Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: H2eljLW7d5b+49qovy8ieEd4keKXVFmp04iO+PaUD00=
Subject key identifier: B0:83:96:FB:1B:C8:5D:69:0B:32:98:C7:98:39:55:21:F1:EE:98:AB
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 019D389C2E00D856EE775D4F4A730115FF39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 08:00:52 +0000
Manifest this update: Sun 29 Mar 2026 08:00:52 +0000
Manifest next update: Mon 30 Mar 2026 08:00:52 +0000
Files and hashes: 1: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: wRk919ZsCaEHFZSnu1lvn4WQ1M6rXGZisI3j9tIyDa4=)
2: bF8Fj85M5baKnqvJRx8XW6rb7BQ.roa (hash: f3mVln76POyyxSCx8XE3vxQpqNxsBFWRi4oixhIFTn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:2e:00:d8:56:ee:77:5d:4f:4a:73:01:15:ff:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Mar 29 08:00:52 2026 GMT
Not After : Mar 30 08:00:52 2026 GMT
Subject: CN=b08396fb1bc85d690b3298c798395521f1ee98ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a3:88:0b:c5:6c:65:0b:1a:52:1f:82:6a:85:
62:df:ea:60:71:3b:9b:db:dc:dd:a1:ef:34:36:62:
be:aa:7a:ba:1a:63:80:10:6e:6a:13:01:00:bc:33:
f1:43:b6:85:93:1f:0d:15:a6:08:c8:8f:e8:74:4d:
9d:c7:84:86:d7:5c:cd:ac:07:26:fb:68:1c:a7:9c:
d2:66:14:f4:03:1e:2d:d9:17:31:57:63:11:09:ad:
19:e5:59:2f:8e:41:e6:f4:72:ad:c9:78:d3:38:e4:
c6:33:4b:1b:47:49:b4:27:7c:cc:87:9c:37:3e:55:
bf:ec:d1:68:59:8f:d8:2a:cc:6e:97:c1:5f:ae:38:
4c:f6:b5:9e:a5:c1:a0:16:c0:d5:b4:d9:49:f2:86:
58:93:95:c2:47:79:32:3f:21:e7:fa:8f:a9:ba:e1:
f1:e5:ff:ab:ab:6b:7a:c7:2f:93:6b:e2:27:e4:b5:
38:49:20:05:61:f6:03:85:fa:23:a1:63:3f:eb:7e:
14:ea:cf:78:94:59:dd:e5:d7:f8:85:d7:71:1f:ac:
3b:71:13:78:2f:6d:66:f3:c3:4b:b9:ff:96:2d:f1:
6c:e8:c7:01:23:6d:02:10:78:37:55:a2:99:61:98:
7d:c8:2e:fc:6f:38:a9:b0:c6:ea:8a:29:96:c9:5c:
c2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:83:96:FB:1B:C8:5D:69:0B:32:98:C7:98:39:55:21:F1:EE:98:AB
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:67:79:79:e2:a2:26:71:21:df:52:8d:57:81:28:b9:4c:7e:
54:da:25:89:89:65:4a:27:c8:58:21:54:05:31:b5:a7:69:d0:
97:e9:d5:49:7b:c9:a3:83:6e:ff:d3:87:6a:a6:a2:f3:c5:45:
f9:ce:89:1c:54:c0:2f:d6:60:11:93:62:80:15:7b:61:e3:ae:
7d:44:46:b7:47:04:59:48:95:a8:00:6f:e2:25:4b:8b:fe:1d:
95:ff:26:f2:7b:4c:62:f9:ea:fa:b0:46:52:30:af:96:a3:d9:
ad:e7:16:da:d7:a8:15:35:53:af:ff:e4:63:20:d9:45:ee:10:
b6:56:7e:92:76:b4:a5:fc:d4:9e:46:4e:e2:c3:c2:81:89:24:
4f:23:69:44:97:81:83:ef:93:06:94:61:f2:bc:52:a6:f1:89:
1b:ca:b7:fe:e3:9d:d7:6e:85:1d:ae:ce:9a:db:b9:be:c3:6a:
19:0b:73:68:b9:f9:9b:46:84:59:0b:95:70:e1:c3:03:2e:58:
52:76:8c:6b:ba:a1:93:ec:ac:58:23:39:7e:3c:03:b1:de:2a:
55:d7:53:79:0a:8b:1f:84:17:fd:52:59:be:b8:19:ab:5f:3a:
43:33:dd:b1:f4:05:7d:56:9a:a2:dd:c4:99:31:f8:92:cf:b4:
2e:6f:3a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:07:54 2026 by rpki-client