae:42:6f:b9:0c:12:a3:3e:45:
1b:34:15:0b:ba:10:bc:46:46:e2:b5:66:f3:73:e6:
e6:83:61:09:01:dd:45:eb:87:d4:d7:9c:b9:11:4f:
f0:ab:3b:17:e9:d0:90:ab:98:3b:1b:12:e1:b6:ea:
64:03:f0:c3:ac:1b:39:36:9d:e0:ed:4e:2f:b1:ef:
c7:0e:f7:bf:49:50:d2:bc:77:5e:cf:b0:98:79:f7:
fa:aa:2f:f7:33:a9:68:b7:a8:47:e2:4b:87:bf:3b:
26:be:da:e6:2c:0e:1b:30:71:14:69:98:ff:f0:bb:
db:fa:23:c1:62:21:a2:71:b7:fb:70:44:ff:cf:66:
06:c7:98:90:2c:0f:4d:8e:43:2a:3d:2b:98:1d:04:
67:0a:17:a3:97:6e:bf:08:83:ae:83:7d:e8:31:5b:
e2:e3:1b:1d:47:73:4e:63:21:38:22:7b:42:f9:b9:
c9:a1:81:38:cf:37:81:b7:09:84:68:6d:16:f4:7d:
6c:06:35:ed:06:2b:8b:f2:48:99:9a:00:18:40:99:
84:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B7:97:D2:23:8A:E9:C2:EE:4F:28:C2:8C:38:DF:85:49:5B:F4:99
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:3a:de:51:9e:76:aa:b5:9f:23:6d:92:db:52:46:a4:42:94:
fd:1c:d9:1e:46:aa:60:4a:9e:8b:70:58:da:42:05:3b:bf:5f:
f2:5b:a0:87:f0:fa:b5:fa:2c:47:a9:8d:52:09:04:3d:92:61:
71:3f:f4:d2:dd:71:6a:3c:da:55:6a:c8:41:67:78:df:52:51:
4a:d4:9a:70:78:59:e7:db:75:5f:9b:c7:a9:10:d3:cf:bc:df:
8a:28:3b:c4:26:59:66:49:a2:cd:d6:f7:b4:27:f8:f8:12:bd:
e5:b7:e9:0d:fc:70:41:5d:89:48:ef:14:47:52:16:04:6d:c7:
50:48:8f:b5:fa:64:b8:13:41:e6:90:59:20:74:4a:63:7e:f3:
21:af:b1:58:4c:f1:f1:18:ee:54:cd:72:b0:eb:31:bd:ba:cc:
41:53:16:3d:88:aa:a5:f9:82:9a:66:64:25:c9:00:a4:d5:3b:
18:0c:a5:76:b8:fb:a7:3e:5f:19:51:6e:bb:3a:77:09:30:dc:
b3:41:8d:81:b9:11:d5:e1:b1:fb:c1:4a:fd:67:71:38:e5:5a:
f5:3d:59:b1:12:07:da:f9:18:27:76:cb:82:f0:99:80:99:4f:
6a:9d:80:36:5c:7e:fa:59:45:c8:37:b9:f6:73:27:b9:6e:d7:
fa:24:6f:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTWbCWNZIWNmOBiI8JNVqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NDIyMTY4ZWRhODQyMzA1NGQ4MmViMDE4YzM4M2UyZGJl
OGFmZGYwHhcNMjYwMzI2MDQwMDU0WhcNMjYwMzI3MDQwMDU0WjAzMTEwLwYDVQQD
EygxMWI3OTdkMjIzOGFlOWMyZWU0ZjI4YzI4YzM4ZGY4NTQ5NWJmNDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsr741N0uYAHQbEEDaZUn6BuNW1/R
4geINhOAPchkX84GoQRIPhuTLB/S2cah0lyl9kyuQm+5DBKjPkUbNBULuhC8Rkbi
tWbzc+bmg2EJAd1F64fU15y5EU/wqzsX6dCQq5g7GxLhtupkA/DDrBs5Np3g7U4v
se/HDve/SVDSvHdez7CYeff6qi/3M6lot6hH4kuHvzsmvtrmLA4bMHEUaZj/8Lvb
+iPBYiGicbf7cET/z2YGx5iQLA9NjkMqPSuYHQRnChejl26/CIOug33oMVvi4xsd
R3NOYyE4IntC+bnJoYE4zzeBtwmEaG0W9H1sBjXtBiuL8kiZmgAYQJmEjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBG3l9IjiunC7k8owow434VJW/SZMB8GA1UdIwQY
MBaAFAhCIWjtqEIwVNgusBjDg+Lb6K/fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0VJaGFPMm9RakJVMkM2d0dNT0Q0dHZvcjk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS85NjBhMmItMzM3ZC00ZDAyLWJhODEt
NmUxOWY2NzlhNjIzLzEvQ0VJaGFPMm9RakJVMkM2d0dNT0Q0dHZvcjk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS85NjBhMmItMzM3ZC00ZDAyLWJhODEtNmUxOWY2NzlhNjIz
LzEvQ0VJaGFPMm9RakJVMkM2d0dNT0Q0dHZvcjk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPjreUZ52
qrWfI22S21JGpEKU/RzZHkaqYEqei3BY2kIFO79f8lugh/D6tfosR6mNUgkEPZJh
cT/00t1xajzaVWrIQWd431JRStSacHhZ59t1X5vHqRDTz7zfiig7xCZZZkmizdb3
tCf4+BK95bfpDfxwQV2JSO8UR1IWBG3HUEiPtfpkuBNB5pBZIHRKY37zIa+xWEzx
8RjuVM1ysOsxvbrMQVMWPYiqpfmCmmZkJckApNU7GAyldrj7pz5fGVFuuzp3CTDc
s0GNgbkR1eGx+8FK/WdxOOVa9T1ZsRIH2vkYJ3bLgvCZgJlPap2ANlx++llFyDe5
9nMnuW7X+iRvcw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:01:47 2026 by rpki-client