Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
File: Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft (raw, json)
Hash identifier: SUE8m3X4QtQR3Bljb95dT05V6J4MvZ2GZhA8XDhUROM=
Subject key identifier: D6:EB:21:91:A5:7A:C8:65:28:F5:86:37:63:36:E1:C7:DC:65:EC:9D
Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Certificate serial: 019CAD90AC91B5E532BB2E70F622A31F7B2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
Manifest number: 0E5C
Signing time: Mon 02 Mar 2026 08:01:05 +0000
Manifest this update: Mon 02 Mar 2026 08:01:05 +0000
Manifest next update: Tue 03 Mar 2026 08:01:05 +0000
Files and hashes: 1: Nl9enAQ5fxiyA3bgN-Zg8I6GiQM.roa (hash: A7OWUX4yXC7G/EYKNd9MidD+EY701iJQatSHjQ+zADU=)
2: Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl (hash: 9fujBtrywpllpvvrMfu+lsOjMauNnxLum3uj1sAfZTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:ac:91:b5:e5:32:bb:2e:70:f6:22:a3:1f:7b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Validity
Not Before: Mar 2 08:01:05 2026 GMT
Not After : Mar 3 08:01:05 2026 GMT
Subject: CN=d6eb2191a57ac86528f586376336e1c7dc65ec9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a0:64:56:c5:45:de:f2:75:ce:13:b7:10:6c:
44:25:07:b3:3e:78:4c:bf:ed:cd:f1:bd:f8:a0:e8:
33:d5:0b:ab:66:63:65:4b:9c:6d:43:de:87:c9:24:
fc:6f:2d:5c:cb:ee:e4:9a:64:74:09:40:11:39:cc:
8f:c4:cb:0a:94:91:2e:27:57:b7:c7:f1:1a:b7:97:
c2:f0:0c:2a:4e:61:52:2f:7a:fb:bc:df:21:e7:2b:
eb:59:81:e9:4c:f2:2a:3f:82:03:4f:d9:cf:8d:36:
e3:09:2b:c4:14:98:d7:bf:66:ce:e0:16:cc:bc:ce:
66:b3:70:b9:ae:3e:56:20:0d:bd:20:c2:d7:32:86:
49:44:7a:21:7a:7a:a1:ae:cd:7c:d2:75:6d:90:d9:
cd:89:22:5e:54:e7:f5:d1:ab:c7:09:96:ff:6f:de:
e2:25:ff:32:6e:9e:e8:e0:d3:ff:45:5d:cd:61:86:
8a:53:d4:c0:f2:ef:c4:1e:a9:7b:2e:2a:23:87:1b:
24:b1:fc:61:30:6d:a5:a2:dd:fc:87:4f:67:db:74:
6e:2a:44:e9:4a:98:0d:3c:b1:6a:47:36:dc:06:7c:
1b:08:cc:75:28:3f:94:6b:5e:f0:db:3b:e9:a0:65:
4b:ca:16:2a:04:70:9b:43:aa:b0:16:9f:00:b5:cb:
8f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:EB:21:91:A5:7A:C8:65:28:F5:86:37:63:36:E1:C7:DC:65:EC:9D
X509v3 Authority Key Identifier:
keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:71:e2:f4:03:23:3a:b5:07:8f:bf:54:37:6a:91:70:e2:e2:
f6:85:72:5f:65:9f:a7:ec:90:0b:3d:1e:e9:c5:8d:f2:ee:bf:
e3:e7:fb:fc:4d:54:0e:1b:5a:17:6a:b0:3c:24:8b:45:75:11:
cb:5b:45:aa:a1:e7:14:1a:1d:3d:ce:7c:60:8e:c1:c2:b2:fa:
9b:e9:1e:89:87:6c:b7:4d:42:10:15:07:de:a7:1d:18:df:a1:
13:da:cc:06:90:0d:6c:c7:97:ee:60:09:78:af:8e:7a:96:ab:
b2:51:d3:d2:17:02:df:20:d4:29:e1:e7:9a:dc:93:27:05:ba:
eb:b4:8f:b9:ac:c5:31:3c:50:0c:04:a7:56:cf:fb:a0:d0:96:
c3:92:01:ad:8a:65:10:91:b9:36:3d:5b:5c:d5:ea:b8:d1:77:
c1:0b:00:86:c4:ed:d6:65:61:12:89:55:fd:67:d2:53:0f:19:
7d:5d:1d:41:f0:49:f3:82:97:0a:ed:4b:4b:06:57:4f:84:4f:
5d:b8:04:8b:e5:e3:41:df:52:42:39:5b:95:8b:97:75:e2:51:
6f:d9:b4:43:2d:64:6f:04:b9:6b:e5:24:ac:87:c7:d2:b9:e0:
61:35:05:bb:77:46:87:79:a8:9d:e9:e9:b8:cb:2b:1b:e3:89:
8d:b2:52:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:50:49 2026 by rpki-client