Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: pXfp6KAaEjldwRKLfxVfQAd8oSwVdS2R18VNscDhNZk=
Subject key identifier: 61:4F:1B:8B:E2:D2:BB:61:E8:ED:5C:4B:46:D3:98:FE:22:B3:BB:05
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019CE636885C6DC26E6374BAB91B803E3E8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 088E
Signing time: Fri 13 Mar 2026 08:00:59 +0000
Manifest this update: Fri 13 Mar 2026 08:00:59 +0000
Manifest next update: Sat 14 Mar 2026 08:00:59 +0000
Files and hashes: 1: QHXSRTuQ2wXN4fBaqbTGI2do0QM.roa (hash: 6/Lj3vL/L1J4PjbZ1lCMZ4grKgrWI3SnlcnhAkor32k=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: IgP0eM1eVHnp/iEPSON3DIR44MCx1p3TgGmOERvsJ3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:36:88:5c:6d:c2:6e:63:74:ba:b9:1b:80:3e:3e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Mar 13 08:00:59 2026 GMT
Not After : Mar 14 08:00:59 2026 GMT
Subject: CN=614f1b8be2d2bb61e8ed5c4b46d398fe22b3bb05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5d:0e:86:c3:6b:53:ab:bb:02:9d:0c:54:af:
6c:da:fa:b6:12:26:79:0b:3c:d5:ec:24:03:84:97:
d5:74:85:50:15:3e:a1:a2:58:d9:93:00:c4:e6:0b:
a4:f9:fa:14:65:fc:17:87:c7:57:c0:82:ef:e1:7c:
67:b2:da:69:06:8c:eb:cd:45:f3:2e:01:ae:44:b9:
62:c0:d6:de:26:63:71:fa:4f:ff:dc:ee:9d:f5:75:
df:5a:0e:dd:c1:0a:a1:48:71:d3:09:ff:02:52:17:
fc:9c:62:0f:99:22:61:d4:ff:b9:ba:66:b9:13:78:
f9:8a:d1:fe:58:45:6e:1e:4e:ef:3e:a5:e0:f5:f6:
3c:a4:60:43:78:36:a4:f2:05:a4:1e:a2:45:80:d0:
a4:c1:d7:9e:70:15:fe:01:1f:b3:31:09:58:0c:ab:
87:d4:fe:01:8a:0e:db:e7:dd:e0:39:aa:18:a1:3d:
06:f1:e9:ce:56:c8:a3:4e:76:d0:f5:bc:08:fe:fe:
10:55:e4:5b:00:6a:94:3b:84:62:14:ca:db:f3:93:
d5:63:d0:ad:ff:a9:db:7d:63:9d:b2:d5:49:86:06:
c4:b8:7d:22:51:4f:40:1f:74:2e:65:64:aa:18:ac:
53:3b:b4:25:4d:ac:e3:02:cb:d4:f8:36:7a:2a:b7:
f1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4F:1B:8B:E2:D2:BB:61:E8:ED:5C:4B:46:D3:98:FE:22:B3:BB:05
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:e9:23:c6:e0:6a:d3:fc:04:f3:5b:99:90:90:1f:69:7a:54:
ba:19:b9:2f:f5:7b:e7:76:9c:38:d6:62:23:8c:ee:a9:69:5c:
ea:11:7f:a2:b4:0c:3a:29:c6:9f:48:f9:88:77:86:46:9f:76:
96:e1:33:cd:f1:93:2d:43:b4:a0:27:14:ea:67:a0:58:e2:9e:
ac:b1:c8:2f:92:9c:b9:61:bc:51:50:11:e9:10:54:d5:27:5f:
bc:07:3f:06:78:01:8b:a4:6b:3b:b8:fb:30:21:e4:90:ad:a8:
1d:22:a3:cf:48:20:85:e2:8d:04:89:f5:ac:9d:03:5d:d0:11:
c8:d3:9e:ec:b8:24:b2:e4:b1:d8:03:34:68:67:41:8c:b3:50:
fd:ca:1d:c2:60:ec:46:14:6d:f5:46:c8:9f:18:a3:33:74:36:
43:8d:fc:64:ec:37:52:c8:1e:d8:27:bb:65:2c:3a:0a:f9:e9:
9e:3c:71:e5:6a:2b:f0:56:10:85:16:0e:6f:bf:85:ed:c6:d1:
18:46:38:05:2d:fe:f9:79:d1:dd:c0:21:50:a5:92:16:30:7c:
51:07:e5:57:ee:b3:41:77:1e:c5:86:c4:36:2a:d6:f2:73:96:
e9:5f:77:15:a8:17:ed:74:0d:db:c6:f6:36:d8:f2:fc:eb:ae:
5a:26:60:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 12:01:03 2026 by rpki-client