Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
File: ilZohaHW1VRFRs0oXYbE7_6qPCw.mft (raw, json)
Hash identifier: Fw+KOnu/Zf6C4+sBNySRlNpzcs248PNXZetGF1hcjBM=
Subject key identifier: BF:66:9E:A8:7E:F7:84:69:C9:95:9D:85:FF:64:32:36:4D:AB:8C:90
Authority key identifier: 8A:56:68:85:A1:D6:D5:54:45:46:CD:28:5D:86:C4:EF:FE:AA:3C:2C
Certificate issuer: /CN=8a566885a1d6d5544546cd285d86c4effeaa3c2c
Certificate serial: 019D38D39824601D1298E113751665F42C5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 09:01:24 +0000
Manifest this update: Sun 29 Mar 2026 09:01:24 +0000
Manifest next update: Mon 30 Mar 2026 09:01:24 +0000
Files and hashes: 1: OW0uslrg_GEgmEZG28eR9rKF34M.roa (hash: KrRJivtezUitThQ/Pah/fHB0G7rklcjBtZ4pZk0sSHc=)
2: ilZohaHW1VRFRs0oXYbE7_6qPCw.crl (hash: V96DfpayLY8WnQ69Jqu8BmX4jpx2aDingd1u/8gWIMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:98:24:60:1d:12:98:e1:13:75:16:65:f4:2c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a566885a1d6d5544546cd285d86c4effeaa3c2c
Validity
Not Before: Mar 29 09:01:24 2026 GMT
Not After : Mar 30 09:01:24 2026 GMT
Subject: CN=bf669ea87ef78469c9959d85ff6432364dab8c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:49:1e:f5:0b:2a:21:f3:2f:fd:2e:11:9a:a2:
e9:f8:98:bf:ef:db:5a:4b:ee:8e:d7:d9:91:46:6a:
c3:fc:2e:96:2c:e9:1d:2b:1c:60:c8:97:e6:b8:c6:
86:e1:3b:a3:b2:e7:da:0e:39:06:8e:63:57:a7:e6:
25:4d:dc:c5:e2:35:0e:c5:77:e1:55:c1:70:a7:e4:
ea:90:85:b0:e4:1a:b1:ab:db:f6:6f:83:1d:5a:15:
ee:aa:c7:0e:c4:20:4b:af:70:74:62:5a:a6:00:d6:
32:5a:10:15:45:14:f6:ec:ff:f5:71:bb:be:a3:83:
6b:a8:ce:69:09:c6:50:7d:ec:14:57:6f:32:ab:32:
37:08:57:e8:63:06:f7:d3:7a:8b:da:46:15:88:11:
dc:97:22:63:37:7a:86:e9:20:a5:71:34:c1:11:10:
08:90:1d:89:de:cc:d4:4d:b5:97:bb:e3:46:ad:f0:
61:79:a1:0a:8d:49:a0:c9:44:65:16:52:3f:0b:1b:
1f:1f:8a:c4:5c:c3:b3:99:63:4f:79:8b:74:43:90:
50:74:87:e7:f5:be:95:26:c5:e9:ce:b0:b7:41:e3:
d3:b4:ad:3b:73:9d:42:a6:ce:e0:9e:5a:e6:68:31:
6f:1a:4c:45:aa:87:9f:b9:73:3f:4b:46:c4:f9:45:
ce:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:66:9E:A8:7E:F7:84:69:C9:95:9D:85:FF:64:32:36:4D:AB:8C:90
X509v3 Authority Key Identifier:
keyid:8A:56:68:85:A1:D6:D5:54:45:46:CD:28:5D:86:C4:EF:FE:AA:3C:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:3b:89:6f:45:a5:c0:72:26:62:78:da:06:e8:bd:74:52:67:
98:da:fa:ad:74:40:77:f1:5b:10:8f:38:30:9f:57:4e:1b:09:
5d:90:0f:36:fe:da:e7:0b:ae:53:72:f4:a3:e2:b0:fa:19:67:
5d:0f:81:e9:c6:93:c2:7f:04:e4:e7:ae:d6:db:b1:a8:86:e8:
5c:df:19:db:bc:3a:51:5e:01:36:e1:69:20:4a:3e:69:12:2b:
3a:4a:45:1f:10:b3:c8:bc:fb:f9:ca:f7:1a:5f:cb:89:79:ac:
ec:b2:33:f1:0b:96:00:e9:22:31:a9:7d:ac:62:1f:ea:ae:f3:
28:c2:94:2a:82:c2:00:2e:37:07:9a:77:b2:2a:46:4e:de:0f:
a4:b3:6b:8a:6f:3f:49:cc:0b:0b:b7:b2:46:7d:44:3b:19:d4:
6d:a4:db:f4:22:0c:02:39:e8:1c:db:67:b9:f0:7f:ca:46:18:
e9:6a:8a:53:56:f9:f4:30:f0:df:3a:13:e9:c6:e4:a3:f3:34:
8c:26:da:28:e4:91:e9:8d:ce:20:a5:8c:f9:fd:a5:9c:a4:0c:
b4:6f:59:57:7a:0a:a0:4e:b4:0b:c8:a8:4e:a0:95:c8:f0:b0:
92:ab:6c:5a:50:f6:30:97:53:09:da:12:46:f2:15:c1:eb:a3:
47:6a:ef:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:57 2026 by rpki-client