Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
File: 2Znl1k5EsXM8YXNzN86CtKaUOkY.mft (raw, json)
Hash identifier: WFNyeQYnLY4zp5e2oBZewMmHJGkScvyffxh7ToPEcW4=
Subject key identifier: 64:F2:4D:4C:90:08:CA:D8:6C:D9:B5:4D:41:4F:3E:14:91:67:39:C7
Authority key identifier: D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
Certificate issuer: /CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Certificate serial: 019D390A0050FC9D75F8D2B9C0BAAA3D8DDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
Manifest number: 06CE
Signing time: Sun 29 Mar 2026 10:00:49 +0000
Manifest this update: Sun 29 Mar 2026 10:00:49 +0000
Manifest next update: Mon 30 Mar 2026 10:00:49 +0000
Files and hashes: 1: 2Znl1k5EsXM8YXNzN86CtKaUOkY.crl (hash: o4HRDl+SB2NxM0j8xONDes1mo7VYd3SGcqrIKOUwauo=)
2: ucSPBgYBUYo8QSuoI_Y0Icy9e18.roa (hash: HWPghkFxbvF44RC0pt0Q9i6IdWhnoDgfcFXVwwuNG8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:00:50:fc:9d:75:f8:d2:b9:c0:ba:aa:3d:8d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Validity
Not Before: Mar 29 10:00:49 2026 GMT
Not After : Mar 30 10:00:49 2026 GMT
Subject: CN=64f24d4c9008cad86cd9b54d414f3e14916739c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1d:8a:fb:54:a4:ef:a3:e6:9d:8f:2b:d1:d8:
5a:53:3b:44:eb:b7:2d:b3:fe:c7:1d:85:20:72:08:
98:a5:1f:29:aa:02:8b:57:62:e9:79:c6:93:98:7d:
cd:a4:9c:a8:3d:df:87:b3:b6:92:ed:8b:32:41:7e:
30:e8:0f:f7:7d:02:2b:08:d7:1d:7b:cb:31:7c:4b:
fd:9b:03:ca:c2:f3:cb:a5:ab:97:92:62:32:8b:b7:
95:69:85:57:a8:af:6b:a8:d6:8e:24:97:30:0c:c6:
22:3f:db:bf:07:39:37:b4:31:8f:e5:66:01:4a:d5:
dc:e0:d3:b8:2b:89:2f:de:45:46:75:3d:bd:f6:6d:
fc:70:8e:bb:86:7c:16:f4:cf:a3:4d:10:5c:d7:c2:
eb:bb:35:f0:03:38:2e:db:dd:29:dc:3e:99:43:2b:
10:02:8e:c9:d3:82:88:ad:e7:8e:2e:5f:38:21:6d:
29:dc:f6:6e:14:3b:ee:e8:e4:52:85:82:f6:f2:02:
07:e0:a5:20:d0:c9:34:94:03:fd:e4:16:16:8e:44:
bf:76:e1:46:cd:cb:40:26:72:05:cc:06:c6:7a:c9:
a9:e4:f1:f1:5c:23:b3:64:ed:d6:38:ac:a5:9a:d6:
e7:72:40:bf:13:99:b7:a0:62:e4:1f:17:a7:58:fb:
7a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F2:4D:4C:90:08:CA:D8:6C:D9:B5:4D:41:4F:3E:14:91:67:39:C7
X509v3 Authority Key Identifier:
keyid:D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:90:2a:dc:77:14:11:47:9c:4f:49:c2:77:53:2f:e5:5c:04:
6d:2b:a4:1a:6f:71:7a:2a:c3:b5:f0:85:f9:a8:4a:11:68:d7:
26:cc:4a:6a:47:ae:7a:31:ba:99:9a:02:5b:11:4d:08:1d:94:
88:de:38:70:de:c9:d3:6e:48:45:48:be:31:7b:54:6e:28:99:
3f:6f:b9:35:a5:6a:d3:98:37:32:7e:13:c8:bb:7d:8f:46:61:
a9:71:12:8e:23:13:99:de:90:88:6c:3b:3e:e5:5c:ff:21:56:
ae:be:bc:1e:b1:5c:94:78:66:3e:5d:c1:3b:5c:ad:37:19:c2:
e9:82:2e:46:aa:11:f2:04:7e:ce:6e:c5:03:72:27:2e:ca:18:
65:37:63:50:eb:8a:a3:43:ff:02:91:48:6d:b4:53:3e:cb:93:
26:91:67:bc:29:7b:58:d7:05:a4:00:70:3d:23:c1:c9:24:be:
04:bb:78:dd:f7:5b:5b:ff:f9:b9:56:dc:5f:33:65:e8:27:60:
cf:31:9f:4f:37:4a:5d:51:12:5b:f7:4b:3b:de:3c:b7:6f:32:
2a:25:2d:e8:fc:46:a7:91:dc:a5:bd:22:32:95:17:45:0f:90:
f0:bf:24:90:b6:b8:53:61:86:ec:6d:32:ad:0f:90:93:47:54:
f1:73:c8:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:12:11 2026 by rpki-client