Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json)
Hash identifier: s9FC3pf3yTiW5LVERTDSGEGuUjENrahy8KeRhaRsACQ=
Subject key identifier: 78:4F:20:8E:83:CC:34:50:52:C8:98:F3:84:39:8D:D6:4E:73:F4:CA
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 019CAD904E9B506A127127D81E1A22F0DFDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 08:00:41 +0000
Manifest this update: Mon 02 Mar 2026 08:00:41 +0000
Manifest next update: Tue 03 Mar 2026 08:00:41 +0000
Files and hashes: 1: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: tkMRHxs3a/9QeZJLuBW9/dZRrpVTSZwmQ6E8qJxtUow=)
2: bF8Fj85M5baKnqvJRx8XW6rb7BQ.roa (hash: f3mVln76POyyxSCx8XE3vxQpqNxsBFWRi4oixhIFTn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:4e:9b:50:6a:12:71:27:d8:1e:1a:22:f0:df:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Mar 2 08:00:41 2026 GMT
Not After : Mar 3 08:00:41 2026 GMT
Subject: CN=784f208e83cc345052c898f384398dd64e73f4ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1a:85:5a:68:0e:e9:a9:4f:26:3b:06:2d:21:
af:49:d2:96:51:49:58:05:65:1e:15:00:db:86:ab:
ff:e6:49:2d:8f:7d:9c:4d:2f:68:da:d4:9e:95:23:
c7:cf:ed:36:16:63:9d:1b:b3:3c:bc:13:9c:fb:1e:
8f:ee:15:91:7c:7a:78:12:b1:32:db:b7:8a:bb:8e:
04:8d:45:69:4f:7a:5e:ce:dd:00:d1:69:c1:56:60:
b0:c4:07:2c:8a:ca:c4:84:69:12:fe:4f:94:08:a2:
34:df:b8:8d:ff:64:1b:65:ee:79:09:0d:56:1b:c8:
54:f4:60:7d:7c:e2:31:d4:f2:37:ef:c2:74:63:2e:
12:83:1d:04:80:6d:fc:97:b0:ec:d2:30:b4:40:0e:
04:06:00:99:02:26:40:3a:08:61:35:35:fd:29:20:
be:13:03:33:47:23:06:1a:1f:92:bb:a8:8a:99:15:
c5:ab:63:f6:9e:d8:26:c6:28:62:51:49:79:f8:93:
c1:f6:2a:e9:79:47:ab:39:36:9a:40:a3:a0:c1:d6:
bc:6a:86:7a:c9:4b:b4:d9:95:e5:10:3c:1f:eb:1e:
35:ee:0d:6b:57:fb:ec:75:b1:56:4c:47:b4:d9:d5:
99:3c:30:4b:9d:02:f2:62:59:56:1c:78:63:85:20:
8e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:4F:20:8E:83:CC:34:50:52:C8:98:F3:84:39:8D:D6:4E:73:F4:CA
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:64:c6:11:86:0b:5c:15:9a:24:4a:a7:25:c2:bc:1a:a4:c8:
37:c9:dc:07:35:7a:3b:26:cc:c8:2c:de:81:55:e9:4e:27:bd:
47:ff:84:1c:a1:0a:ab:78:d4:8e:ba:38:f2:b7:bd:1b:03:59:
86:4d:50:ad:92:2f:7f:86:dd:77:80:fe:0d:db:0e:cc:7d:83:
1c:7a:66:7a:88:5b:20:f0:b6:e7:27:0d:3c:34:d8:32:70:be:
87:db:a8:77:04:10:50:4a:c5:83:bb:2a:82:89:db:6a:68:58:
4c:4e:c5:4c:70:09:06:ee:d3:ea:f2:17:73:35:26:99:44:13:
fc:47:fb:0c:30:24:2b:0c:89:76:6a:68:1a:cf:6e:96:43:57:
f5:d5:a4:4e:1d:aa:a4:b6:14:96:e6:51:7a:be:fb:eb:a4:db:
43:aa:61:4e:85:dc:79:70:f5:18:e8:9d:4a:d9:9a:f2:40:32:
d0:4d:88:09:7e:e6:ac:a5:bd:2b:88:e2:4e:d5:3c:7d:1f:3a:
35:d3:cf:26:99:b5:39:ca:77:81:1c:c4:7b:fd:74:22:e7:17:
f1:57:2c:d4:c2:4a:d2:0a:04:b1:79:8b:39:1b:0a:ab:59:a7:
30:db:a9:4e:32:09:7d:05:c6:7a:6e:3d:47:00:3a:95:6c:88:
0c:cf:f6:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:15:46 2026 by rpki-client