Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: +zP3puvvmnqel1ZSwaNJoM3cngeI8g6YLBkTAdRckEU=
Subject key identifier: 42:4E:B1:D7:44:3A:03:0F:54:13:2E:EA:1D:76:AC:EE:A6:A1:88:7C
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 019E9A0471DB84C39101400C378F0709AA31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 1579
Signing time: Fri 05 Jun 2026 23:00:42 +0000
Manifest this update: Fri 05 Jun 2026 23:00:42 +0000
Manifest next update: Sat 06 Jun 2026 23:00:42 +0000
Files and hashes: 1: EsvahZdQZVhluZsLSr98J_sMDK4.roa (hash: DNS5SQ17LOTRnwWYUw1eb+IWwNLBZu1qV/4r+8SuduY=)
2: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: L9XhrYP1rrd746YMGK7lXWX19b5Rik8stXft/frnZTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9a:04:71:db:84:c3:91:01:40:0c:37:8f:07:09:aa:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Jun 5 23:00:42 2026 GMT
Not After : Jun 6 23:00:42 2026 GMT
Subject: CN=424eb1d7443a030f54132eea1d76aceea6a1887c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b7:a0:0d:29:80:81:e7:e9:3c:59:4c:09:cf:
11:74:cb:ff:22:e2:e0:f8:3a:33:b2:88:69:f2:2e:
ec:f0:e0:4f:9c:3c:50:ce:cb:e9:3a:6c:36:00:ed:
b8:e7:cd:9f:11:25:55:49:1f:59:ce:40:05:e4:9f:
f3:88:a0:ae:fe:9d:b5:61:4d:11:da:93:a7:14:7b:
ef:47:a8:82:f3:8f:52:10:0c:ad:97:5a:bb:df:fe:
a7:ba:92:7c:d5:e5:46:5c:9e:53:fb:2c:90:95:30:
14:15:86:c2:21:61:2c:49:d5:04:d9:72:b4:0f:a5:
bb:d4:28:1b:57:00:7c:c9:71:4d:d8:f9:ed:0f:2f:
e1:6b:de:df:fb:25:2b:55:1c:5b:22:2a:0a:b1:a8:
bb:1c:e7:9e:c7:4e:10:bc:b9:9d:ab:99:78:30:43:
e2:78:d0:4b:5e:05:1e:83:f0:d8:ca:0f:72:85:03:
6a:07:a1:ce:72:a8:2b:68:4c:94:53:f7:34:9d:4e:
99:28:c9:cd:3b:e6:62:d8:c8:9b:c3:b2:de:2e:f1:
d9:5e:8e:a4:6e:e5:01:21:5f:a4:89:82:f8:ee:ba:
71:24:ed:db:f2:64:fe:ff:62:ae:ca:d3:4c:79:5b:
00:76:a3:9c:79:27:8c:5b:2e:d6:93:2e:6a:ae:08:
5c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4E:B1:D7:44:3A:03:0F:54:13:2E:EA:1D:76:AC:EE:A6:A1:88:7C
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:10:3a:bb:44:b4:bd:f9:59:ff:1b:f1:ef:cf:0a:ce:01:93:
b6:cd:86:22:c1:95:2f:6c:2d:05:23:36:a2:7a:74:78:ac:7c:
ce:2d:e6:ab:ab:d3:59:0e:4a:ce:b3:89:92:bb:11:e8:67:69:
05:60:44:22:51:69:6d:16:12:d1:78:94:fe:02:c2:31:99:e5:
77:4f:3b:46:e1:ec:b0:82:84:48:ae:60:f6:02:0a:25:e6:b3:
48:a2:18:cb:16:14:3a:6b:0d:9a:a8:dc:4e:8b:b7:ca:b9:de:
dc:44:c6:c7:44:cb:76:60:25:e2:70:04:e1:86:ab:bf:a5:0a:
02:b4:bf:67:2e:4d:2b:80:47:3e:74:0a:23:27:3e:e3:2c:d8:
7a:51:b5:38:02:f4:57:0b:0d:02:60:bb:f6:41:e0:08:e5:a3:
bd:76:0a:3e:d5:9d:06:cd:d1:08:08:9f:d0:83:54:fa:e2:ef:
56:11:94:3d:b1:2e:9f:3d:3b:be:c1:58:cc:04:70:56:cb:27:
59:c3:b3:59:23:88:14:c8:dc:df:14:87:d9:61:42:af:91:e8:
42:7b:71:88:4f:53:1d:3a:7b:c0:b0:0f:83:74:d2:9d:09:dd:
42:da:0b:c1:c9:e2:f0:62:33:b0:c8:02:5a:b7:8f:28:e1:f2:
e5:54:d3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 08:11:48 2026 by rpki-client