Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
File: NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft (raw, json)
Hash identifier: upYsTf1sQN8ucKq3sLmWYjE8lXBbVDtFZy68jkE8zCo=
Subject key identifier: 59:70:C9:BF:6D:0E:6A:4F:34:13:91:73:8D:C2:5A:E4:76:31:D5:4F
Authority key identifier: 35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99
Certificate issuer: /CN=351652b838ff2d9672ac8ca66ba660dd4e45d699
Certificate serial: 019E8D5BE811333E31057FDE504A12876EE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
Manifest number: 0E24
Signing time: Wed 03 Jun 2026 12:01:11 +0000
Manifest this update: Wed 03 Jun 2026 12:01:11 +0000
Manifest next update: Thu 04 Jun 2026 12:01:11 +0000
Files and hashes: 1: 1p2ABoTmHppjIUEVK5pg2mIhNow.roa (hash: ECPu2qb2eGXD+sxXXw8nzOOHG8hI1ILJZKOoScd4Ul8=)
2: NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl (hash: EheidbynKNLBUDvZGt+qcIcjWkGYxilU4a2yB/ZsO+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 12:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8d:5b:e8:11:33:3e:31:05:7f:de:50:4a:12:87:6e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351652b838ff2d9672ac8ca66ba660dd4e45d699
Validity
Not Before: Jun 3 12:01:11 2026 GMT
Not After : Jun 4 12:01:11 2026 GMT
Subject: CN=5970c9bf6d0e6a4f341391738dc25ae47631d54f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:56:3a:0e:ba:4f:e9:57:b4:08:9f:92:f8:5c:
65:07:cb:5a:d8:07:90:53:a1:1d:ed:4b:49:a3:18:
24:a9:12:1f:4d:79:23:69:7c:85:f3:80:6c:94:e2:
05:bb:5a:38:a5:f8:17:ae:3d:4e:52:b9:52:eb:b3:
fb:e7:51:9a:71:f8:22:09:24:d0:02:9e:f3:c4:d8:
55:65:b4:47:6c:ce:3c:b3:09:81:b1:d4:6e:4c:7a:
86:7a:23:a3:f2:5d:67:02:ef:81:5d:91:77:20:c2:
eb:8f:ac:bd:b3:d5:e1:ad:d6:74:75:e2:2a:6f:85:
e0:c9:62:8a:f9:a9:f2:0b:60:26:4a:2b:f7:4d:3c:
f8:a7:25:51:a3:47:44:95:79:93:9a:57:33:68:3b:
65:5f:cf:b5:95:b3:2f:a1:f4:72:d3:9c:89:f5:fd:
f6:85:40:8a:0a:45:9b:80:fa:cc:69:24:0c:ab:73:
e5:6f:14:07:0b:92:88:78:71:b0:b9:25:8f:eb:97:
72:c5:93:a4:b6:d2:9a:71:c5:39:5e:7a:c3:56:0b:
78:f7:3e:a1:1b:36:83:42:37:a9:26:1c:42:d7:a4:
f0:71:c6:12:b3:28:b1:77:c7:20:b1:d8:52:54:01:
06:bc:46:4d:06:d1:0b:1a:85:2b:40:60:4f:f0:ac:
4a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:70:C9:BF:6D:0E:6A:4F:34:13:91:73:8D:C2:5A:E4:76:31:D5:4F
X509v3 Authority Key Identifier:
keyid:35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:96:be:3b:b5:04:ed:c6:7f:aa:29:da:28:c7:c0:f0:ef:b9:
3b:22:be:10:7f:0e:78:8c:0a:c9:77:94:b7:aa:2a:cd:9e:83:
c9:09:99:f2:56:18:86:54:00:bb:04:e9:73:98:21:42:04:48:
9b:19:37:b8:71:bf:ca:77:5a:c6:85:bd:da:09:06:21:0e:7b:
d8:8b:5c:ec:bf:35:fc:19:f5:36:40:cb:5b:e9:0d:96:14:22:
6a:9c:e2:1a:fb:d6:39:ba:64:e3:52:68:53:ad:94:31:20:21:
6a:0c:9e:d0:8d:ad:cf:8c:6a:c0:c1:49:65:fc:a7:de:1c:7c:
c8:a7:e2:b2:77:0d:7c:06:62:e9:58:31:b1:21:44:d5:f0:3e:
a3:e8:7f:68:ac:9f:fb:ae:c7:b9:7c:8a:17:74:80:4d:c7:05:
d9:3b:c4:e4:b4:aa:1c:8e:86:94:32:5c:fd:d6:23:24:99:19:
7c:29:c8:0b:6e:ce:c6:6e:b2:49:4f:58:f3:5b:41:43:0b:84:
58:ce:e2:a3:cd:a2:9f:70:ea:f4:77:22:59:a9:b2:93:f7:c9:
4d:b5:1e:cc:d6:ce:3f:fd:33:14:71:14:f8:98:ec:cc:c0:03:
43:eb:9e:a5:b3:eb:5b:10:35:8f:2c:1b:b8:88:d2:01:47:77:
b1:0b:ea:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 20:12:06 2026 by rpki-client