Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
File: Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft (raw, json)
Hash identifier: dPZ+abnKVlEupbF55/V03zGQW5HE7HfeZiGYmK/nsYc=
Subject key identifier: 70:9D:6E:16:63:AF:FF:C3:43:51:93:9A:69:66:02:E8:74:26:4F:CD
Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Certificate serial: 019CABA258B75AC021B33538F205F3685469
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
Manifest number: 0E5B
Signing time: Sun 01 Mar 2026 23:01:09 +0000
Manifest this update: Sun 01 Mar 2026 23:01:09 +0000
Manifest next update: Mon 02 Mar 2026 23:01:09 +0000
Files and hashes: 1: Nl9enAQ5fxiyA3bgN-Zg8I6GiQM.roa (hash: A7OWUX4yXC7G/EYKNd9MidD+EY701iJQatSHjQ+zADU=)
2: Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl (hash: Qy2V/65l/QLY3j0/SajQiwOkzv4ecm8jquZ6XtVVfLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:58:b7:5a:c0:21:b3:35:38:f2:05:f3:68:54:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Validity
Not Before: Mar 1 23:01:09 2026 GMT
Not After : Mar 2 23:01:09 2026 GMT
Subject: CN=709d6e1663afffc34351939a696602e874264fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:df:f9:6c:60:7e:b5:76:a3:40:37:23:1c:58:
7d:17:bf:7d:90:79:6b:14:7d:8b:fa:54:4d:39:8b:
a1:64:8d:5e:5d:77:32:b3:bd:18:71:09:12:56:24:
92:0a:c6:fa:92:7a:95:a5:0e:ab:80:a8:5e:79:a6:
db:7e:3b:91:5d:36:f7:ac:c5:5b:43:88:7d:91:85:
8f:de:0a:46:c0:ef:b1:11:89:12:a5:80:76:92:d1:
db:59:9a:f7:64:d3:b4:f6:54:34:f7:68:6a:46:04:
dd:93:3f:99:4f:68:70:db:bd:25:b0:76:8c:c5:a1:
cd:ec:c9:ab:30:60:fb:a4:28:de:3d:16:d5:98:da:
7e:62:8d:62:26:6e:1c:2d:c4:1f:e0:ab:62:66:a5:
07:57:43:00:4a:9b:a5:b5:59:3a:c2:b6:28:72:a7:
31:1e:48:1a:ae:95:79:57:a6:f1:c8:70:ea:95:a1:
e4:d1:6c:ff:68:2f:aa:fc:47:e3:43:2a:04:96:0b:
eb:ad:05:79:9d:0c:40:ca:3d:0e:41:9a:91:a4:f3:
bf:86:a3:24:68:73:d6:57:3e:14:8e:42:04:5b:07:
45:0c:06:cf:e9:0a:fc:c8:84:1b:84:97:e2:26:5d:
02:86:e8:da:c1:07:6b:5e:55:82:5c:4d:70:9d:70:
6a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:9D:6E:16:63:AF:FF:C3:43:51:93:9A:69:66:02:E8:74:26:4F:CD
X509v3 Authority Key Identifier:
keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:b6:b1:53:eb:68:24:54:4d:ff:2c:b3:af:3f:74:b4:eb:1b:
b2:ab:e4:af:c8:a4:c7:7b:f6:5f:2c:6c:6a:3b:46:29:fe:97:
1e:51:a0:69:63:de:ee:03:9e:b6:93:61:5a:ee:f1:40:f3:ab:
ed:30:0f:47:bd:65:b9:ef:98:1d:29:ce:1b:ca:1f:8f:00:5b:
82:15:53:d3:79:7a:24:41:ed:e4:2c:14:51:0b:fd:c1:ca:ba:
69:83:c5:57:10:a9:5c:87:5e:66:ba:39:07:b7:bb:5a:38:63:
c9:e6:1a:18:d6:63:3d:5b:c0:3c:d3:77:b3:c8:a3:dd:f8:c7:
47:1d:02:c0:d8:fc:e8:41:43:03:f4:43:92:52:d9:be:16:3c:
8e:fb:a4:32:90:83:19:c1:78:1c:37:ee:a1:8b:75:6e:01:fd:
8c:c2:75:5b:52:1f:26:1a:bb:d0:06:5b:c0:42:a3:48:97:62:
93:ea:1d:b5:63:14:6f:c1:b7:ba:12:6e:1a:b9:59:f9:9a:be:
c8:16:a3:a3:f4:20:6a:e8:e8:6b:53:a8:5b:2c:7f:d1:6a:53:
06:95:cf:75:c1:7a:08:74:44:94:91:ae:ce:15:2f:b4:11:81:
f5:af:76:5c:f8:43:a5:1b:88:f2:bd:72:58:97:f4:b7:2f:81:
77:12:f3:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:07:12 2026 by rpki-client