Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json)
Hash identifier: uMKcjfPAlzc/5AMuheFkgOIjjotBVOsmSuEdSJ1/Ueg=
Subject key identifier: E0:2A:A4:64:93:F7:13:36:BB:AB:97:E0:AE:EA:1B:75:C0:2A:28:37
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 019D9B87DD2A5285A92E969D0EFB6BAA458C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
Manifest number: 0936
Signing time: Fri 17 Apr 2026 13:01:05 +0000
Manifest this update: Fri 17 Apr 2026 13:01:05 +0000
Manifest next update: Sat 18 Apr 2026 13:01:05 +0000
Files and hashes: 1: EeAR-0FuIgpREXK4CZj7bbiR324.roa (hash: nK35rOT9ZlV+vNlZLQE4MxQolHHOslBBZTHEZhrQ+LA=)
2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: d2eI1k5TCaOkphrV71TqsjNuiZNTn+4e9JWDnYclZQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:dd:2a:52:85:a9:2e:96:9d:0e:fb:6b:aa:45:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: Apr 17 13:01:05 2026 GMT
Not After : Apr 18 13:01:05 2026 GMT
Subject: CN=e02aa46493f71336bbab97e0aeea1b75c02a2837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c3:0d:61:d8:70:12:c5:1b:87:48:84:e3:ce:
38:9b:a9:6d:67:23:3b:0d:50:97:dc:f5:95:b0:d3:
22:d1:c2:01:62:b3:60:ec:70:2e:0c:14:6d:72:29:
55:a1:1f:71:67:64:ce:08:e3:f3:a2:04:37:41:48:
e0:d8:73:ba:f4:51:93:5d:9e:0e:5e:ae:e9:81:18:
99:dc:61:27:d3:48:c2:6c:3a:bf:90:3b:48:c7:36:
9e:42:0f:d5:73:c3:be:c6:f8:29:f0:52:af:4d:c8:
b2:73:97:47:b2:ee:8b:be:81:44:11:0a:d9:b1:d0:
0b:d4:31:1b:b6:87:f1:48:12:27:4e:14:d1:c7:8d:
db:8a:76:27:33:c2:3e:ba:c5:7f:a1:33:9f:e6:47:
d3:55:cb:bd:52:57:85:fb:28:53:9c:ae:1f:23:27:
1c:64:37:98:b1:5e:3d:2d:e1:e4:f8:2e:86:8b:39:
18:06:3c:8c:9a:08:d2:cf:73:6a:5c:c7:02:ee:a8:
8e:a2:81:16:cf:12:5c:c4:b6:86:e6:40:53:1e:42:
3f:3f:ec:1f:34:b6:c7:cf:00:47:b4:c6:00:bb:4f:
98:eb:23:01:d8:d1:04:8c:d4:64:55:b5:a8:d4:8e:
03:d3:5d:c9:22:82:97:c1:13:3d:11:3e:b0:53:92:
22:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:2A:A4:64:93:F7:13:36:BB:AB:97:E0:AE:EA:1B:75:C0:2A:28:37
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:13:f2:d4:9f:04:ac:27:22:d9:a4:3a:9d:1b:b5:dc:e1:54:
38:b7:0d:78:b2:eb:85:3b:74:bb:37:25:0e:31:c2:32:22:85:
22:b6:07:5b:30:50:aa:7e:b6:3d:8e:cc:9c:6f:4e:bd:c3:28:
ea:b3:33:e4:c6:fb:5e:f3:28:71:2b:24:4f:c3:e9:2c:b7:18:
d8:f4:07:bb:7f:fa:bf:1e:4d:3e:7a:7f:a0:4f:03:43:a8:38:
74:4b:6e:ae:41:a3:db:f9:8a:72:59:19:0f:ab:d7:68:90:4f:
1b:2a:39:d9:3c:9b:94:56:fb:88:04:e2:d1:95:a8:15:e6:4a:
00:94:4d:bc:d1:01:e7:b5:4f:4f:34:b4:73:dc:18:a6:ed:b6:
e4:88:10:00:13:61:08:73:aa:ad:46:5a:d1:8a:a2:3f:56:5c:
9b:3a:d1:51:6e:ff:bb:9e:b5:17:9f:cd:37:4e:57:00:e7:a5:
34:06:6a:eb:f7:71:df:6e:ad:40:c4:ae:d2:cb:e7:a8:dd:58:
99:67:0e:b2:98:e2:2b:5b:00:d1:30:0d:3c:4c:72:4f:43:03:
c9:80:a1:56:27:65:31:0b:ba:55:6b:2f:66:d3:30:3a:a7:89:
5f:c8:0b:51:93:57:0e:d6:c8:20:87:e0:21:d1:75:9b:3e:82:
f6:eb:d1:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:44:01 2026 by rpki-client