Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: l7yv1gIrU5dzfGMPavDj9efpGLl+36T2TQwV3qOjJ2s=
Subject key identifier: 87:CE:D3:8D:D0:17:2A:9D:2D:F7:19:CC:B5:42:BD:65:E4:EE:89:2F
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 019EC1489C77EACC8BB4EE13EA1D0EACF747
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 18EE
Signing time: Sat 13 Jun 2026 14:00:21 +0000
Manifest this update: Sat 13 Jun 2026 14:00:21 +0000
Manifest next update: Sun 14 Jun 2026 14:00:21 +0000
Files and hashes: 1: kJTuRCvouXJMaVDF0pdJUxYymkE.roa (hash: u4BkMutspCjtHl2p10ecFJYI7igX5XDffjXXKmzdde8=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: mMuqegVHkMdkdz/4FYa/NWNwCj64S+RBXNX+nSnH3oM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:9c:77:ea:cc:8b:b4:ee:13:ea:1d:0e:ac:f7:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Jun 13 14:00:21 2026 GMT
Not After : Jun 14 14:00:21 2026 GMT
Subject: CN=87ced38dd0172a9d2df719ccb542bd65e4ee892f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:58:ae:22:19:05:db:69:ee:38:59:e1:93:7c:
ac:5a:13:e9:64:af:03:34:7a:28:0f:23:f1:e7:c4:
f5:6c:70:53:66:66:fa:cc:f7:0b:f8:21:6e:b1:87:
68:c0:c2:38:8e:25:63:3d:6c:0d:97:58:2c:4b:bf:
cd:cf:6f:1b:69:90:42:ef:b9:6f:bc:10:1a:05:d4:
3c:86:e2:18:8a:9b:f0:65:0b:36:02:c7:56:e8:3f:
d2:2b:13:a4:95:14:7b:59:6c:76:49:80:5d:6c:0a:
8b:43:56:42:a2:b0:95:3d:cd:35:aa:77:ae:41:d9:
68:47:59:2f:f3:cc:c0:4d:a4:75:a6:a5:b7:a7:32:
c8:f0:61:c8:29:d0:a2:6a:12:4a:fa:91:ce:f4:19:
3a:4f:04:64:58:1d:5d:00:8b:f2:6e:39:bb:86:d1:
5a:bd:0e:07:f5:18:6b:99:7d:5c:55:bd:70:aa:0e:
09:24:11:bc:23:6c:29:fb:a6:bc:d9:7b:cb:e4:f3:
89:89:8d:b7:2f:68:23:20:15:64:95:1f:9d:e0:bd:
6a:b2:1d:35:a7:99:52:40:9a:10:87:3b:16:a8:91:
22:7a:ec:bd:a9:58:50:2d:45:22:3f:07:48:fc:fe:
b1:2b:02:d6:ad:f0:b8:14:44:15:1b:84:0c:84:93:
93:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CE:D3:8D:D0:17:2A:9D:2D:F7:19:CC:B5:42:BD:65:E4:EE:89:2F
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:5b:4b:2a:44:06:96:83:b1:3b:4b:96:16:6d:20:86:dc:3e:
fe:43:ae:1f:b5:16:b5:73:96:5d:bc:f8:93:2d:12:e6:25:f7:
79:7a:0a:36:31:0e:0a:8f:a6:85:b5:78:71:ef:de:24:42:65:
2a:17:dd:a2:ab:26:ae:b0:9f:ac:40:e3:01:b1:5c:cc:65:bd:
a5:e3:9c:8e:f3:56:79:f0:00:b3:4d:b6:31:49:16:fe:a1:57:
89:f9:e2:34:6a:52:c7:81:0e:2f:91:c7:48:9c:56:cb:d3:7c:
79:7e:9e:81:29:85:aa:28:ed:c2:06:b4:e3:8e:03:dd:b8:f3:
96:88:38:10:7c:07:cd:31:96:b9:b2:5b:73:d1:92:81:33:12:
41:86:cc:7e:78:13:13:5a:64:8a:41:34:51:ee:50:80:27:aa:
f1:51:bf:77:07:3f:6c:c4:86:fc:2c:6b:4f:de:69:0a:19:c0:
1b:61:6e:bc:d0:42:02:d9:95:5f:a6:b3:35:72:de:f3:3b:7f:
ce:f6:0e:1c:83:bf:18:45:0a:55:f5:39:8d:79:39:9f:ad:bb:
90:b9:2d:c8:fe:57:79:a2:b1:6d:78:e2:6b:31:ab:00:54:04:
9b:d7:2d:21:f7:03:03:0c:3a:1c:c2:ed:ef:3c:a0:8e:1b:80:
f0:49:fe:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:22:42 2026 by rpki-client