Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
File: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft (raw, json)
Hash identifier: LvOgEh1NzO+UyDWpGxI12HV9zABsGZu/DG+Y/ePNihM=
Subject key identifier: CB:BC:B5:9B:B7:66:EF:44:54:3D:AA:B2:92:B4:93:29:46:95:59:67
Authority key identifier: 64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
Certificate issuer: /CN=64aec8024caa103a8412696c7e72f77803cd8695
Certificate serial: 019EB620515C1DA6F287DA7A9B59E5362577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
Manifest number: 1395
Signing time: Thu 11 Jun 2026 10:00:31 +0000
Manifest this update: Thu 11 Jun 2026 10:00:31 +0000
Manifest next update: Fri 12 Jun 2026 10:00:31 +0000
Files and hashes: 1: SWC8q5CH8zumHrflzVp4e7i8dGY.roa (hash: z98d01QAmvPs9qVeEUxQJcsgJEzGZb8FADftU7i+UZw=)
2: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl (hash: +kD+R2WwIJs5x56hvsQTT0ZMWldU4GnxDx8dPYV8Mdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:20:51:5c:1d:a6:f2:87:da:7a:9b:59:e5:36:25:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64aec8024caa103a8412696c7e72f77803cd8695
Validity
Not Before: Jun 11 10:00:31 2026 GMT
Not After : Jun 12 10:00:31 2026 GMT
Subject: CN=cbbcb59bb766ef44543daab292b4932946955967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4c:96:03:52:79:41:da:b9:fd:e8:26:e9:a6:
ed:66:2e:75:da:65:1f:eb:f1:58:c9:07:ad:2e:1e:
11:45:d8:62:a9:ac:a4:67:1a:81:7d:6f:23:4b:f5:
6d:d4:87:d8:2d:45:ab:e2:86:3e:c8:21:2d:ce:5b:
92:86:ca:43:01:ba:45:1c:61:c6:62:32:97:af:37:
4b:ad:38:f6:cc:9c:7c:61:c4:46:d5:fb:6f:0e:9e:
a5:b0:a0:60:a9:3e:9e:3f:c1:89:16:22:c9:e5:f0:
73:cf:61:1c:9f:17:71:3d:3f:c6:6e:e2:67:e0:56:
4e:55:9e:c2:8a:d5:15:e2:87:d8:75:4d:59:32:b3:
62:41:02:2a:7b:d9:8a:fd:27:96:45:7f:fd:12:06:
8d:2e:ed:23:c3:fe:dc:5f:37:0a:d5:2c:84:0c:c2:
3b:a3:01:7a:37:d4:57:10:8c:af:20:48:aa:c0:7d:
a3:59:40:92:bf:b9:b9:c2:f1:b9:3e:5c:00:1c:33:
b8:2c:91:7c:44:7a:19:6c:5e:e0:d2:05:e9:9a:71:
26:b9:1e:e2:85:ee:e8:d7:77:4f:49:99:e1:f9:f4:
a5:8e:c3:d6:e3:9f:f6:d6:f1:ed:74:fc:06:ea:d7:
48:0f:a8:cd:8a:13:0a:75:d7:ff:14:0a:61:4c:6b:
fd:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BC:B5:9B:B7:66:EF:44:54:3D:AA:B2:92:B4:93:29:46:95:59:67
X509v3 Authority Key Identifier:
keyid:64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:5a:da:17:2b:fa:80:ce:56:1a:ae:4e:cf:f8:db:ec:50:3c:
2b:92:27:78:f4:87:50:03:16:20:1f:98:18:07:50:72:83:da:
10:5a:22:1a:71:37:31:55:16:3b:2a:d6:97:20:42:e4:21:c9:
f0:00:24:e2:5d:80:7a:fc:15:8d:9f:5d:9e:a8:a9:a6:ef:c8:
2d:35:c8:99:27:00:3f:56:42:17:90:b3:64:1b:95:c9:42:41:
fa:d7:20:b1:e9:ab:3e:b0:6c:d7:aa:ac:5f:d5:b8:2b:55:df:
95:5a:cc:05:d3:6c:81:70:f8:5c:b4:f6:2c:1f:4a:c7:87:46:
3a:38:a2:3f:6b:5e:52:79:0a:34:ba:4a:5b:9e:fe:c6:db:ad:
8e:4d:2f:0f:36:ef:86:85:12:c7:ac:50:78:3e:2c:32:ba:ef:
fd:cb:e5:af:1a:1d:bc:12:d5:48:0b:0e:7d:03:52:2e:e8:6d:
17:f0:ed:16:05:19:e2:ef:f3:07:79:cd:77:5d:13:9e:37:51:
4c:d9:d8:71:d6:16:0e:80:2d:d8:d1:17:8d:10:21:97:4e:52:
54:7a:18:4b:45:9c:85:ec:13:54:af:28:9e:bc:6c:4b:01:59:
a4:46:88:c2:cd:31:06:cb:6f:18:3a:55:66:a0:d5:b5:a5:78:
5b:73:6e:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:52:18 2026 by rpki-client