Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: 27WeEL7756KSlNGsEawnisefMKJH7OMHqXEFyyijPCk=
Subject key identifier: 2E:33:E9:72:20:4A:BD:E3:FF:34:0F:A5:9B:38:6D:3C:98:4A:15:E3
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 019EB98FDF459BE877AC5941E17DEF9C53A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 1958
Signing time: Fri 12 Jun 2026 02:01:14 +0000
Manifest this update: Fri 12 Jun 2026 02:01:14 +0000
Manifest next update: Sat 13 Jun 2026 02:01:14 +0000
Files and hashes: 1: _NSxXKWLAT32ACYjnb_Q_v0bth4.roa (hash: jFEG3V9iSls0XRVWy4kyBvsz0M23pnXIeMtJ7lA5i08=)
2: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: ED6D17uNgPRWjfjvEmGW6VjT8H5ykwl/tmeQIVG/8zQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 02:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:df:45:9b:e8:77:ac:59:41:e1:7d:ef:9c:53:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Jun 12 02:01:14 2026 GMT
Not After : Jun 13 02:01:14 2026 GMT
Subject: CN=2e33e972204abde3ff340fa59b386d3c984a15e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1b:2e:b4:24:45:c7:1a:e9:5a:e6:2e:93:9c:
0b:ac:3b:8a:c3:b8:17:5b:4f:33:3e:c9:c8:3c:44:
61:f8:c1:ed:49:ef:67:20:34:d5:59:6b:46:67:db:
3c:f5:5d:31:66:2e:cf:dd:d2:57:59:c4:7a:87:d5:
25:b3:22:89:9e:9b:bb:b5:84:27:0c:24:c5:38:86:
91:1f:4b:59:14:72:0b:82:b3:7d:a4:c4:72:6d:a5:
05:78:b6:9b:83:05:21:e7:da:07:c2:42:41:db:24:
93:c4:cf:89:51:3c:62:79:83:24:28:94:43:16:3b:
da:fd:d5:70:30:3a:53:66:6f:8c:53:8f:50:d1:f8:
c6:11:e8:7a:3e:64:eb:06:98:80:9b:70:0e:15:93:
52:ca:b0:58:64:e5:52:ae:e8:e5:fc:29:16:af:fe:
89:fb:e5:7e:07:64:56:24:d8:14:b1:57:5a:34:dd:
98:b0:e4:39:21:d5:6e:fc:9d:e7:42:db:d9:f6:9c:
16:7f:d3:a3:a2:ae:47:a6:4b:17:6a:be:f1:3e:b6:
f1:ed:b8:31:63:f3:48:99:80:26:b6:80:9a:bb:ff:
77:71:7e:c2:6a:32:b4:9f:56:8b:d2:d4:29:c4:56:
89:0a:ff:d9:c6:e9:82:4a:a8:74:68:c3:58:c7:c5:
11:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:33:E9:72:20:4A:BD:E3:FF:34:0F:A5:9B:38:6D:3C:98:4A:15:E3
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:92:01:31:50:56:1b:a1:6f:e5:47:92:9f:e5:b5:8e:3f:be:
ee:11:4a:92:5c:09:72:32:58:32:09:ec:aa:e9:d5:2b:26:6c:
6d:0f:f5:66:d2:68:52:9c:7e:7f:cb:28:e0:92:0a:10:a7:3b:
e2:a9:12:55:e1:ae:f0:f7:0f:60:c2:76:a2:01:31:4c:bd:e5:
0d:ec:15:11:f3:32:eb:9b:48:34:a4:20:0d:25:51:3c:4c:37:
b7:fe:51:db:53:12:97:60:26:07:05:58:66:b6:73:f4:81:27:
30:1b:58:61:8f:39:68:0a:09:de:63:17:81:66:e6:b1:e5:cc:
3e:9f:a0:9a:28:53:44:d1:87:ba:e2:c8:b6:cc:3c:65:88:7a:
37:36:0e:6a:e7:11:e9:eb:ab:71:f7:30:bf:e8:75:50:48:b7:
4c:9e:ca:19:31:22:7e:51:a8:e6:1f:79:b4:97:fe:17:a8:99:
3f:9f:78:93:01:c9:f6:74:9f:b4:c8:6c:76:15:ee:bb:20:a2:
7a:80:c8:a6:85:45:0f:e9:28:fb:2f:fc:b7:b4:97:ef:a5:42:
36:28:08:9a:fc:e5:5a:26:20:bc:2d:e1:12:8a:63:32:81:86:
28:14:85:a9:30:cb:be:1c:db:7c:a5:e9:69:97:57:1a:6a:ad:
61:cd:be:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 09:46:51 2026 by rpki-client