Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
File: zNHiiTDXen65iRtvq7spFe44hao.mft (raw, json)
Hash identifier: W+7JrVy1cIG3LZHJkIvfBJjXbskn8Ccvt8F7rL9Wdac=
Subject key identifier: B8:38:CA:A5:CE:E0:BF:E3:B0:0A:13:F9:B3:AE:84:9B:A2:1B:18:81
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 019EBF5AF9698DEE414B91A8DDB2848D7135
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
Manifest number: 195B
Signing time: Sat 13 Jun 2026 05:01:10 +0000
Manifest this update: Sat 13 Jun 2026 05:01:10 +0000
Manifest next update: Sun 14 Jun 2026 05:01:10 +0000
Files and hashes: 1: _NSxXKWLAT32ACYjnb_Q_v0bth4.roa (hash: jFEG3V9iSls0XRVWy4kyBvsz0M23pnXIeMtJ7lA5i08=)
2: zNHiiTDXen65iRtvq7spFe44hao.crl (hash: e1OXZrCjpEErdpXq0zQL+0C0mOLuCWKuzD4cKkX7UpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 05:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:f9:69:8d:ee:41:4b:91:a8:dd:b2:84:8d:71:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Jun 13 05:01:10 2026 GMT
Not After : Jun 14 05:01:10 2026 GMT
Subject: CN=b838caa5cee0bfe3b00a13f9b3ae849ba21b1881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f9:6b:25:2f:05:f3:41:5b:3c:86:27:7b:60:
1b:9f:58:00:89:1e:d0:9c:63:12:88:61:75:c6:7c:
33:23:83:ce:42:b3:41:97:a5:98:8a:4f:73:21:47:
ce:37:1f:86:69:a8:fd:1f:f4:cf:e8:d9:d5:4f:59:
89:57:8d:e5:06:3c:fd:99:d9:bf:aa:ef:d0:a2:55:
6c:38:b1:3b:dc:a0:12:90:76:72:c9:8c:ef:cd:8d:
ec:5c:c9:e9:f6:11:28:55:c0:f9:d6:1e:f6:1a:f6:
b4:ff:9b:5d:80:fd:c6:74:af:f7:24:ef:99:04:e3:
3d:e7:a9:42:1b:36:dc:49:85:76:97:b3:23:63:b4:
81:d4:03:57:dc:1c:f5:6a:f5:80:8c:b0:b0:f7:1a:
df:6e:e7:19:c5:c5:3d:65:44:47:ce:07:11:5d:64:
bd:98:67:bb:9f:6b:4e:3e:b4:a1:48:83:ea:60:52:
43:cb:0c:d0:25:b7:98:81:dd:bb:56:54:ba:6c:57:
23:5e:42:8b:da:f4:02:12:c7:75:55:30:3c:03:44:
51:35:91:96:2f:09:70:8b:c2:a8:93:b4:a0:99:63:
52:81:45:f0:c4:95:c5:c2:4a:b2:0a:8e:17:56:d5:
c6:41:8d:5c:2b:5a:c1:d1:5f:7b:1f:1f:cc:9e:d4:
98:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:38:CA:A5:CE:E0:BF:E3:B0:0A:13:F9:B3:AE:84:9B:A2:1B:18:81
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:c0:44:bd:1c:53:29:c7:67:a0:b0:af:e0:87:d4:12:0f:d4:
3e:1f:9a:c1:53:c2:b2:75:78:91:20:89:a6:47:24:03:11:8c:
c2:14:84:95:33:26:7c:2c:0d:63:f6:01:15:df:44:81:7c:89:
7d:86:1f:ca:61:c2:65:e4:91:3d:8e:1f:9c:8e:1d:bb:12:c3:
d4:e9:57:16:ce:1e:88:f8:dc:17:00:7b:e0:2c:22:5f:b9:f9:
2d:6e:af:0d:c8:81:0d:1e:7b:22:b4:db:7e:42:29:49:2c:c4:
3a:01:47:d4:f0:5b:14:9f:39:e1:39:ca:56:ed:30:04:ee:27:
49:16:45:e1:f0:46:04:92:59:00:6a:3d:20:89:a6:46:c8:15:
b7:0b:bc:78:d7:54:eb:db:24:65:c3:11:f3:7d:7d:e1:8b:89:
ba:80:19:40:d3:dd:a0:d4:f3:f8:13:41:0b:c3:6c:84:21:ea:
8a:5c:f5:15:c9:c0:19:6f:1e:34:45:e8:c1:18:ec:82:6d:ff:
87:af:f7:8b:17:ad:20:3f:21:1c:87:56:76:17:a9:87:0c:49:
48:ab:78:a9:b4:1c:94:94:20:04:04:96:74:3f:3f:a0:3e:e7:
3c:a8:ad:08:7f:05:b9:ef:35:80:dc:7b:43:77:29:ff:14:a8:
d6:a9:d3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:32:52 2026 by rpki-client