Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
File: Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft (raw, json)
Hash identifier: C1OMR1xWwEXRFQtsHILR4VoQf8nfRcgZBFUaT+oW9Yc=
Subject key identifier: A7:2B:69:46:5F:E4:9B:78:46:37:60:AA:65:2E:F9:68:54:75:CC:21
Authority key identifier: 67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
Certificate issuer: /CN=6777a62846df4edbe5666b89e8420e919ab08627
Certificate serial: 019D9AABD500E9790645DEA1C1570129AEAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
Manifest number: 181D
Signing time: Fri 17 Apr 2026 09:00:45 +0000
Manifest this update: Fri 17 Apr 2026 09:00:45 +0000
Manifest next update: Sat 18 Apr 2026 09:00:45 +0000
Files and hashes: 1: 3VLDvoZCO7skcLMmoqmsMLtkmQU.roa (hash: 54REseVbtlx9mAKpYatYkVRIZlL/47Cw+aylSFwZYDg=)
2: Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl (hash: ZGquq0CjqlsZEHuSzRVy1GFDtuqtJbkbSEgj+9eaOg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 09:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:d5:00:e9:79:06:45:de:a1:c1:57:01:29:ae:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6777a62846df4edbe5666b89e8420e919ab08627
Validity
Not Before: Apr 17 09:00:45 2026 GMT
Not After : Apr 18 09:00:45 2026 GMT
Subject: CN=a72b69465fe49b78463760aa652ef9685475cc21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3c:bd:bc:36:32:29:b7:aa:0d:bc:bb:cc:23:
c5:10:08:ec:52:e4:9b:75:00:21:f6:f4:35:ab:20:
b1:fd:b1:49:87:e0:f5:44:cf:f8:e0:b9:20:23:cf:
5b:13:51:4e:9b:c9:36:8a:d7:7c:3b:99:8c:15:ec:
45:52:96:0f:a4:a9:95:6b:04:05:0c:98:5c:7f:c9:
56:e0:f8:da:ad:04:19:52:80:04:05:32:27:bd:2d:
8b:df:7f:ba:13:45:61:d7:c3:6b:72:54:62:03:32:
0b:56:6c:64:f2:c8:f0:85:0a:0a:28:f9:6b:38:32:
f0:82:0b:8d:b8:9e:80:28:f8:71:55:3d:f9:6d:01:
a9:e1:bb:7d:8e:b7:32:ce:e2:b4:8d:82:60:0f:3c:
7c:17:d5:01:61:00:af:07:41:dc:64:29:55:66:b2:
1d:9a:15:32:25:92:e3:20:8a:3b:d0:c4:a7:88:2e:
a3:2d:36:53:bb:cb:9d:ae:b8:64:9a:1b:6f:7b:59:
1e:2d:dc:2f:74:94:c5:79:65:c4:54:f9:44:85:fb:
cb:27:bb:f9:d7:5d:60:37:9b:89:a0:55:04:6c:f1:
bf:68:d8:10:27:f2:b4:22:80:47:ae:4b:d2:89:91:
8c:99:30:90:be:0d:96:f5:50:9f:2f:3d:95:20:f9:
49:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2B:69:46:5F:E4:9B:78:46:37:60:AA:65:2E:F9:68:54:75:CC:21
X509v3 Authority Key Identifier:
keyid:67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:c9:6c:67:13:8b:d5:33:13:b6:54:ac:52:63:91:0a:92:0d:
f2:50:61:cc:7b:88:c7:cf:32:47:31:54:2f:ff:1c:31:f8:f1:
bd:0c:e2:36:23:94:39:d2:ba:68:ec:da:d5:59:d6:ff:25:af:
ed:cd:1f:c7:78:db:f4:63:f7:d7:22:6d:80:0e:f9:36:8e:54:
2d:1f:ea:cd:2f:9b:a1:1c:d0:64:19:3e:cb:49:72:f2:18:3f:
21:e6:7f:48:c1:67:ad:7c:45:d1:a8:ab:cf:ba:9e:24:15:b7:
53:a0:f3:a9:17:eb:c5:3e:08:3d:cd:7a:7b:f1:15:54:e2:22:
bc:f0:dc:c5:d3:8e:27:a1:9c:04:ef:b7:43:59:68:ea:1e:f5:
c1:d8:7f:54:c9:9a:af:42:e2:60:3c:eb:e7:46:d5:fc:1d:0b:
65:63:68:c9:ba:70:97:79:9d:03:f7:22:b2:4f:1e:5d:f7:eb:
7b:54:fd:24:f3:dc:da:b4:04:0d:59:33:74:a3:73:36:d0:51:
40:bb:a6:db:21:09:c6:bb:78:37:47:30:8e:33:91:88:7c:28:
3a:40:97:e1:af:9d:35:e3:7d:ae:37:46:1a:28:99:a5:05:5a:
7a:ad:f2:17:d3:65:d3:99:f8:b3:4a:09:ee:6a:77:be:76:ba:
2f:7e:17:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:21:22 2026 by rpki-client