Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: yoYs3t8/8vQ/KsZJHh/UkQkbGUGjxQGQRmiC5QZLv84=
Subject key identifier: 91:DF:4C:3F:B4:56:CF:77:CF:CE:C3:05:75:F2:32:89:5B:C1:21:13
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 019E9BBC9A5DA25042BA5C0F5F1673536B58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 10FB
Signing time: Sat 06 Jun 2026 07:01:29 +0000
Manifest this update: Sat 06 Jun 2026 07:01:29 +0000
Manifest next update: Sun 07 Jun 2026 07:01:29 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: PKW0aOLBRUwsrjmvtOFQHu/k+JNtMdxZjtWrNACI9OA=)
2: 5iwb34X7et8A-ZwDnoqtR_xqPsw.roa (hash: WeDprzbgEpDRHXWUflU5QUsB4X7FqUJMR6LQN8vcE2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:bc:9a:5d:a2:50:42:ba:5c:0f:5f:16:73:53:6b:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Jun 6 07:01:29 2026 GMT
Not After : Jun 7 07:01:29 2026 GMT
Subject: CN=91df4c3fb456cf77cfcec30575f232895bc12113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e3:6f:cf:25:b5:01:44:74:45:25:50:94:fc:
ba:4b:1b:3a:05:17:82:2c:03:f8:88:82:a1:c9:88:
72:b2:41:02:7d:00:7d:3c:44:4c:09:99:66:eb:33:
5f:c0:be:b2:8f:b0:7d:c3:3d:ca:77:54:7a:28:d5:
6e:1a:05:7d:e2:6e:0e:a6:09:a3:ca:26:03:f1:a6:
0a:12:45:e8:fc:38:a0:02:4a:00:5b:b2:6a:22:6e:
b8:29:3e:51:07:02:30:e9:5f:1a:c2:0a:73:be:eb:
54:ff:56:31:73:18:49:e8:53:0d:c2:62:b1:42:cf:
cd:9e:ef:e2:2c:20:1e:84:27:12:2b:ef:16:c1:ef:
91:26:46:f2:c5:5c:d1:32:8c:65:f8:5f:83:24:f9:
aa:fc:79:87:b6:c6:dc:3d:85:dd:bc:2e:8f:f0:f3:
ce:7b:f6:35:c5:9b:a2:af:18:bc:ac:8f:84:7e:3c:
41:d7:70:07:5f:d8:a7:f7:dc:31:42:53:9c:61:e1:
55:84:26:5d:c1:3a:fb:5f:36:51:4d:7a:e8:3d:f3:
a0:f0:e5:66:09:0f:dc:e8:8e:0c:82:99:0d:c6:23:
ea:f9:7d:40:6a:8d:1b:cf:52:07:a5:fb:1e:11:e1:
d7:bf:c8:4f:0d:68:b6:b3:71:d0:72:01:55:5e:74:
03:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:DF:4C:3F:B4:56:CF:77:CF:CE:C3:05:75:F2:32:89:5B:C1:21:13
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:fc:d1:34:95:71:e8:1c:99:6f:fb:4b:c7:f4:3b:9a:c4:97:
b7:4e:fa:45:f5:3c:ef:b2:14:20:4f:a6:7a:d2:8d:be:ab:dc:
a2:b4:4d:42:42:ad:be:1c:aa:0a:84:6b:99:50:e9:6f:0a:a4:
a9:e9:dc:f6:ae:4a:42:55:c2:85:10:5d:1c:a1:6f:c5:a7:7b:
66:a3:76:83:f4:23:89:f7:f8:0d:47:7b:a3:e9:ed:ce:95:72:
5e:36:ee:81:52:99:b9:a8:53:26:d1:e1:ac:a9:64:78:83:12:
b8:ac:dd:9f:42:2f:47:6c:98:f6:f2:32:e6:57:d1:83:23:5d:
34:69:b0:27:04:ac:bc:8f:ce:dd:c8:8a:30:a3:ce:4f:31:b7:
c5:ab:02:d0:e5:19:73:d6:a4:02:94:0f:16:98:ed:11:90:22:
43:84:7c:7b:4a:b9:4f:12:55:f2:94:55:66:85:45:75:45:18:
9e:ac:cd:36:0c:a1:ae:42:2f:65:28:45:58:16:88:f2:6b:7a:
58:9c:dc:7d:94:4e:dc:4c:fa:7f:0b:8d:e2:82:fc:57:af:96:
35:d7:37:f4:1e:68:d8:d9:0a:86:ec:03:eb:1c:60:f2:be:c8:
9c:3c:c6:42:cd:d3:92:f3:50:08:88:91:ff:02:ba:22:02:e9:
b4:a5:57:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:37:48 2026 by rpki-client