Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
File: ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft (raw, json)
Hash identifier: PZLhS2KZsF4SS/1eIqKehdueT9kCJuOu8fKwsvZZ3dU=
Subject key identifier: BB:8E:34:E6:16:FA:63:BA:D6:D7:0B:81:6F:48:73:E7:36:14:1C:47
Authority key identifier: 66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A
Certificate issuer: /CN=66a1d1a017802e5c57da5978544fc537403da73a
Certificate serial: 019E91701759D56BB251F5A4EFADD343C32B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
Manifest number: 0C5A
Signing time: Thu 04 Jun 2026 07:01:42 +0000
Manifest this update: Thu 04 Jun 2026 07:01:42 +0000
Manifest next update: Fri 05 Jun 2026 07:01:42 +0000
Files and hashes: 1: 3YnZtmegxXoZvb9K7_HalTViL0w.roa (hash: B1b4mNLvcXEYUbcOc3EYX+Xry/YHoo7ZiUdGbEg4AFc=)
2: ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl (hash: TNI260GP1pKs3EqPd21vB3pL7mT37rpXH9l7vwNFhRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:91:70:17:59:d5:6b:b2:51:f5:a4:ef:ad:d3:43:c3:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66a1d1a017802e5c57da5978544fc537403da73a
Validity
Not Before: Jun 4 07:01:42 2026 GMT
Not After : Jun 5 07:01:42 2026 GMT
Subject: CN=bb8e34e616fa63bad6d70b816f4873e736141c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8d:7b:eb:58:7d:13:ee:f7:1b:d6:23:12:ba:
54:eb:b0:d2:0c:c3:60:70:6b:70:5c:46:27:02:f1:
aa:34:80:8d:67:7e:cf:78:b8:41:23:ed:14:84:ab:
97:f6:95:0e:5e:d4:b9:08:5e:86:31:b8:04:f5:e7:
22:54:1c:ea:51:d1:8a:83:50:68:b4:c8:9f:bc:66:
52:02:95:c6:a7:4e:8a:cb:2e:7f:a8:c4:f5:07:3d:
ee:51:ae:50:f7:1f:4b:51:c7:bb:98:a8:f9:b1:e6:
3f:38:f0:28:6a:e4:d7:7c:38:1d:5e:cc:da:a5:8f:
39:a5:3c:5d:a3:55:0a:97:1e:6a:fa:31:9a:6b:81:
1e:52:7a:2d:b5:54:01:b4:b2:1f:f1:06:cd:d2:f3:
f5:06:a5:30:03:c8:2d:db:5c:ec:c7:69:f1:cd:9e:
d6:d2:f5:06:f0:40:7b:0e:62:29:97:c9:c3:b7:b7:
05:67:0c:f8:58:af:29:e8:3e:02:3a:74:ce:3e:38:
24:21:bd:1e:f3:95:9b:d7:a1:92:78:04:ad:f4:2c:
35:0c:fd:83:69:40:b8:3f:54:de:dd:ed:52:fc:fe:
9a:d9:c9:2a:d4:4f:00:e1:6b:cb:18:c0:08:32:20:
1b:6e:42:f7:2e:f6:c6:af:cd:c0:3c:f1:65:40:8c:
8c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:8E:34:E6:16:FA:63:BA:D6:D7:0B:81:6F:48:73:E7:36:14:1C:47
X509v3 Authority Key Identifier:
keyid:66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:6c:a5:33:79:7e:fb:92:c3:fa:08:ad:8c:8f:d3:ae:fd:4c:
ad:5e:af:44:5a:0c:20:f7:f5:d1:af:62:7f:64:1a:04:04:02:
84:7c:76:c1:4e:8f:80:90:6e:9b:6a:b1:c0:6d:83:ad:26:fb:
76:63:f0:4e:4a:80:ac:04:25:00:bb:63:a6:bf:e3:db:7c:17:
ba:04:ea:33:0a:2c:97:3c:07:89:0a:9f:9b:42:b8:43:b1:df:
0f:68:0e:d3:15:0e:58:bc:36:d0:1f:3d:ed:1d:f9:83:6a:40:
d3:3f:f6:b9:ad:22:a2:87:67:cf:67:0d:41:2b:7b:39:29:64:
25:38:a7:9c:9d:c4:01:37:c3:20:6f:26:52:22:9a:c5:8c:4d:
75:51:45:e6:01:17:d7:0f:74:66:45:41:80:66:cc:2c:60:c8:
10:e5:9b:b9:99:ae:8d:80:5a:d0:fe:b8:d1:90:cb:3b:94:40:
ab:c2:22:65:94:48:95:3f:be:48:09:62:56:d7:70:22:6d:b9:
be:29:88:d9:43:ec:c6:9c:fb:70:69:25:d6:a1:23:7b:b2:3b:
88:dc:3b:2e:fe:25:88:da:b4:9e:be:49:d0:3d:87:e9:46:4c:
b6:79:58:ee:ac:ea:e4:95:99:d1:12:99:31:dc:b8:2a:de:cd:
48:f0:7b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 12:24:50 2026 by rpki-client