Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft
File: ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft (raw, json)
Hash identifier: 3hpqREAqw+ISfN/0WPIYc10AgbEmMNDcHTKNXDs0MGY=
Subject key identifier: D8:A5:B1:94:91:23:76:9F:47:4F:6D:39:04:63:B0:14:A8:65:81:7C
Authority key identifier: 65:F8:52:CB:D1:CD:F2:44:A1:70:ED:AC:24:40:D0:D2:F4:BD:53:19
Certificate issuer: /CN=65f852cbd1cdf244a170edac2440d0d2f4bd5319
Certificate serial: 019EB5E9CE0BA08E0E90EEDC46C69EC5F75B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft
Manifest number: 87
Signing time: Thu 11 Jun 2026 09:00:59 +0000
Manifest this update: Thu 11 Jun 2026 09:00:59 +0000
Manifest next update: Fri 12 Jun 2026 09:00:59 +0000
Files and hashes: 1: ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.crl (hash: 22xvZwKZ2WkJ6Z804wT0mFuCtZ3m3SohuIkReoJt3fQ=)
2: fX47DA3aknJjMaNF3kpMk1RfVDY.roa (hash: QnbSVkKJ1tgtZD036KjNU81Gb7v/2YPgVvv50U+eDiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:e9:ce:0b:a0:8e:0e:90:ee:dc:46:c6:9e:c5:f7:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65f852cbd1cdf244a170edac2440d0d2f4bd5319
Validity
Not Before: Jun 11 09:00:59 2026 GMT
Not After : Jun 12 09:00:59 2026 GMT
Subject: CN=d8a5b1949123769f474f6d390463b014a865817c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:28:33:5c:72:c1:0c:60:0a:ef:18:f4:70:4c:
39:f5:7a:7b:78:6a:a3:41:b3:b4:65:1a:20:96:47:
0a:70:78:c1:36:35:16:fd:5d:14:83:20:ea:81:aa:
7b:9d:69:5e:8d:1c:87:47:3d:8b:29:be:4c:4a:e9:
a7:6b:33:91:68:c5:4f:4c:7c:7b:d0:45:22:87:ef:
01:9e:46:df:fc:ac:60:d4:d8:43:9e:7f:6b:91:47:
6e:d7:06:ac:3d:aa:7e:28:13:8a:10:42:a3:02:ef:
a3:dc:9b:ba:e9:55:d4:28:23:b5:e9:6e:8e:d1:60:
db:0a:51:e1:b5:12:d2:39:99:bc:68:39:01:6c:7a:
d1:3b:f9:77:f0:85:9b:2d:92:92:ab:1e:2a:0f:ca:
10:1d:50:31:90:6f:b4:ae:44:33:df:73:7e:c7:9d:
98:08:28:5b:02:5c:db:1d:a6:2b:82:77:27:3a:01:
77:eb:49:03:c5:84:1d:1d:ff:18:fd:02:ef:fb:c4:
74:7d:cf:e4:30:e7:99:31:46:26:29:4a:bd:0d:03:
24:40:98:33:27:bc:ce:40:22:4d:e0:97:29:e1:93:
c4:f2:bc:a0:ab:0d:92:72:84:1c:b9:a6:2f:55:91:
55:2f:f5:42:d0:e5:23:f6:7b:d0:90:28:8a:58:77:
d0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A5:B1:94:91:23:76:9F:47:4F:6D:39:04:63:B0:14:A8:65:81:7C
X509v3 Authority Key Identifier:
keyid:65:F8:52:CB:D1:CD:F2:44:A1:70:ED:AC:24:40:D0:D2:F4:BD:53:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:6f:6c:74:cf:79:1b:b7:6f:2e:82:09:c3:29:be:70:3d:88:
31:9a:ac:d4:00:ea:2b:8a:f9:d3:f2:f2:e1:c5:08:89:03:e1:
2a:2e:f8:9c:53:6b:ae:f4:ad:f2:45:87:f1:da:cf:56:b9:84:
5f:52:05:10:16:d1:02:d3:02:6e:e5:37:7c:8f:17:f9:ba:64:
3d:aa:bd:c4:a9:d5:1b:db:2c:06:be:57:5a:bd:92:09:64:6c:
54:fa:cf:15:c9:f1:2e:3a:01:a3:f7:88:31:4a:38:c2:c2:9a:
b4:3a:61:65:4a:8e:e3:5e:c4:a7:0c:07:cc:ac:1d:a6:f4:4a:
3e:00:9c:e7:25:22:83:9a:9a:a9:1f:82:c1:b3:ff:21:db:ee:
98:4e:4c:f1:4b:ab:21:4d:fe:e2:0d:57:6e:63:91:8b:64:b3:
17:43:f8:d5:21:95:f9:0e:09:80:0f:ad:4b:32:06:74:43:c4:
fa:36:5e:8d:da:b4:f2:66:41:13:38:f5:7e:b3:b8:ef:82:c5:
bd:9e:f5:1d:4e:5b:17:07:d0:08:a3:c6:10:ad:16:45:7c:f3:
88:05:0e:cc:36:25:65:13:1c:9e:36:69:af:f5:4a:01:35:07:
dd:1c:fb:ba:39:63:82:9c:19:40:69:94:a4:cb:b0:24:80:e5:
ae:7e:d4:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 18:56:02 2026 by rpki-client