Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
File: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft (raw, json)
Hash identifier: KHRXiM6xEkeYXC1CpLjt6dUWzRjQLyDmrao0WorTcYA=
Subject key identifier: E2:52:44:3C:CE:20:63:3A:A6:96:0C:86:A5:6A:09:FD:F6:C4:D3:C5
Authority key identifier: 67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
Certificate issuer: /CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Certificate serial: 019D3752792E8E4DF68A5985ADD1BCCC84DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
Manifest number: 0F83
Signing time: Sun 29 Mar 2026 02:00:44 +0000
Manifest this update: Sun 29 Mar 2026 02:00:44 +0000
Manifest next update: Mon 30 Mar 2026 02:00:44 +0000
Files and hashes: 1: B2wOUgohqeye9MfPxQxtz9YTAls.roa (hash: 1bpwvIgjEWlAzlHrAhdbiAA3AdkV/y3b10LOBBviIzw=)
2: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl (hash: nBR3r9mKvNa/1og+GQv6hoS6LuukRuttmNcpGcPvFnc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:79:2e:8e:4d:f6:8a:59:85:ad:d1:bc:cc:84:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Validity
Not Before: Mar 29 02:00:44 2026 GMT
Not After : Mar 30 02:00:44 2026 GMT
Subject: CN=e252443cce20633aa6960c86a56a09fdf6c4d3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:66:42:51:1c:f6:c3:a7:52:1e:8e:8b:bf:34:
4e:80:4f:66:88:6c:c8:7f:bd:05:5d:cd:92:75:29:
b8:b9:b9:07:bd:e4:08:5d:a8:6f:87:77:22:5f:42:
d7:af:c9:03:50:a0:c7:d7:59:3a:0b:90:9f:b0:ec:
ae:29:b5:fb:11:3f:68:cb:3c:ba:ec:d9:00:2e:8a:
e4:fb:f6:82:d5:1e:e0:81:57:85:5f:68:94:fe:ff:
57:bf:34:13:57:b9:47:bc:08:74:65:56:c2:f2:98:
e1:e1:e4:b8:40:74:3f:eb:af:9d:36:42:eb:5a:ed:
12:c7:cf:86:c8:e2:98:ca:43:a0:22:7e:ba:9c:3d:
07:13:45:94:5a:2d:e0:f9:d0:f0:c5:cf:6f:3e:a4:
25:b4:d1:aa:e9:c7:ed:9f:0f:9f:46:11:87:61:af:
94:4c:6b:49:99:79:03:f9:c3:c8:88:52:0b:0f:1f:
06:88:32:59:cd:85:3a:60:c8:0f:a6:5a:b0:10:29:
4d:38:94:5a:45:20:ab:e8:07:61:31:38:e3:d0:ad:
9c:ef:71:7c:de:5c:60:0c:01:60:53:59:c2:36:b9:
c6:33:2d:5c:9d:0e:af:aa:01:88:5d:5e:af:cd:40:
c5:41:28:4b:77:af:52:03:83:36:f0:68:88:13:74:
a8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:52:44:3C:CE:20:63:3A:A6:96:0C:86:A5:6A:09:FD:F6:C4:D3:C5
X509v3 Authority Key Identifier:
keyid:67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:b4:1e:2b:6f:dc:04:38:86:ac:95:08:50:c6:7b:f3:d3:b7:
b4:42:91:71:86:48:9d:f5:2b:6f:ff:ae:fd:bf:bb:b7:b5:06:
f7:c1:16:e9:8c:92:74:a0:18:01:10:ec:91:66:4b:04:40:db:
42:cd:02:4e:34:6c:80:7b:54:b2:6c:db:72:96:8a:df:16:a5:
fa:12:9b:be:ce:52:ea:fb:33:b2:16:f8:9a:8c:9d:73:8c:20:
a5:36:6d:f5:13:29:da:57:fc:74:92:52:f9:47:c0:fd:c4:e2:
fa:19:00:aa:16:3c:24:c1:55:c3:9a:d4:60:7d:d1:5b:4c:fc:
55:f9:ea:bf:0b:44:b7:a3:c0:43:4b:8e:2f:53:3f:2f:83:75:
90:35:23:e7:d1:c7:b7:4e:c4:9c:c5:21:ff:b2:21:6a:8c:92:
a7:85:fa:fd:3b:6b:5a:56:51:cc:22:24:96:3e:3e:11:cd:a7:
ef:d9:f2:d0:88:3f:73:01:3b:13:04:2c:63:58:f5:30:c8:29:
15:0d:96:b3:9e:79:1c:4b:bc:25:b1:5e:15:2e:e3:02:6e:4e:
52:e5:aa:a8:b2:b6:1c:33:76:48:f0:70:77:46:b7:f8:4d:a1:
1c:c2:98:4c:da:33:60:36:69:6a:11:17:cb:50:5d:db:1b:fb:
73:2a:46:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:59 2026 by rpki-client