Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft
File: ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft (raw, json)
Hash identifier: bcReqLYQdq3JfS0EmX8/jj/Ac9K+gsUQgAa6/ZILNto=
Subject key identifier: B5:B9:FF:1D:73:77:B8:8B:EB:5B:F6:0D:AB:FA:6A:61:0F:91:A4:37
Authority key identifier: 65:F8:52:CB:D1:CD:F2:44:A1:70:ED:AC:24:40:D0:D2:F4:BD:53:19
Certificate issuer: /CN=65f852cbd1cdf244a170edac2440d0d2f4bd5319
Certificate serial: 019DCC3D84281191720675A7814F599DD015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft
Manifest number: 0E
Signing time: Mon 27 Apr 2026 00:01:16 +0000
Manifest this update: Mon 27 Apr 2026 00:01:16 +0000
Manifest next update: Tue 28 Apr 2026 00:01:16 +0000
Files and hashes: 1: ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.crl (hash: IJeOLRaYBwQNIQ/pq+efgcsMe8ygxIjFJDjshzEUOTY=)
2: fX47DA3aknJjMaNF3kpMk1RfVDY.roa (hash: QnbSVkKJ1tgtZD036KjNU81Gb7v/2YPgVvv50U+eDiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:3d:84:28:11:91:72:06:75:a7:81:4f:59:9d:d0:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65f852cbd1cdf244a170edac2440d0d2f4bd5319
Validity
Not Before: Apr 27 00:01:16 2026 GMT
Not After : Apr 28 00:01:16 2026 GMT
Subject: CN=b5b9ff1d7377b88beb5bf60dabfa6a610f91a437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:42:5f:94:42:61:55:1d:9e:a0:50:3b:2e:5a:
25:f1:80:09:24:8c:01:a1:59:79:37:f0:dc:60:d8:
1f:b0:d6:bc:43:94:0a:25:72:87:71:e6:98:dc:a5:
ea:26:2b:c3:f0:b5:16:f6:f0:ba:78:43:98:7a:f1:
a6:b8:13:27:45:37:d2:2c:13:ce:a4:41:cc:24:30:
00:68:96:95:03:31:d3:6d:6b:38:b7:5f:01:a8:cc:
82:30:52:1a:a0:af:55:a4:21:c4:73:5e:d1:7c:b9:
0a:40:35:0f:87:e9:6a:e0:eb:31:78:28:43:36:52:
b5:db:de:ad:06:84:e7:16:5b:e9:2b:9c:77:18:4c:
4c:7b:0e:4e:28:bb:62:82:f8:29:c1:e2:a1:dd:3b:
aa:ad:08:bb:38:5d:b9:9e:93:9c:80:3a:64:a7:30:
34:6f:e4:c2:48:03:b4:0b:df:ed:6d:bb:b8:23:08:
bb:82:70:0d:39:3e:fa:ce:f8:d5:17:b9:9d:17:e7:
bd:5f:6f:f0:d3:2e:f6:b3:16:ff:f6:db:f8:8d:bb:
2b:98:47:da:eb:ea:d7:d5:df:4f:42:a4:b2:b3:bc:
4b:21:6d:c5:76:20:c5:fb:6c:4b:53:50:a6:0c:41:
5a:96:ee:15:85:03:73:30:4d:3d:cb:a7:09:60:0c:
68:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B9:FF:1D:73:77:B8:8B:EB:5B:F6:0D:AB:FA:6A:61:0F:91:A4:37
X509v3 Authority Key Identifier:
keyid:65:F8:52:CB:D1:CD:F2:44:A1:70:ED:AC:24:40:D0:D2:F4:BD:53:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/194e97-e5db-4a6a-afb5-552e210354f4/1/ZfhSy9HN8kShcO2sJEDQ0vS9Uxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:7b:8d:8a:51:9e:37:61:91:cc:f3:a5:34:72:85:f5:1c:82:
59:22:4d:6f:53:3f:76:50:3a:2b:2c:6e:a6:da:bd:2d:10:9b:
48:90:87:f6:3d:90:1d:89:75:50:a0:a4:0d:f7:34:9f:c0:9d:
15:51:ad:42:26:52:dd:0c:cd:71:23:d3:fb:e1:5a:cc:47:d4:
38:76:1b:5c:7a:be:d7:7d:27:ea:f7:45:71:3f:28:fe:01:35:
cf:c6:84:d7:bd:d9:4e:f7:6d:42:be:cc:71:c4:3f:d7:d5:d7:
bd:ba:52:49:05:d5:c9:49:02:b0:af:99:ce:52:b4:7e:c2:82:
dc:e8:b7:c7:26:65:01:39:54:2f:34:cf:8b:6f:62:89:14:90:
87:1e:65:8b:06:a0:18:54:33:c4:1a:a9:de:7d:af:9b:48:4d:
7d:36:ce:71:19:3b:98:06:cc:0e:d4:83:ce:5d:84:6c:36:73:
5b:d8:cd:7b:f1:c5:3c:67:31:45:65:ed:7c:5d:d1:c3:3c:e2:
2b:98:f8:63:61:8a:2b:3b:28:50:e0:da:66:3a:d1:74:bb:fd:
03:b7:7d:38:87:62:22:a3:cd:ee:d3:9b:73:54:84:ba:92:c8:
5e:63:51:f8:45:31:4b:16:bc:7a:20:4c:b5:30:eb:7e:f5:d7:
e6:0a:9d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 04:23:37 2026 by rpki-client