Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: TepSDfEH2PByBl30J/9SFsqua29V/WIuE0S/W2PyKiY=
Subject key identifier: E0:FB:E5:89:BA:3C:02:BD:42:6E:27:CE:33:3D:42:0B:07:89:30:86
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 019D39AEE34FED310F0F063F808579F5693F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 13:00:55 +0000
Manifest this update: Sun 29 Mar 2026 13:00:55 +0000
Manifest next update: Mon 30 Mar 2026 13:00:55 +0000
Files and hashes: 1: BVCNuyEI8Escb23UOBkojnAQ3uU.roa (hash: TpAVxATDxHC3mnDA/ZCfMM4mNI1Q7807T0lCqaxfnlA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: t6WobOXaV8ffFiYHkjW2F4jofrrKtpnvmP0dMJgoNyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:e3:4f:ed:31:0f:0f:06:3f:80:85:79:f5:69:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: Mar 29 13:00:55 2026 GMT
Not After : Mar 30 13:00:55 2026 GMT
Subject: CN=e0fbe589ba3c02bd426e27ce333d420b07893086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e9:4f:29:2a:f3:0f:f5:50:b5:92:e7:06:21:
c9:18:c4:f6:40:20:3f:2e:0d:e2:e6:68:06:26:39:
78:d8:7a:2a:95:58:92:a2:c6:f3:97:fa:2a:e2:a4:
16:96:1b:a9:dd:d4:d7:d8:2a:11:14:df:a9:8e:ca:
df:cb:ef:20:bd:06:f7:55:21:b8:d7:77:2f:c1:66:
c8:37:b8:58:bc:13:4e:60:2a:08:ed:dc:1e:64:b6:
35:84:3a:ba:d5:ec:05:0a:fa:9d:4f:c3:a7:55:9a:
b2:1a:35:7d:09:6e:12:17:7f:58:8f:1e:05:2c:f7:
1e:91:82:f3:02:1b:6e:df:78:4f:7b:2d:4a:71:2d:
38:44:ff:b5:e9:95:ac:fb:28:a6:2f:62:9b:d2:a5:
26:c0:d6:8d:4f:4d:41:2b:4c:54:11:bd:44:81:5d:
ca:44:32:ab:39:a0:dd:51:cc:fe:c1:54:12:84:ea:
5f:9e:7c:fe:6c:86:72:2e:bc:77:5a:3a:7b:e7:b1:
ca:61:a9:f9:50:ba:fc:ef:0c:fc:15:b4:47:07:2a:
de:03:f6:61:5c:78:f2:01:71:0a:b2:f5:76:45:db:
9e:48:7c:48:ca:80:14:fa:b3:99:7c:b1:1d:4e:eb:
bf:40:e8:af:3f:98:2a:60:88:bf:17:6a:44:c9:7f:
6b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:FB:E5:89:BA:3C:02:BD:42:6E:27:CE:33:3D:42:0B:07:89:30:86
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:d6:71:c0:3d:2f:18:3f:90:5e:ea:d4:65:ae:b6:6a:e1:e6:
ed:e9:7c:ac:ed:6f:c5:22:b1:4f:1c:de:0a:be:c6:0f:27:87:
c9:86:2b:48:94:59:d2:2f:eb:61:55:dc:16:5a:ee:36:b3:80:
b2:ca:37:61:8b:53:24:80:87:cf:dd:3a:d6:6d:e3:e4:dd:5d:
06:83:69:ca:5d:fc:37:8e:0b:03:ec:e0:0f:0a:6f:64:05:eb:
07:ea:a0:89:9a:76:41:95:44:f3:6c:0a:c0:2e:83:74:dc:75:
7b:c4:53:45:9a:45:72:ef:48:2e:a2:c0:28:d8:16:a7:0a:f3:
dd:66:8e:05:f1:fe:70:eb:df:c0:dc:f1:49:cc:77:54:9c:75:
4f:dc:7b:a4:db:f8:3b:fc:6e:7e:9d:fc:a3:ba:7e:8c:b0:1d:
f1:e4:c7:33:9d:53:23:62:82:58:df:e4:ca:2d:b9:77:06:ac:
7a:ca:28:83:10:1c:7c:33:b0:58:14:73:19:b7:77:1b:6e:2b:
47:c4:bc:d7:9f:ba:dc:cd:bf:10:2f:56:c4:f3:91:10:8d:30:
08:e6:7a:c7:c6:ba:1f:7e:a8:c7:b0:6f:03:43:47:d3:26:14:
f9:cd:57:40:7e:c9:f0:59:32:f6:f3:b5:19:6d:e1:a8:1e:04:
ca:ec:36:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:53:11 2026 by rpki-client