Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: f2SR5mGYzmUQbHYiOSz8vb0cl4jSqBMSoq+gFaCn8zw=
Subject key identifier: 72:F0:83:A5:8E:B5:29:DC:89:DF:2E:05:18:9A:F2:28:35:FA:7A:6B
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 019EB84611B832EF2A5FA04D96804D4A7064
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 087E
Signing time: Thu 11 Jun 2026 20:00:59 +0000
Manifest this update: Thu 11 Jun 2026 20:00:59 +0000
Manifest next update: Fri 12 Jun 2026 20:00:59 +0000
Files and hashes: 1: jv18kUzHEBlDlkIHJKkxODrKqc0.roa (hash: wdFZODPpunDdGOXTc+SSGtgRA0zL9y523IFxS0/YWn0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: 2/+k+LIJjL2ZbojC90ujNo+Gn4GjXRiqBVGL1S7d158=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:46:11:b8:32:ef:2a:5f:a0:4d:96:80:4d:4a:70:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Jun 11 20:00:59 2026 GMT
Not After : Jun 12 20:00:59 2026 GMT
Subject: CN=72f083a58eb529dc89df2e05189af22835fa7a6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:67:13:45:37:2a:08:40:5b:9b:23:c2:36:a4:
53:bf:7f:c4:17:c4:3c:13:df:21:fd:3a:85:e8:38:
7d:8b:99:9e:32:2b:21:d4:ec:98:80:4f:ae:a2:1a:
14:88:5a:a4:5c:b8:ea:54:64:35:11:cf:8d:70:85:
70:d8:5b:7e:1a:60:49:0b:dc:a4:1d:4b:70:ad:65:
01:a7:e6:d5:cf:5b:d0:fb:bb:2d:d5:64:8f:fe:73:
c1:3e:e2:23:14:4f:96:4f:df:05:d7:2d:53:29:ef:
d9:40:bf:ed:8c:35:a5:c3:2b:56:36:60:d7:9b:d1:
16:14:00:bd:68:10:12:f2:8f:ae:30:18:16:e0:b3:
0f:af:83:eb:b9:65:09:a2:ad:96:da:2d:27:3c:7e:
5d:89:b4:b7:91:23:83:2a:81:c8:f2:8a:f8:82:ff:
fd:d9:82:4c:cd:17:46:be:c3:e2:3f:df:fa:e2:54:
c0:85:ca:ed:8c:35:a0:1c:8a:dd:4c:ee:61:93:e0:
14:b5:5c:e2:69:ab:66:7b:c3:cf:1a:36:cb:34:ae:
d1:0b:c1:ec:73:2c:09:a2:b3:1b:73:fe:0a:8a:31:
7e:51:d7:f3:cc:ce:f6:f1:42:9b:2d:d9:94:e9:f4:
ee:c2:d9:4b:76:ac:9d:23:b3:af:b9:af:80:cb:a3:
af:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:F0:83:A5:8E:B5:29:DC:89:DF:2E:05:18:9A:F2:28:35:FA:7A:6B
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:f9:0d:aa:23:d4:dd:00:d9:82:d5:72:81:a9:0a:86:a9:4f:
8e:8f:4c:33:ef:fa:ff:bc:7d:2b:c6:78:0e:6d:c0:ba:68:ac:
0e:30:28:b7:87:23:15:c3:1c:1d:21:13:9b:09:77:18:cd:5a:
b9:5b:8d:78:c4:04:4c:27:a7:0f:ed:fd:91:a3:db:1e:b9:ef:
44:33:83:5d:bf:dd:e8:6c:a5:c4:e9:34:ce:9f:47:10:bf:36:
6e:c7:10:c8:90:33:32:85:dd:d9:9a:5f:fe:b4:9d:d3:33:12:
d6:a8:8d:0f:23:db:fb:57:73:44:1c:00:51:2c:b9:ac:3c:9a:
ff:76:0b:b5:ee:a7:ef:1b:5b:dd:a3:a2:15:30:89:66:ef:70:
00:1d:85:03:f9:be:03:38:cf:d5:d7:79:98:38:7e:9d:14:32:
6f:68:56:70:b7:75:4d:3c:47:20:d4:a7:e6:7c:0d:36:4c:a1:
cd:6b:15:88:85:d0:6c:1a:dc:0b:50:44:3f:b3:20:71:f7:22:
bf:7a:eb:ac:09:49:5e:02:d6:32:35:58:dc:ee:07:39:ee:01:
6e:8c:1d:f3:6f:50:8e:76:02:89:d4:8d:7f:e5:01:32:65:30:
99:5f:45:58:b4:f8:16:58:62:77:df:2c:bd:72:e6:7c:1c:2a:
1d:68:27:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 06:11:15 2026 by rpki-client