Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
File: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft (raw, json)
Hash identifier: I9IDMf+XK5u1GuQoTjo7OEKYbnV+Sput9vxbanO6xY4=
Subject key identifier: 87:65:4C:41:B2:CE:1C:46:D0:21:5B:33:F2:84:2A:3F:64:09:17:AE
Authority key identifier: CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0
Certificate issuer: /CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0
Certificate serial: 019EB7D7A7F583F9A661722600ACE8DF9F35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
Manifest number: 142B
Signing time: Thu 11 Jun 2026 18:00:24 +0000
Manifest this update: Thu 11 Jun 2026 18:00:24 +0000
Manifest next update: Fri 12 Jun 2026 18:00:24 +0000
Files and hashes: 1: kvrpde2NkZn_MY5z8yP0kUJPKB0.roa (hash: nyyXOBMDEJmgos3/uP4abipU5IsMQkBb228KURVxjm8=)
2: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl (hash: HFqFzU1qUBNRuYMmXSlHrcbTZ3x+stpg6jvcD1FEv8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:d7:a7:f5:83:f9:a6:61:72:26:00:ac:e8:df:9f:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0
Validity
Not Before: Jun 11 18:00:24 2026 GMT
Not After : Jun 12 18:00:24 2026 GMT
Subject: CN=87654c41b2ce1c46d0215b33f2842a3f640917ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:dc:44:77:34:c9:96:e4:39:52:28:e0:ec:b9:
de:06:c8:81:7b:09:ae:8f:35:74:84:30:f6:0e:fd:
b9:c1:75:ea:49:c2:8f:8d:40:be:c3:8d:1a:9b:a5:
60:fc:e3:8e:1d:04:d7:a1:5c:80:89:b4:d1:59:6a:
a0:f2:26:7a:5f:fa:8b:08:3e:ad:b1:46:3d:1d:bd:
c4:53:5c:10:19:2a:53:b3:ca:e0:c7:c4:77:00:c5:
80:26:4d:81:82:69:03:ff:72:19:39:51:b1:a4:73:
77:2b:30:a3:1b:33:ba:48:6c:b8:b3:ff:1a:cb:b5:
46:f0:bc:0e:da:27:b0:23:1c:1c:21:cd:e7:94:b3:
64:f9:5a:ff:af:1e:3b:47:6a:eb:c8:68:43:a3:81:
f5:3d:a9:ec:4f:22:4a:da:f4:51:f7:85:57:9a:c5:
f9:4c:9f:bc:29:87:f3:65:53:82:e1:04:19:a8:73:
31:7a:7c:23:66:14:c8:87:a0:fa:3f:b4:c2:f3:04:
2b:ca:02:89:55:cb:9b:e1:79:55:b5:75:c4:54:3e:
58:0f:3c:69:59:ce:5f:96:dc:59:70:37:09:2c:ce:
5d:f5:24:1c:50:c0:46:d5:5c:be:89:cd:01:18:6a:
b7:bb:21:8d:47:0a:1e:0b:ec:01:ec:84:fa:8b:66:
4c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:65:4C:41:B2:CE:1C:46:D0:21:5B:33:F2:84:2A:3F:64:09:17:AE
X509v3 Authority Key Identifier:
keyid:CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:d1:57:11:ae:51:13:6c:cd:0f:44:e6:ee:c5:84:41:05:51:
79:ae:c6:16:71:ff:23:fb:3e:44:17:7f:72:e7:23:e1:c2:18:
10:14:18:e3:06:55:b6:e8:4d:4e:80:9e:c6:47:96:9b:c6:75:
85:db:7f:14:0a:b9:d9:45:61:ca:55:ce:fa:66:63:bd:a0:fd:
a2:f5:88:d0:7a:82:23:6e:b3:4e:29:1e:21:a1:1e:26:94:f8:
f2:9e:6f:57:67:a7:b7:96:5e:b2:11:d3:ab:1a:e1:48:0a:31:
36:1a:69:e4:0b:9f:0f:4d:fa:fa:cd:6a:f0:50:65:bf:e9:c1:
87:79:d6:8e:93:2e:f5:62:1f:52:4a:05:4c:8e:52:1c:4b:35:
34:9a:a3:f2:20:3f:4e:c6:00:b4:af:04:0c:0a:26:3d:8b:72:
d3:c8:a5:08:31:b9:fe:76:3e:13:46:c6:8f:63:88:ff:95:b1:
bd:9a:39:99:07:cc:c4:73:50:06:c2:af:6c:eb:89:3e:bf:c8:
a0:d4:23:59:85:9e:85:0e:0a:95:f2:c3:fc:98:6f:7e:f0:c3:
60:d1:ed:9a:6e:f9:db:d8:5b:cd:cc:98:f9:a9:bc:91:1d:1e:
9a:00:1c:7e:49:29:59:ff:92:ea:f0:58:71:fa:bb:12:d7:ac:
97:b3:7d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:12:53 2026 by rpki-client