Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: CV1mbKWwu6xQFc73PVZKY6kVmcyc0cpyi/rHXSxX3EE=
Subject key identifier: 94:8D:62:F6:C1:71:D1:10:5D:69:7D:87:27:31:9A:57:41:54:B0:FC
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 019E32CED7F49F5D9FADD0A7DE8AC3B74A9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 22:01:16 +0000
Manifest this update: Sat 16 May 2026 22:01:16 +0000
Manifest next update: Sun 17 May 2026 22:01:16 +0000
Files and hashes: 1: BVCNuyEI8Escb23UOBkojnAQ3uU.roa (hash: TpAVxATDxHC3mnDA/ZCfMM4mNI1Q7807T0lCqaxfnlA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: ae20ZrIpcvN2ubdI9vkcGLj0jssrht/wx2MZ1DYx9qk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:ce:d7:f4:9f:5d:9f:ad:d0:a7:de:8a:c3:b7:4a:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: May 16 22:01:16 2026 GMT
Not After : May 17 22:01:16 2026 GMT
Subject: CN=948d62f6c171d1105d697d8727319a574154b0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c0:7c:93:eb:90:34:f8:6f:15:73:08:45:bf:
cd:12:ac:af:c5:e6:65:cf:a1:6a:47:f5:b7:f4:23:
d9:c4:39:00:fe:55:03:32:51:e5:33:29:2d:11:e8:
7b:0e:78:a7:a1:e8:66:5a:7a:4f:cb:90:0f:6e:41:
40:96:57:41:a4:f9:af:01:41:2f:e0:f4:c1:90:54:
d5:03:4e:48:20:44:d4:c3:65:7e:92:e2:fb:95:87:
77:7d:a1:13:55:ff:c8:14:77:7a:7a:83:dc:c7:5f:
b5:d2:ae:21:57:f6:4e:57:a2:95:13:4b:3e:90:97:
a0:c9:38:82:9e:f9:77:14:1f:59:a0:4c:1e:de:53:
24:2c:1c:31:26:80:4c:57:6a:69:da:fe:bf:0b:04:
60:c6:1d:84:0b:3c:9d:2a:8c:bc:d2:05:68:5b:b6:
ea:bb:5b:c5:e2:45:d5:cc:09:be:61:c1:53:e8:df:
48:f1:ab:e2:00:44:ca:eb:f0:7c:95:ca:e3:44:d4:
5d:6c:55:08:e1:4f:26:03:bb:65:eb:4f:88:75:8c:
de:ae:cf:49:66:89:9e:8c:60:cb:dd:8c:7a:dc:50:
70:b2:f5:7b:3b:ab:d7:72:64:c1:0c:0b:ef:f4:30:
2e:b8:02:84:a5:f4:bf:5a:b6:70:d6:f3:5e:29:70:
c3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8D:62:F6:C1:71:D1:10:5D:69:7D:87:27:31:9A:57:41:54:B0:FC
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:b5:bd:55:c2:6f:f7:32:52:2a:d6:3b:8d:00:01:2d:d7:b5:
25:e8:5c:53:c4:00:3a:63:2c:c4:1e:03:86:bf:1e:da:05:d1:
62:2d:18:a1:45:11:cd:19:c1:c8:8f:bb:78:5d:65:39:06:a9:
e6:ae:aa:54:9b:e2:c3:24:36:1b:5b:bd:ea:14:8c:57:10:a3:
2d:45:94:ec:d1:ee:ba:d1:87:40:3a:ff:ca:b5:2b:c1:93:e4:
61:37:ea:26:ea:92:9d:28:e8:7b:d1:f4:80:8e:37:fa:13:19:
7d:99:1d:95:68:bb:7e:2c:ca:91:16:0d:01:25:22:c8:56:de:
d6:6b:1b:0d:6c:3f:ab:b5:0a:2e:15:7b:83:c7:5b:12:e5:65:
98:26:2a:84:2d:93:4c:56:db:7c:3c:be:e1:e2:20:42:fd:68:
56:56:d4:fa:8a:14:f0:77:7e:cd:41:8f:ba:8f:4a:3d:af:22:
b0:f1:68:82:eb:c3:7b:e3:93:f0:2c:7a:13:28:39:51:0d:8c:
b2:de:48:e0:7b:53:02:99:3b:ae:e9:21:b7:32:a5:e1:1d:1c:
05:07:bb:0e:ea:9a:17:6c:fd:15:35:1f:a8:10:9c:8f:38:06:
d9:1c:3b:b2:43:4c:f2:57:1f:f8:4c:5f:07:c5:0d:26:44:87:
eb:f6:d2:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 00:29:22 2026 by rpki-client