Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
File: ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft (raw, json)
Hash identifier: yQXkrKLY/gaiTs/nZtBMrX2tm3ZzA8d4ibK+/7Ym+U0=
Subject key identifier: BD:DC:7D:6A:B4:DD:F8:67:17:C3:B0:F3:B6:59:3F:34:38:C3:95:30
Authority key identifier: 66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
Certificate issuer: /CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Certificate serial: 019DCD86B994457D05A5557C272FD5BE8AF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
Manifest number: 0F2A
Signing time: Mon 27 Apr 2026 06:00:51 +0000
Manifest this update: Mon 27 Apr 2026 06:00:51 +0000
Manifest next update: Tue 28 Apr 2026 06:00:51 +0000
Files and hashes: 1: ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl (hash: z1JnCVp1uJs3nQCLI7mIa34ikXOTzaqYdnLTb8Ec0/U=)
2: lL_8oe9yDIiLRfrdt08QXqwSDgI.roa (hash: mGmiDsommMvkvURrhIoo2stvYxOoFvSbhP9bGr4bphU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:86:b9:94:45:7d:05:a5:55:7c:27:2f:d5:be:8a:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Validity
Not Before: Apr 27 06:00:51 2026 GMT
Not After : Apr 28 06:00:51 2026 GMT
Subject: CN=bddc7d6ab4ddf86717c3b0f3b6593f3438c39530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:07:65:30:28:58:ec:d7:8f:09:82:65:51:0e:
5c:40:99:13:52:37:41:65:10:7d:80:4b:ac:dd:85:
79:01:3c:22:e9:6d:00:70:4d:f3:33:33:a1:d6:3b:
95:97:d3:89:d4:41:6d:52:ce:e0:18:f5:4e:6d:e1:
ba:c4:ba:2e:0d:85:a9:e2:8a:58:9d:c2:1c:64:21:
eb:4d:63:61:d7:70:8f:b6:32:3b:69:40:8f:d1:e1:
46:7f:ec:b9:df:3c:b0:be:a7:6e:9b:6e:b9:40:ed:
6c:e3:a5:68:47:9e:88:2b:4d:b9:3b:39:0a:e0:e9:
2f:e4:7e:1c:1f:f0:e2:77:8b:79:c1:3b:eb:71:be:
2e:ee:cf:7a:f9:40:f7:40:40:96:cf:ec:88:39:13:
23:c6:94:1d:57:2b:5c:51:ad:8c:9a:7d:25:ab:6e:
6b:2e:e1:55:e4:3e:cd:45:52:48:17:5f:84:e8:99:
5e:e2:8f:12:89:ab:8b:a7:20:ec:04:60:39:e7:44:
cd:01:93:c0:be:1d:44:5f:6c:1a:12:0e:f5:fe:47:
5f:3a:a5:29:15:98:8a:9b:a7:32:8e:99:01:ed:c0:
33:a0:3d:df:f6:9a:15:87:3a:29:5b:64:cf:b4:bf:
f2:36:ae:20:5e:c6:d1:e6:32:08:8c:ff:42:bd:0b:
b3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:DC:7D:6A:B4:DD:F8:67:17:C3:B0:F3:B6:59:3F:34:38:C3:95:30
X509v3 Authority Key Identifier:
keyid:66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:00:b6:4a:a0:69:18:e9:61:b3:32:5d:ed:95:26:6c:79:cb:
99:3d:be:a3:a7:e7:3d:18:0b:9f:fd:dc:db:34:35:ba:fb:39:
24:32:14:8c:2e:70:bb:37:cf:74:b7:1d:3b:01:f0:ca:d4:31:
75:fc:f5:a8:ab:ab:cb:f7:11:7d:d3:72:50:af:d4:c5:17:f1:
9d:0b:b4:68:50:72:3d:6b:52:91:06:83:14:59:0b:06:01:4a:
54:c0:ad:ae:3c:66:d6:47:da:f8:8f:fa:7b:88:2e:5e:c3:c5:
29:ec:21:65:3c:85:dd:70:f2:21:ce:a8:f0:af:10:fa:ce:e8:
fc:b2:c6:a0:e9:51:20:c0:15:64:39:09:d3:39:b0:61:c6:6c:
82:45:38:4b:78:37:f1:ce:de:bf:29:ac:ac:f8:e7:6b:04:99:
06:65:87:0b:a6:b8:8a:0c:10:f2:3c:ca:58:6d:91:a5:8f:08:
c7:8e:3e:9b:33:c7:a4:2e:c3:85:98:3f:77:7b:bd:ce:33:7f:
8b:e1:26:9e:2c:7f:ee:d4:7e:14:5f:81:06:5e:ec:99:c8:cd:
f1:cc:9d:73:e1:3f:da:00:7e:7e:f4:f0:27:8f:ba:b0:c5:91:
3e:98:17:0d:fa:b9:31:f1:08:5c:35:b0:46:9f:b4:d9:85:fb:
7e:9b:1b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 10:45:38 2026 by rpki-client