Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: m7lBlx6iVSBy7hedq7vd8+8CKYaSItMf2wuNodBmnjE=
Subject key identifier: E3:A9:E1:3F:F9:86:1F:F5:E1:DA:C9:A2:93:5F:DF:F6:4A:6D:29:67
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 019D992AF4E2626A23BA2AAE2652BA2EC709
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 02:00:22 +0000
Manifest this update: Fri 17 Apr 2026 02:00:22 +0000
Manifest next update: Sat 18 Apr 2026 02:00:22 +0000
Files and hashes: 1: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: Rr3oZQR5kymn4zl/I0jYCIqSZm/NVNik0OVXkSZAv2Y=)
2: bF8Fj85M5baKnqvJRx8XW6rb7BQ.roa (hash: f3mVln76POyyxSCx8XE3vxQpqNxsBFWRi4oixhIFTn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2a:f4:e2:62:6a:23:ba:2a:ae:26:52:ba:2e:c7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Apr 17 02:00:22 2026 GMT
Not After : Apr 18 02:00:22 2026 GMT
Subject: CN=e3a9e13ff9861ff5e1dac9a2935fdff64a6d2967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:33:53:a2:ca:a9:d3:56:6f:aa:ba:c7:e8:b5:
f2:f8:57:c7:8c:9f:8f:64:c5:79:97:88:6b:ac:5d:
b2:2a:d4:2d:92:68:e8:d0:c3:89:9b:1c:f8:95:69:
45:4f:95:88:40:cf:69:b0:f6:85:0d:00:f3:bf:64:
93:91:8b:43:42:5e:24:46:23:b5:76:94:9a:3a:6d:
43:c3:9f:51:df:f9:b0:bb:71:43:81:e4:2a:c4:c4:
51:06:b2:b0:ae:05:95:66:a8:0c:56:a7:ed:b8:c6:
20:1e:bf:67:e4:9e:ef:a3:f0:01:31:d8:06:05:4f:
6b:13:d6:71:e8:18:8d:2c:49:e7:6f:75:69:15:4b:
36:83:5e:59:4b:f2:c6:65:75:de:85:78:ec:55:4c:
70:06:a1:52:5c:85:55:12:f0:03:0e:01:32:01:7d:
da:40:74:8d:0c:e0:34:89:ff:d4:09:a6:e4:f4:67:
45:d3:5a:46:84:2e:1d:a9:05:6a:a5:20:fe:c4:79:
92:7d:11:d8:d0:46:76:d6:ff:6c:4b:e1:dc:c4:71:
cb:5a:7e:62:d5:df:e5:4c:a6:02:5f:76:ce:21:f6:
82:e4:3d:d4:f2:7b:ff:66:e7:1a:21:ee:d9:3e:02:
8a:9b:5b:d6:d1:99:4c:06:73:7b:9e:67:a6:ef:e3:
7f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A9:E1:3F:F9:86:1F:F5:E1:DA:C9:A2:93:5F:DF:F6:4A:6D:29:67
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:70:cf:bd:15:ee:35:c2:3e:4d:3a:bd:6c:92:2e:40:8e:7c:
eb:68:72:6b:0d:54:48:8b:1b:7e:54:ea:69:cd:31:34:65:f9:
31:12:4b:6c:f9:af:64:51:0e:75:0d:6b:1c:b5:57:aa:e4:dd:
4e:c6:92:40:5a:1b:56:e3:c4:9f:94:df:4d:f4:49:17:29:83:
fd:fe:07:cb:64:8a:38:67:74:36:b5:4b:7d:8b:67:25:e7:0f:
bf:b6:15:6e:bd:23:dc:2f:09:05:98:3b:80:57:7b:86:92:a7:
8e:c9:aa:d6:c6:0b:cf:b3:f3:81:d5:b3:a5:5c:5d:8c:3f:60:
d0:c7:0e:2a:4f:3a:4f:dd:5c:a7:68:ad:5c:8b:fb:cd:05:ea:
e9:5e:84:3f:ec:07:6e:c1:6b:53:b9:94:b6:54:5a:bd:18:a5:
be:c5:23:6d:6b:cf:ac:1d:db:bd:fb:ff:f3:cf:b9:8e:4a:1a:
ea:86:a1:13:c0:5c:78:2e:e8:16:53:44:a1:4f:4b:66:d5:d8:
0d:0a:6f:15:c1:20:f2:cb:6e:d7:05:d8:96:d4:1d:7b:5b:b3:
bb:74:0d:04:70:d2:3e:d6:99:12:04:14:c9:40:81:db:8b:d1:
ac:9c:aa:23:40:ad:9c:5c:0d:e9:b2:53:0d:69:41:8b:5c:3a:
92:72:d5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:25:13 2026 by rpki-client