Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
File: ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft (raw, json)
Hash identifier: WAuryD9xkm5Woyg3hY/1uB2KzYYfWfVrbvWQcnIdwRM=
Subject key identifier: B2:F4:62:52:A8:36:DB:72:86:E8:C1:E8:FB:D9:57:8C:7A:66:3F:8A
Authority key identifier: 66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
Certificate issuer: /CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Certificate serial: 019EB733368134F38FA49351D35AD457E431
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
Manifest number: 0FA3
Signing time: Thu 11 Jun 2026 15:00:47 +0000
Manifest this update: Thu 11 Jun 2026 15:00:47 +0000
Manifest next update: Fri 12 Jun 2026 15:00:47 +0000
Files and hashes: 1: ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl (hash: 34ttsr0/XpX62GuEdXDpXNKFEIeOqNWkAbYg3LI/gjI=)
2: lL_8oe9yDIiLRfrdt08QXqwSDgI.roa (hash: mGmiDsommMvkvURrhIoo2stvYxOoFvSbhP9bGr4bphU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 15:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:36:81:34:f3:8f:a4:93:51:d3:5a:d4:57:e4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Validity
Not Before: Jun 11 15:00:47 2026 GMT
Not After : Jun 12 15:00:47 2026 GMT
Subject: CN=b2f46252a836db7286e8c1e8fbd9578c7a663f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:38:7a:8b:87:ef:aa:5e:3a:2d:61:36:02:7b:
ed:91:d4:be:7c:28:67:76:8f:80:f8:48:c3:74:3b:
c4:e6:f6:fd:b5:b8:d1:b1:82:d2:f2:cc:f7:94:4f:
02:0e:ac:f9:a1:5b:6e:4b:48:60:3e:2f:97:bb:14:
b9:94:29:12:58:5f:a7:2d:2c:14:98:76:a3:0f:49:
e0:ff:c9:60:48:88:a0:28:2a:47:af:c7:d1:3f:4d:
82:ac:b1:02:b8:57:dc:a5:8b:97:8c:31:5c:a9:24:
69:e4:30:a8:39:73:51:f0:cb:51:32:23:48:3a:3a:
58:1c:83:c5:79:71:c3:bf:bf:35:ee:e3:a2:09:67:
58:78:22:21:c7:ef:b3:c2:2e:1f:9e:28:a1:36:09:
20:3a:7e:7f:35:10:6a:2a:5a:c7:99:bc:5a:e4:bf:
91:7b:56:1b:9e:91:71:e7:aa:e6:75:42:29:96:1b:
bf:99:34:89:9d:22:37:43:91:37:ac:85:d1:c6:7f:
0e:78:e0:dd:7c:6c:9f:e6:3b:47:5a:36:30:49:e8:
ab:8c:f5:66:92:ba:1a:46:6f:b2:40:f3:a1:89:b8:
8d:87:3c:31:8a:7d:9e:18:4f:62:28:03:81:5f:b1:
c3:74:6f:87:75:45:b7:17:ac:6d:e9:c2:c6:a0:bf:
fe:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F4:62:52:A8:36:DB:72:86:E8:C1:E8:FB:D9:57:8C:7A:66:3F:8A
X509v3 Authority Key Identifier:
keyid:66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:c1:d6:5b:b5:7d:03:74:51:82:13:c8:46:88:76:8b:f7:23:
1b:29:49:4b:69:37:af:61:28:6e:4e:3e:9d:89:c1:15:cd:c4:
4c:3a:94:ae:ad:d4:9a:dd:09:f4:1f:24:7a:64:6e:cc:c4:55:
6d:55:49:a9:f8:21:15:d7:19:38:bf:44:a4:44:fb:3b:0d:b2:
5b:00:ee:55:91:4a:88:61:f8:1b:5d:35:ea:63:bc:2a:76:7e:
9d:24:48:7e:d5:4e:57:d2:cb:d3:b0:11:22:0b:cf:cd:ea:ef:
a4:3c:98:34:0b:79:4f:ea:45:50:d2:2a:5c:65:6a:71:3c:ee:
05:f2:56:43:88:c9:30:9c:7c:df:d9:74:7c:2d:6a:9b:57:c0:
9e:1c:1c:af:b6:f8:e9:d9:6a:d8:04:9e:cb:be:7b:ec:02:a7:
e8:40:37:13:b5:4e:a6:54:aa:37:59:e7:b6:87:9d:29:c6:05:
f5:40:58:83:b3:c1:06:88:f3:81:e2:07:af:6e:81:e9:ac:05:
b3:d4:ba:50:31:1a:07:16:cd:6e:1c:b7:d6:59:4f:e8:ff:26:
cb:77:cd:54:94:04:d7:7b:17:be:8b:8b:ac:30:30:28:a1:1a:
3a:86:ba:b1:4a:d9:d2:be:57:e3:f4:4b:0d:3a:64:e6:66:f0:
3f:5b:d2:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:56:02 2026 by rpki-client