Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
File: Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft (raw, json)
Hash identifier: jzA4b6LBSgd+yTu11zr0Gsu8rhp6EDhUqhNDL1sOtc4=
Subject key identifier: 6A:3F:AD:A7:98:B6:99:D3:94:8A:76:CC:5F:B9:C2:30:B8:B9:7F:AD
Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Certificate serial: 019D992B0C447B02877265D13598A66E7570
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
Manifest number: 0ED6
Signing time: Fri 17 Apr 2026 02:00:28 +0000
Manifest this update: Fri 17 Apr 2026 02:00:28 +0000
Manifest next update: Sat 18 Apr 2026 02:00:28 +0000
Files and hashes: 1: Nl9enAQ5fxiyA3bgN-Zg8I6GiQM.roa (hash: A7OWUX4yXC7G/EYKNd9MidD+EY701iJQatSHjQ+zADU=)
2: Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl (hash: egRYmy+hMcKr3k5kjyGD/Pxc+GWp64Lig0ixV7TI2Fg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:0c:44:7b:02:87:72:65:d1:35:98:a6:6e:75:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13
Validity
Not Before: Apr 17 02:00:28 2026 GMT
Not After : Apr 18 02:00:28 2026 GMT
Subject: CN=6a3fada798b699d3948a76cc5fb9c230b8b97fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6e:54:0c:c1:d1:16:86:28:83:b6:3b:f7:fc:
b1:31:8c:26:3b:2d:63:45:97:23:e8:6a:3d:c1:cf:
b4:da:3e:3d:53:78:ec:ab:cb:d3:68:66:c7:e4:16:
77:12:ee:27:bd:4a:ed:4b:af:31:2d:d6:7b:3e:a5:
f5:f8:84:cc:71:b2:3b:d5:1c:2f:60:6c:a7:45:89:
d8:0b:0f:b1:c3:29:2f:d5:6c:0f:5e:94:b5:ed:8d:
54:d2:75:7a:dc:cd:c8:12:e2:5c:82:33:c7:6e:73:
dd:46:26:ef:fb:09:12:85:ba:42:de:6d:c2:a0:a3:
d3:75:50:82:3e:12:fe:f0:7e:96:d3:e5:85:b3:0d:
df:d3:b0:d4:09:05:68:f5:d7:7d:6c:21:44:79:9c:
9b:8f:1d:3f:51:b3:d0:38:2e:68:8b:70:c6:bf:b4:
da:7e:e7:c5:a3:70:4d:1b:95:69:6a:e2:58:5f:45:
df:3c:f2:75:36:72:69:37:db:f1:e4:cd:74:5f:1c:
0c:0b:58:d4:01:44:3a:f0:6f:d7:b8:24:21:21:1e:
92:3f:a2:8c:37:84:8a:0e:99:48:da:12:b8:09:9a:
91:20:58:a3:59:bc:00:79:52:ad:e4:07:ca:84:ac:
23:ac:01:f1:c7:e9:16:16:6a:e9:a0:d8:8f:fd:3f:
c1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3F:AD:A7:98:B6:99:D3:94:8A:76:CC:5F:B9:C2:30:B8:B9:7F:AD
X509v3 Authority Key Identifier:
keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:34:76:c0:ac:a1:de:02:4e:62:62:f3:c0:9e:3d:a2:1a:31:
80:ce:b5:35:bc:07:77:75:dc:6d:dd:7e:64:4a:38:34:28:81:
07:70:0a:b6:be:02:b1:8e:41:89:aa:6d:4a:f1:57:5a:f6:c8:
f2:ca:d5:65:cd:cb:a5:fe:8b:8f:1b:19:aa:30:b8:4b:e6:7c:
f6:cc:a5:2c:30:b5:a8:e7:00:e0:03:1d:cf:8a:c7:2b:6c:50:
f0:89:83:eb:af:b9:5f:3a:dc:e3:c8:d6:81:93:59:9c:e7:97:
f6:a9:d3:a7:ae:56:4c:33:10:a0:e9:33:3e:94:52:42:20:32:
57:0d:44:af:a0:3f:a8:52:d0:4e:72:1a:d2:5d:5b:f6:58:d4:
ec:9d:8b:87:83:20:8a:23:6c:32:f8:21:77:8f:eb:d2:bc:6a:
6b:94:80:7e:de:30:4b:1d:cb:17:c4:30:0f:7a:fd:ff:80:07:
8e:23:13:05:97:a9:2a:82:4a:26:16:17:95:fd:fe:9b:19:b6:
68:84:1f:20:77:24:d6:45:64:0e:d0:ed:17:4b:32:4c:a4:95:
17:28:f6:f5:78:7e:25:0c:90:9e:b0:14:d3:1a:17:8b:af:66:
1f:49:32:76:b2:94:9b:86:b0:57:81:b7:a5:1f:af:3c:ce:32:
db:a2:92:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:54:24 2026 by rpki-client