Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
File: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft (raw, json)
Hash identifier: SR9BY8BAHOKYv7yMj4duhQkrXpzhbMD393qNqMfqKjk=
Subject key identifier: 55:0D:01:CE:02:19:D1:76:4B:DE:41:53:E1:0C:3C:F9:87:85:7F:5B
Authority key identifier: CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
Certificate issuer: /CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Certificate serial: 019D38667BE8D67494ED1913A148D387D2B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
Manifest number: 0E42
Signing time: Sun 29 Mar 2026 07:02:13 +0000
Manifest this update: Sun 29 Mar 2026 07:02:13 +0000
Manifest next update: Mon 30 Mar 2026 07:02:13 +0000
Files and hashes: 1: fskjKgPj5L9YOuWuL2aoh4G8vqU.roa (hash: 31yKilxbLobmkxS1Ne8oNBBHC8xU0xlQdNH3udg5Os4=)
2: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl (hash: WO4E++WMLydJU+hll5O6bm2WElKI2iKdDVBI+87rxAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:7b:e8:d6:74:94:ed:19:13:a1:48:d3:87:d2:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Validity
Not Before: Mar 29 07:02:13 2026 GMT
Not After : Mar 30 07:02:13 2026 GMT
Subject: CN=550d01ce0219d1764bde4153e10c3cf987857f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:68:83:4a:51:80:4a:89:22:52:32:1f:6a:77:
30:5a:0b:c7:14:f9:cd:f8:1f:1b:26:0b:70:6c:e0:
f2:77:ab:9e:ff:75:62:4e:b5:0d:70:77:34:d2:ee:
7a:76:cf:24:a7:1b:1c:c7:a1:d0:ec:73:b1:10:bc:
1d:5c:db:58:bb:82:08:25:04:1d:7e:b2:c7:14:02:
d0:7b:13:dd:cd:20:51:8f:7e:5d:99:30:de:5e:37:
f0:9c:73:13:d9:90:09:37:07:5b:b6:bb:3d:52:62:
fc:20:d8:ac:8a:39:49:6d:4f:e4:62:7a:a6:47:df:
81:2b:04:d6:b6:7d:5b:ff:95:52:37:3f:16:b2:20:
5a:75:50:63:ff:e4:ed:98:e4:c8:bd:02:a7:72:c0:
c2:78:f5:d8:10:7c:ef:a1:39:9e:66:11:82:40:b3:
cf:5c:bf:0c:bb:45:e2:64:b8:3f:fc:75:bc:8f:39:
11:a3:2c:ff:48:a5:77:df:14:a5:d5:54:c9:1b:13:
23:bd:b5:8b:17:59:4a:5a:b1:b1:3c:f6:a9:94:c9:
07:d8:4f:44:21:ea:22:ea:ca:2c:3e:67:fb:2a:c5:
45:5e:85:c6:63:8e:8c:dd:5d:1b:a1:f2:fc:84:80:
dc:95:52:b3:61:85:8b:7f:93:fe:73:71:b3:9f:5b:
55:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0D:01:CE:02:19:D1:76:4B:DE:41:53:E1:0C:3C:F9:87:85:7F:5B
X509v3 Authority Key Identifier:
keyid:CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:f0:6f:dd:1c:21:de:42:4f:59:ac:ac:d5:d5:ca:39:72:71:
e8:bd:5c:c8:40:ef:c5:3c:0d:31:ef:0f:f5:78:e8:e9:63:03:
a2:17:94:8d:1d:99:24:8e:d5:db:60:73:97:59:d9:4e:06:ed:
bc:c5:23:4e:e2:15:ab:13:8c:41:64:c3:bf:e1:66:48:db:ac:
ce:9a:8e:4e:3a:5f:cd:c3:91:71:e8:bd:59:2f:3f:69:85:9b:
b1:e7:0f:ee:84:1b:07:29:ca:20:31:66:67:ef:08:a7:46:e5:
3e:49:ba:df:f2:d9:e0:85:2d:f3:b0:d9:6a:54:f3:3e:84:9b:
ea:a3:21:3e:40:64:bf:a6:28:3b:d9:49:f6:c3:c3:d1:80:f8:
5c:e8:d6:22:09:ab:71:b2:ec:0f:e3:05:c6:2b:db:a5:4e:61:
98:ce:5a:f4:35:f0:90:f2:85:90:54:20:ac:2f:71:98:b6:df:
6b:5e:d2:07:a8:c2:ac:9e:85:95:5b:eb:3d:c0:ba:c8:50:c5:
bb:2a:9a:dc:3f:8e:bf:cc:44:b1:7b:0d:10:67:48:6a:7b:0b:
c1:64:76:c6:dc:18:cf:81:25:42:d6:66:a5:45:bb:31:08:cb:
1e:d6:ca:60:9c:b9:62:d6:0d:f2:87:6f:aa:d4:ae:7b:fc:eb:
dc:fd:3f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:29 2026 by rpki-client