Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: Fj2FSSiJBYdT4ZZYAeFXsZg+Jmdambeu4bwi0lzoVbk=
Subject key identifier: 80:CD:C9:F4:FF:A5:F3:8C:95:B7:06:F0:2B:C8:CD:92:94:A5:32:4A
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 019E2B15634790969B8EBA14767A1C442D83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 0490
Signing time: Fri 15 May 2026 10:01:22 +0000
Manifest this update: Fri 15 May 2026 10:01:22 +0000
Manifest next update: Sat 16 May 2026 10:01:22 +0000
Files and hashes: 1: NS4bJSf8JtisPPo4E4AUvgYiJkI.roa (hash: kNAqy7sfsX/DzrejY1IHLtdhRNkU/dXjQEKN71zDd5M=)
2: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: oX1BCABhkRdAj/bLhxqZk28qxK5l0xwSra5088BXsgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 10:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2b:15:63:47:90:96:9b:8e:ba:14:76:7a:1c:44:2d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: May 15 10:01:22 2026 GMT
Not After : May 16 10:01:22 2026 GMT
Subject: CN=80cdc9f4ffa5f38c95b706f02bc8cd9294a5324a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a9:bd:fe:47:46:7d:b2:ba:51:3b:0f:3a:d1:
1a:f1:31:f2:fc:d9:6e:f3:eb:ff:70:cd:86:85:0e:
32:a1:b3:63:cc:46:1f:40:9f:ae:3c:7c:63:d3:ca:
78:4e:60:d1:8e:71:95:34:08:97:3b:d4:25:98:13:
34:65:d4:3a:e7:77:a5:45:72:ed:9f:4b:ee:5e:dd:
f0:68:f1:03:a2:9a:20:df:65:75:3f:de:2c:83:15:
55:6c:9d:92:ab:56:be:b3:51:23:4e:ef:3d:d1:ab:
63:29:37:52:ca:cf:ca:39:86:03:1c:85:49:29:14:
be:97:9a:78:02:90:a9:ee:e9:95:2f:1d:c8:84:fb:
09:5f:47:1a:da:c5:24:49:74:35:01:93:94:f3:07:
60:5e:4d:77:3c:6f:65:3b:95:99:4a:5b:bc:37:2f:
f7:db:25:c8:bf:e6:65:50:be:2c:d6:63:c2:82:ad:
4a:db:f7:79:9d:fa:32:bd:86:d2:b6:41:86:a7:7e:
2c:2d:e1:9d:89:cf:6f:59:67:21:ba:ca:a6:f8:5f:
5a:1c:85:a9:98:6c:79:21:11:55:0f:ab:39:67:ac:
ac:05:c1:b9:31:f9:4f:8f:b9:2a:02:f5:11:6f:96:
11:b4:87:71:b6:57:65:52:62:a9:e7:0a:3b:0f:ae:
de:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CD:C9:F4:FF:A5:F3:8C:95:B7:06:F0:2B:C8:CD:92:94:A5:32:4A
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:56:ab:a7:fb:ac:3b:b9:a0:9f:4b:65:70:72:f4:93:0a:ad:
27:67:b1:de:ae:9b:95:0e:bb:99:b0:3d:1a:f3:b1:18:1a:68:
50:e7:4d:b5:cb:0a:fc:cc:42:6f:13:5c:48:63:eb:be:07:da:
81:8a:ff:12:4b:b9:b8:81:11:78:39:10:be:30:f0:a9:71:e2:
37:b3:6a:36:b7:e0:36:b7:22:b3:45:c1:a4:ad:fa:3b:c6:8a:
a2:50:e7:5f:0b:f2:1e:00:42:ad:65:31:52:c4:6b:93:fd:e7:
57:1a:51:41:a4:53:44:01:2c:37:62:c7:89:85:2c:4c:6b:01:
76:90:0e:cd:fd:78:b4:c2:53:cc:b5:42:59:af:01:4a:ee:c3:
07:b9:6b:0a:c3:39:af:b4:77:42:1d:31:95:1d:47:9f:31:c3:
6b:1c:56:83:f1:1a:fa:2d:68:4e:bb:e9:8d:9f:2d:c7:b6:42:
59:8c:44:a1:cc:08:93:fb:4a:98:da:47:46:d4:00:30:a3:37:
3d:d9:a5:5b:11:ec:17:fb:38:45:6b:44:9b:1f:c6:43:46:64:
eb:6e:41:15:f0:c3:fa:33:6f:bf:21:aa:08:d6:08:59:69:0c:
2a:83:c5:f3:79:2c:a9:00:65:2e:ad:5f:bf:d2:80:36:86:c0:
b3:92:15:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 16:03:20 2026 by rpki-client