Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: jyevrFr/6/TjB1y/3GR1oE/ZZ70JIx388UHTjuj/P9c=
Subject key identifier: 11:16:7E:B1:BE:3F:F1:CC:47:45:F1:E4:7F:F3:C0:3A:47:EF:89:76
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019CAC47367B4116211F4569BE81EAC8F9E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 0870
Signing time: Mon 02 Mar 2026 02:01:13 +0000
Manifest this update: Mon 02 Mar 2026 02:01:13 +0000
Manifest next update: Tue 03 Mar 2026 02:01:13 +0000
Files and hashes: 1: QHXSRTuQ2wXN4fBaqbTGI2do0QM.roa (hash: 6/Lj3vL/L1J4PjbZ1lCMZ4grKgrWI3SnlcnhAkor32k=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: sdS85whajOj2LtvD5kC6k9BsP9Rje1canVVfcLnb84Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:36:7b:41:16:21:1f:45:69:be:81:ea:c8:f9:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Mar 2 02:01:13 2026 GMT
Not After : Mar 3 02:01:13 2026 GMT
Subject: CN=11167eb1be3ff1cc4745f1e47ff3c03a47ef8976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:0f:1f:98:38:0c:4e:1c:3b:39:d8:e4:8e:
99:71:f9:56:21:fc:f8:28:9f:42:c7:d1:ae:17:57:
3c:3e:29:09:6c:89:da:3d:09:0f:b8:17:95:d3:04:
94:ae:2a:d1:98:f7:c7:0f:19:1d:14:4b:bb:8c:dc:
c6:c8:98:0c:21:55:4f:b9:8f:c0:5f:ce:b2:ea:e4:
90:fc:81:d2:f4:b4:85:f5:85:e5:80:e7:87:1e:4d:
de:d7:82:c9:ed:fb:39:e4:4b:40:4e:93:d8:46:e6:
05:98:62:a2:a6:81:38:54:44:cb:2f:42:d6:8c:37:
93:dc:6a:38:2a:dc:4d:fb:0c:ef:93:f1:1b:ad:73:
b7:9c:6f:16:8d:a9:de:d3:c4:8f:07:7f:56:ab:9b:
0d:8d:17:30:6d:42:68:ce:08:1a:ac:14:3c:3a:29:
d0:24:e8:e3:de:a6:e0:c5:1a:93:d1:64:13:b1:eb:
95:ac:e9:27:1e:00:02:d5:b0:6d:8d:65:86:a8:55:
cd:a1:2f:66:4d:1c:c8:74:a7:94:f0:5d:f6:ce:a4:
47:d8:59:9f:05:c3:9e:78:be:2b:6b:7b:51:31:a9:
f4:67:34:f2:d5:2f:fc:c2:55:ad:06:6c:21:d7:a2:
40:2c:40:18:38:bf:f4:f7:6d:3f:4f:36:e0:66:bc:
2b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:16:7E:B1:BE:3F:F1:CC:47:45:F1:E4:7F:F3:C0:3A:47:EF:89:76
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:eb:fd:a1:3e:42:81:f0:0c:25:1c:ee:f3:4a:9f:a0:32:a0:
29:de:3f:ed:25:9a:5d:a0:49:06:36:b1:59:ec:74:25:5b:62:
da:9f:57:6d:c1:d1:3d:79:8e:93:87:b3:38:a6:c7:9b:73:86:
cf:e8:0c:60:ff:d0:64:04:62:46:3a:6a:01:3b:e9:9b:d5:50:
b5:24:ea:21:72:ba:43:a3:a7:a2:93:89:68:a7:22:49:8a:8b:
1f:59:da:71:f1:4b:04:09:e9:86:c0:60:ac:46:7a:aa:49:75:
76:38:1d:9b:5a:61:4a:9b:53:0a:40:c0:77:65:be:0a:19:0c:
c4:e8:68:7d:7a:cb:0e:cb:ce:fe:d2:c1:33:75:aa:60:a8:85:
b1:40:32:3f:48:1a:b1:57:50:9e:bd:91:b1:83:a7:a1:88:46:
15:1f:bb:c7:c2:9b:45:fb:8f:89:5a:06:10:7d:4c:cd:15:72:
aa:89:82:97:4d:bf:9d:f3:d3:76:cc:cf:63:3b:de:0c:54:cc:
87:20:8b:f9:da:79:8b:c1:51:a5:b4:b3:7a:01:ac:72:60:6e:
35:8f:d4:a4:ef:32:ca:60:76:c8:00:f5:78:82:bb:01:b5:a7:
1d:00:04:25:f6:18:e4:d4:e0:c6:db:aa:07:6d:89:c9:13:26:
a8:54:f2:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:15:39 2026 by rpki-client