Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
File: Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft (raw, json)
Hash identifier: UDcBqVqQSVeQr60adA1namoS8+CNn8tRd2ykRSgz9BI=
Subject key identifier: 87:63:B6:5F:44:68:31:09:F4:2A:66:B9:4D:6E:D8:FA:B9:2D:2A:89
Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Certificate serial: 019EC0A3E49D0450BB4872B6A285F29F3492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
Manifest number: 0F6F
Signing time: Sat 13 Jun 2026 11:00:26 +0000
Manifest this update: Sat 13 Jun 2026 11:00:26 +0000
Manifest next update: Sun 14 Jun 2026 11:00:26 +0000
Files and hashes: 1: Nl9enAQ5fxiyA3bgN-Zg8I6GiQM.roa (hash: A7OWUX4yXC7G/EYKNd9MidD+EY701iJQatSHjQ+zADU=)
2: Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl (hash: SR/HjwVrNIj63JKldHOGSZ3Knv0ytvAnkVXhL0LLEOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a3:e4:9d:04:50:bb:48:72:b6:a2:85:f2:9f:34:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Validity
Not Before: Jun 13 11:00:26 2026 GMT
Not After : Jun 14 11:00:26 2026 GMT
Subject: CN=8763b65f44683109f42a66b94d6ed8fab92d2a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6e:33:ca:9d:10:76:68:7f:d8:0d:81:ab:77:
c9:92:d2:ad:ff:ab:5a:1d:71:23:da:de:d1:2c:ac:
5c:a2:64:5a:74:be:cd:61:df:9e:9d:ff:c1:80:58:
af:9d:ea:43:d8:b3:61:37:14:37:fb:ce:b7:1c:82:
93:a4:59:3a:7a:fd:85:9e:82:78:27:0b:cc:d5:30:
70:ed:76:b1:ac:08:79:9c:7f:cf:2e:95:d1:a3:42:
83:e3:4f:53:19:32:2a:a2:8a:93:b2:98:5a:0b:83:
98:51:f0:a3:77:59:9a:81:ec:9d:a1:29:8a:ac:b3:
f9:b5:87:07:63:d5:22:29:7b:60:65:2c:3f:ba:7c:
07:47:be:ae:fd:20:39:75:d7:de:34:69:33:52:c2:
80:e3:1d:12:18:f2:a0:77:9e:80:cd:7e:5d:86:73:
ed:02:49:b1:47:cb:1f:14:de:e0:3d:f1:dc:26:b5:
ad:76:70:60:f2:cc:b3:52:14:f5:27:de:87:2c:b9:
4a:8d:ac:fb:8f:70:e2:5b:98:ba:9c:3f:ad:a6:d2:
a8:a4:04:d1:72:de:87:dc:f3:c0:d4:76:03:ed:0a:
22:2d:d1:1a:ba:a1:b9:bd:f3:e2:41:79:51:6b:38:
4c:1a:d1:78:47:49:86:94:1f:3f:87:dc:d3:7a:e5:
3e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:63:B6:5F:44:68:31:09:F4:2A:66:B9:4D:6E:D8:FA:B9:2D:2A:89
X509v3 Authority Key Identifier:
keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:88:57:16:ac:0e:dc:e2:ba:59:5b:a1:d5:4b:a4:4e:9d:1e:
36:53:e6:b2:c0:a9:26:15:7c:48:82:d9:3a:74:14:11:c3:7f:
90:54:de:2a:c0:d3:fd:89:e4:a8:5c:9f:8b:10:ef:c6:49:69:
30:ce:a1:da:96:4e:6e:14:a5:df:e2:6c:c6:f9:23:9b:69:a2:
a7:5f:9a:a4:43:3d:bb:dc:5d:f7:11:cd:33:df:90:a1:bc:2a:
73:7f:da:eb:c3:1e:10:51:23:9a:12:6a:4d:58:e9:34:1a:d1:
f5:65:3f:22:50:dd:a9:ed:ac:32:b7:10:7d:35:19:b6:9d:e0:
15:a3:81:01:6a:70:03:2f:be:f4:e1:86:d7:09:9d:eb:57:65:
eb:ae:ad:f9:da:32:cd:de:9c:de:e6:4d:24:2f:20:33:81:ec:
f5:18:be:68:87:fa:bb:8d:fd:aa:83:65:8c:ca:c5:e6:08:d2:
f2:ed:d4:b0:50:ba:ed:e7:fc:69:df:de:24:e4:6d:7f:fa:cf:
b8:5b:c7:46:db:44:5d:48:16:58:26:56:77:9e:66:fd:b8:2c:
03:0d:c2:a1:74:b3:55:92:15:da:24:e6:3b:a2:8e:51:ec:02:
60:7b:94:c4:f3:22:b2:04:a6:79:40:b3:ce:86:4c:ae:72:13:
1d:5c:93:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:57:09 2026 by rpki-client