Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: AsoB35Uk/Faerg40e6yGXNdbo7fDsRuydAvmjq+UjZk=
Subject key identifier: 4E:31:72:CF:49:EB:74:C4:E9:A8:23:58:0A:69:EF:6D:A4:1F:DD:83
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 019EB5B294711E03C636A672863D9246D723
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 18E8
Signing time: Thu 11 Jun 2026 08:00:39 +0000
Manifest this update: Thu 11 Jun 2026 08:00:39 +0000
Manifest next update: Fri 12 Jun 2026 08:00:39 +0000
Files and hashes: 1: kJTuRCvouXJMaVDF0pdJUxYymkE.roa (hash: u4BkMutspCjtHl2p10ecFJYI7igX5XDffjXXKmzdde8=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: oJLuO5mg0HkYmqCHHhTLVdfizTW+Jk+ewLpBFlJjVOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:b2:94:71:1e:03:c6:36:a6:72:86:3d:92:46:d7:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Jun 11 08:00:39 2026 GMT
Not After : Jun 12 08:00:39 2026 GMT
Subject: CN=4e3172cf49eb74c4e9a823580a69ef6da41fdd83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ef:a4:55:7d:d7:74:ec:96:20:4d:71:b3:ee:
ac:c8:c1:4f:14:e1:e0:0f:c2:fc:e9:97:9f:6b:b5:
bb:cc:85:ae:f0:d7:f6:de:92:e0:52:05:7d:ed:ae:
f4:08:22:5e:4a:ab:1f:9c:75:d9:07:13:e7:eb:ba:
03:30:0c:1d:75:5a:a3:80:18:f6:d6:38:d9:87:a4:
de:26:68:0d:39:fe:f4:71:57:eb:cb:6a:54:47:e3:
29:fc:08:33:1d:cb:3b:6b:0b:5e:ed:5b:94:e8:df:
2f:48:c1:69:d8:a5:a7:7b:80:a3:8b:d6:fd:df:b7:
3b:82:7e:f4:0a:aa:f2:9d:e6:17:59:d2:f0:0f:61:
15:62:f6:f1:4c:75:07:68:f3:69:23:87:09:13:91:
29:e9:73:d3:f5:7f:54:62:5d:ec:d9:6b:66:4f:42:
54:31:04:71:f1:fe:2e:28:14:7c:31:68:2e:00:6f:
b3:c7:83:e4:38:85:c6:6c:f1:ce:de:7a:76:a2:e1:
c7:83:36:55:6c:a8:a9:84:5d:18:e2:e1:5c:e8:d8:
ba:a7:96:01:0e:6c:f0:b1:76:57:8f:52:e7:6e:31:
a9:71:59:99:66:ad:8b:23:0a:d7:52:68:7e:17:ca:
29:77:f5:d8:4f:80:58:61:5d:b4:ee:65:35:83:5e:
c6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:31:72:CF:49:EB:74:C4:E9:A8:23:58:0A:69:EF:6D:A4:1F:DD:83
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:04:cc:3e:17:3d:97:13:9e:f1:22:aa:c0:21:d6:88:ac:83:
4b:dc:15:2c:0b:9f:ce:3f:ec:c1:f4:85:da:c6:f1:50:d1:bd:
e1:f0:d5:2e:51:af:a5:a1:8c:6a:65:fb:29:bc:39:a5:9d:df:
83:92:e9:34:7c:08:81:72:b6:4a:1b:d9:25:47:05:94:f1:d1:
ca:68:c9:dc:10:0b:48:c0:15:81:1f:ec:ca:59:41:71:07:cc:
e9:fa:0d:af:eb:d7:39:4b:31:f9:c9:08:c6:1f:a8:a6:40:70:
59:64:1b:64:6d:a9:43:6f:dc:4c:91:c7:16:19:4c:88:81:07:
54:01:e0:b6:17:67:f6:67:38:b7:18:e1:ba:57:87:44:b9:34:
97:53:4b:51:51:c3:fa:1b:ad:0b:fb:b2:70:6e:02:79:29:fc:
f7:2e:25:cf:05:b4:a3:49:66:3f:47:e3:80:7e:9d:19:73:32:
e8:08:6b:89:a4:74:74:af:aa:ec:32:92:4a:b4:06:01:2d:61:
36:c7:4c:b9:63:2a:d2:72:b6:ff:57:56:ab:36:d7:31:4c:ac:
22:4e:3d:ca:f6:9d:66:84:52:ce:52:d7:19:89:8b:41:b6:9e:
a6:a5:52:90:e2:3c:8e:bd:d9:07:05:23:10:52:11:2d:5b:7d:
9b:c9:74:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 15:54:23 2026 by rpki-client