Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json)
Hash identifier: hSJyXbepyxaJmX6pB2cGUltC4baykY36w7g5SmHPfRU=
Subject key identifier: 75:C5:32:F2:F1:77:6C:A7:0F:DD:0A:88:17:1D:8B:58:33:BD:AA:B9
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 019CAC0FF35549A003F98256DBC377226A1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
Manifest number: 08BA
Signing time: Mon 02 Mar 2026 01:00:52 +0000
Manifest this update: Mon 02 Mar 2026 01:00:52 +0000
Manifest next update: Tue 03 Mar 2026 01:00:52 +0000
Files and hashes: 1: EeAR-0FuIgpREXK4CZj7bbiR324.roa (hash: nK35rOT9ZlV+vNlZLQE4MxQolHHOslBBZTHEZhrQ+LA=)
2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: 4L6IpUn61x4kVi+YwSluXyIm2wkYWllnYzuctRAm5ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:f3:55:49:a0:03:f9:82:56:db:c3:77:22:6a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: Mar 2 01:00:52 2026 GMT
Not After : Mar 3 01:00:52 2026 GMT
Subject: CN=75c532f2f1776ca70fdd0a88171d8b5833bdaab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:68:b9:de:4c:d9:e2:3e:f6:6f:bc:e2:a2:2c:
f9:16:49:08:c9:50:81:39:8f:97:16:41:6e:d6:eb:
ef:a8:5b:f4:2d:4c:1b:04:ed:19:4c:a3:db:d0:b2:
f9:d9:53:a7:c6:73:fc:eb:8a:c1:9a:d3:98:c0:46:
ed:85:bb:80:50:99:03:65:6c:cb:a4:a3:e8:7e:0b:
3d:c0:bf:d8:2c:8a:b1:ed:58:9e:b7:7e:c0:c6:8b:
87:db:86:80:52:d7:48:09:22:1f:e0:4f:20:04:c9:
17:4d:91:65:e8:d6:8c:ad:04:07:31:4e:49:8e:39:
db:8a:ea:0c:db:cd:89:a1:07:d7:a5:78:78:93:83:
ff:86:e0:27:1b:17:42:6f:d7:84:27:06:a5:82:1c:
fa:2f:c9:5c:b3:72:78:81:69:39:22:c7:7d:30:22:
17:ac:3f:72:92:e1:56:83:03:9d:66:69:a0:21:4b:
9e:a0:35:be:70:28:4e:02:a0:42:fb:73:4e:60:40:
2e:21:f6:ed:9f:75:63:19:88:9d:25:5f:cd:5c:6a:
49:9f:b6:f1:26:bc:cf:6e:3a:55:95:23:30:e1:d1:
ff:48:98:7e:7a:71:2a:b6:0b:9f:cb:cf:09:1b:68:
64:97:bb:ed:c3:8a:d7:a9:d9:b5:b6:6b:8a:55:a8:
56:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C5:32:F2:F1:77:6C:A7:0F:DD:0A:88:17:1D:8B:58:33:BD:AA:B9
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:72:57:d6:0c:90:77:7a:5a:2a:66:8b:61:04:d7:de:03:f3:
c1:9b:cf:79:8d:d2:ca:fc:84:8e:4e:2e:49:26:01:c1:20:75:
42:a0:67:86:b4:67:43:fb:1a:f6:6e:2f:72:87:ec:b4:a6:c5:
f8:14:fc:09:1e:59:45:ce:01:34:e5:15:71:39:2f:63:cf:55:
49:4b:1f:cb:5d:10:88:4b:99:78:16:1e:60:27:ed:44:f1:2e:
e9:00:26:d4:a7:6e:d1:48:1d:4f:a2:76:cf:8c:6f:16:1f:f0:
d3:55:86:f8:10:2b:37:77:e7:2d:bc:13:af:1b:e7:30:06:d9:
cd:e5:55:d5:4b:0d:80:47:a2:2a:8e:e8:c2:7f:96:ff:dc:9f:
1d:e0:e9:a2:6b:b0:cd:e3:19:a0:4d:88:18:b3:75:6b:a1:a7:
a0:75:3d:81:62:ee:3d:40:46:74:2f:cc:02:d3:a0:22:0d:ec:
24:4b:38:2a:32:68:c6:55:2f:22:0f:13:0f:ac:5f:43:c5:46:
dd:64:61:c8:a6:f5:3f:a7:ae:9c:62:a2:1d:3b:5f:2b:bd:f3:
3b:f1:f1:2d:67:b2:27:5c:a2:61:28:fe:fb:78:9c:1a:25:08:
f1:98:0c:2a:2f:84:4c:a9:90:be:88:8e:cd:c7:06:9b:31:52:
1f:7e:0b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:39:38 2026 by rpki-client