Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
File: PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft (raw, json)
Hash identifier: kkfzu4CWFrkvXE/qlnzc+UpGMMfotypOR8kgl2iNYWM=
Subject key identifier: 6A:8E:FE:13:C1:1C:A1:42:68:7C:9D:0C:F9:34:05:37:25:32:74:A1
Authority key identifier: 3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
Certificate issuer: /CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Certificate serial: 019E303BE2B4E44098CEA4F06F01755B0BDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
Manifest number: 0E2C
Signing time: Sat 16 May 2026 10:01:31 +0000
Manifest this update: Sat 16 May 2026 10:01:31 +0000
Manifest next update: Sun 17 May 2026 10:01:31 +0000
Files and hashes: 1: PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl (hash: cfmeTVDFNfcIkWmAzZmkds1kI7FvsMJ3R05YN5NqFKk=)
2: TLFiEoQRGLVMCGc46Mn0G99fC5U.roa (hash: gDFtNWXwzA45vosk76KSuCgqR0QSeN+bVcyur4756BI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:e2:b4:e4:40:98:ce:a4:f0:6f:01:75:5b:0b:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Validity
Not Before: May 16 10:01:31 2026 GMT
Not After : May 17 10:01:31 2026 GMT
Subject: CN=6a8efe13c11ca142687c9d0cf9340537253274a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e9:e7:ff:9a:bb:e9:85:18:83:c7:47:34:8d:
5f:7e:05:d0:38:76:0b:97:ad:ca:fe:0e:10:bc:d8:
8f:cd:f8:bb:3b:0a:d0:ba:55:7e:2e:93:c2:c3:32:
3a:7c:64:11:4a:4b:b4:17:99:63:d4:ad:32:a2:74:
8f:95:33:d3:79:71:f1:83:31:da:6f:5e:d7:0c:f4:
34:e1:5c:92:61:5d:3a:aa:8f:bb:d9:1b:3a:95:b1:
52:d3:d8:fd:87:50:f8:9d:94:c6:0d:d6:cc:a7:af:
c4:44:7e:be:9a:1b:61:68:79:6f:94:87:45:e5:18:
78:9d:47:c1:c1:7c:db:0e:bb:f0:92:78:df:13:84:
66:3d:ad:be:8e:57:12:e4:69:a2:51:04:ea:0e:4c:
c2:02:b5:d5:7c:1c:4c:78:1e:56:10:a1:b7:5e:62:
41:b3:2b:ff:d6:4e:96:68:49:04:0f:68:88:b3:9a:
76:5e:37:43:62:cf:9e:90:a1:d7:e9:d3:b8:1f:91:
6b:83:9d:f7:f0:ec:f6:d0:d4:52:45:cd:6b:fb:6e:
6e:21:09:3e:64:2f:3e:83:e8:08:9b:33:13:bb:3b:
73:73:b8:48:35:58:ea:08:5e:a1:6b:d8:9e:68:b8:
ff:a8:0b:95:1f:ce:a5:c9:cf:75:1b:de:d1:e2:c5:
b8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:8E:FE:13:C1:1C:A1:42:68:7C:9D:0C:F9:34:05:37:25:32:74:A1
X509v3 Authority Key Identifier:
keyid:3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:02:81:d9:f3:40:9e:d2:42:1f:bd:e6:01:2f:a7:d8:a8:bf:
3c:67:0e:f9:4c:c9:bd:1a:87:19:83:24:fe:4a:7b:f3:8e:a2:
8b:8d:4c:82:b0:db:94:61:ae:a3:d9:87:42:e0:4b:7b:10:19:
d6:7b:cf:ad:33:8b:84:7f:08:3f:56:c7:43:d1:6a:9e:56:7d:
b7:34:69:4c:5a:65:d3:2a:3a:98:1c:36:29:5a:55:eb:12:80:
70:1f:46:e3:29:35:66:7a:cb:ee:b1:5f:5d:e7:db:cc:cf:6c:
5f:e3:5b:60:f1:07:07:ff:7b:02:b5:5b:1d:3a:6d:fa:06:a2:
31:60:88:75:a4:98:01:74:d4:34:9f:85:d4:58:b7:36:62:bf:
75:fa:95:4c:fe:76:63:23:c9:f6:7e:78:0a:79:c4:cd:04:d6:
8a:82:8c:d0:11:70:e7:36:33:13:33:fb:eb:9a:f1:96:e9:ab:
21:3f:0c:dc:79:ec:30:d0:bc:e0:a3:49:48:46:02:77:59:9a:
9b:9d:b9:1c:68:81:27:4e:8a:18:a2:63:6d:29:c9:bb:86:1e:
da:44:16:b4:dd:b9:e0:47:f6:7a:23:43:96:b0:6c:1c:52:f4:
5c:a3:cf:b0:9e:b4:5f:af:7d:08:a8:98:d7:ae:d7:e2:50:e5:
d1:4d:67:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:19:36 2026 by rpki-client