Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
File: ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft (raw, json)
Hash identifier: J147N+3P98DQQiyiVXzYAbqcal/t2KG+CPSKiazvwL4=
Subject key identifier: 96:8D:25:8C:77:26:E0:18:F7:EB:93:00:25:FC:98:70:E8:FD:18:83
Authority key identifier: CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
Certificate issuer: /CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Certificate serial: 019D37F777A220A079AA05885DCF17E72B96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 05:00:57 +0000
Manifest this update: Sun 29 Mar 2026 05:00:57 +0000
Manifest next update: Mon 30 Mar 2026 05:00:57 +0000
Files and hashes: 1: HwU_8edYuJ4rCmR5x6ykFn1t0do.roa (hash: 01KdeA2Gl7MQNNjhhKHuUHDnBDM56k334jcMgundfH4=)
2: ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl (hash: +mlHmyZpplRgLcxNkAfaDkiPHLwmxs2jXvMp0yb+u6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:77:a2:20:a0:79:aa:05:88:5d:cf:17:e7:2b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ced410ea6867ef63f959bad6b21b691cadff87d4
Validity
Not Before: Mar 29 05:00:57 2026 GMT
Not After : Mar 30 05:00:57 2026 GMT
Subject: CN=968d258c7726e018f7eb930025fc9870e8fd1883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:67:4c:18:c5:56:88:c0:c8:dc:15:bd:f4:a6:
32:bd:fa:4d:a5:4b:d6:60:3e:36:df:6d:bc:9a:55:
f8:9b:cd:e7:35:ef:d9:a7:9a:76:9b:ce:0b:4f:a0:
cd:70:26:13:e3:ce:ee:c1:54:04:8f:88:56:ff:4e:
00:0a:e8:84:a6:13:2d:00:21:bb:11:b9:7a:b6:b9:
a8:f2:c9:20:d0:87:c3:9e:92:5d:91:e4:c1:33:b4:
54:fd:26:e3:4c:0f:2e:9a:06:14:53:df:c3:ac:2d:
a3:58:27:29:02:55:45:6f:13:87:d7:f6:e1:d0:7a:
65:fb:a8:d4:42:9b:46:ae:e8:f7:cf:ef:3d:2b:ef:
c3:56:3a:d9:29:d4:25:89:b1:0b:b7:63:07:a7:12:
40:dd:51:ff:e2:71:cc:38:93:5c:73:67:9b:65:34:
90:01:b8:62:fe:bd:75:ba:e0:a5:89:6f:0a:67:49:
c0:da:26:69:1e:06:d2:bc:12:bf:87:b9:ff:c5:47:
2a:c8:db:07:39:e4:50:e4:cd:08:36:4d:11:2a:d1:
1b:82:ef:e3:4e:ff:e1:57:d2:0a:bc:1a:7b:c7:d0:
5b:3a:2c:c3:97:2b:54:52:07:17:70:a2:12:13:9f:
d7:a7:2b:c3:85:26:73:68:36:69:bb:99:a7:b1:2d:
bd:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8D:25:8C:77:26:E0:18:F7:EB:93:00:25:FC:98:70:E8:FD:18:83
X509v3 Authority Key Identifier:
keyid:CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:2b:12:b1:65:e9:d7:94:e4:8a:40:64:90:f0:cc:d1:87:d0:
04:7e:12:f2:97:ec:c6:88:a4:f4:01:8e:89:57:b3:f5:1a:1f:
0b:b7:21:83:1f:e7:e9:b3:f2:7b:6f:7a:1d:9e:f0:6a:c3:76:
a1:06:3e:10:96:cc:23:27:55:ae:ac:fb:c0:2a:d5:26:a1:da:
ca:1f:e1:48:a7:26:45:a0:ab:4e:7b:df:97:9c:d8:b5:7a:d7:
a5:a4:6b:06:7b:03:ce:f8:00:48:de:76:af:34:f7:0b:f9:0b:
5a:73:58:b0:65:a1:c2:56:da:a5:8d:9c:40:b4:4c:7f:6b:38:
d4:d2:73:6f:19:2f:44:f1:25:af:fd:59:d4:59:37:ec:a7:75:
9f:ea:7d:58:12:0f:54:a0:b6:72:3b:0d:6f:9d:25:50:23:ec:
b6:f4:09:51:e8:e4:1b:77:8c:b0:48:4a:80:bb:03:eb:6e:36:
3e:6e:6a:1c:0e:f5:2f:3c:fa:7e:cb:91:37:b5:6d:f4:07:00:
0a:76:94:f6:6d:4c:8a:44:43:26:4f:89:66:11:73:66:d5:a0:
54:5d:fa:98:f5:5f:5f:c8:0f:f5:1d:42:ec:53:f5:b7:e9:84:
3c:4f:31:a1:ac:49:d3:7d:5b:fd:02:14:c8:e6:4d:ab:ba:fc:
69:d4:57:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:14 2026 by rpki-client