Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
File: Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft (raw, json)
Hash identifier: R8tyOFWnPdXdWztyGyn4GWgIY4U3/YOFFD+cish76wg=
Subject key identifier: 86:DF:58:2A:B1:FE:CD:58:68:73:7A:DD:CD:65:7C:89:BC:FF:91:3D
Authority key identifier: 67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
Certificate issuer: /CN=6765a21b561ba8665cf79fbf44c31959de28f216
Certificate serial: 019CACB4867382D0349EAB267AF1C9F138D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
Manifest number: 0990
Signing time: Mon 02 Mar 2026 04:00:37 +0000
Manifest this update: Mon 02 Mar 2026 04:00:37 +0000
Manifest next update: Tue 03 Mar 2026 04:00:37 +0000
Files and hashes: 1: Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl (hash: NNv1nxvw8/MU7WNSGYYRk/cdwsX6fuiNj9NTIwcnNG0=)
2: q-N4SkxuSPlKg7X5WqFUQAnFD7s.roa (hash: GLAdjtugl2x3FM2Zba5Eclt3UAYEj3C31Itsrx0oxUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:86:73:82:d0:34:9e:ab:26:7a:f1:c9:f1:38:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6765a21b561ba8665cf79fbf44c31959de28f216
Validity
Not Before: Mar 2 04:00:37 2026 GMT
Not After : Mar 3 04:00:37 2026 GMT
Subject: CN=86df582ab1fecd5868737addcd657c89bcff913d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ef:4d:3a:56:23:f4:59:37:5d:b7:f9:06:d8:
11:fc:df:d1:e7:dd:ac:ae:a2:bd:05:89:b6:7d:d5:
e7:c5:be:3e:0c:bd:36:84:97:02:c0:ca:33:7a:45:
5f:f4:d2:41:52:cf:ab:fe:36:46:67:4b:67:0e:a6:
90:2e:89:7f:bd:18:3c:2c:58:7d:18:c1:01:77:6a:
64:a1:8a:15:66:fb:98:a6:9b:9e:8a:8b:d7:f1:4b:
f0:dc:c0:00:c1:33:5c:e4:cb:e6:54:62:fb:81:38:
bb:1d:dd:0b:ba:88:8a:6a:e2:24:7f:4c:ed:23:65:
cc:d7:f3:4e:b1:1c:f4:8e:1d:33:97:24:8b:61:b1:
ce:c6:84:7d:dd:a8:46:a9:8b:47:25:93:dc:be:b4:
41:5a:97:74:e0:42:29:3e:9e:73:d2:32:f4:07:46:
5c:6a:d9:72:e4:31:c1:5a:aa:80:57:b7:3b:66:74:
f7:7f:90:cb:31:6a:39:a8:0a:a7:54:82:ab:1b:e0:
a4:46:c5:a0:e0:32:3b:59:b8:51:49:03:b3:48:d8:
40:75:37:e1:2c:62:53:9a:3b:79:33:7b:89:f1:b6:
aa:20:1c:82:67:a6:0a:31:56:cf:64:3d:38:b1:35:
15:39:12:eb:47:23:9c:e3:2c:e7:59:98:c1:21:fd:
a9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DF:58:2A:B1:FE:CD:58:68:73:7A:DD:CD:65:7C:89:BC:FF:91:3D
X509v3 Authority Key Identifier:
keyid:67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:64:af:d6:1b:18:01:07:61:bc:c1:9f:77:c4:88:f9:84:ae:
cb:69:68:9e:2b:ac:15:98:8d:be:2b:de:39:49:a2:9c:77:5d:
4b:4d:10:b6:f0:41:91:a3:59:44:ae:f3:ff:ea:56:88:fd:a7:
2f:90:d5:d4:38:bc:e9:73:43:a1:4b:5a:21:9e:1b:71:4c:53:
ac:29:59:09:70:13:17:a4:97:09:4d:76:a1:1a:07:4b:2d:27:
5e:fc:85:8c:a2:c8:7f:4b:c5:57:da:97:6b:d4:4e:f9:3c:51:
34:cc:1d:5f:a4:86:fc:23:52:98:fa:c6:66:e9:22:2a:0e:f6:
90:b2:7c:59:f0:78:fe:63:12:a3:67:1b:1c:85:e7:e9:66:53:
56:bc:20:b0:72:15:55:c7:5b:63:3d:39:b8:49:39:d4:d2:14:
b0:5a:f8:8a:2c:0e:87:4c:04:fe:12:44:2a:55:53:57:76:1f:
b0:e9:d2:7a:92:a0:f3:4b:7b:e4:65:27:49:d9:2b:7b:20:13:
00:9f:b8:d4:f9:76:18:6e:e3:e7:d7:59:85:4a:ff:6a:e5:73:
fd:91:3d:fa:80:99:2d:09:10:df:1a:b4:7c:ba:76:00:8b:d0:
2a:fa:f1:22:2e:2b:38:06:8c:ac:e1:22:62:d2:9e:90:97:a0:
6b:ea:0d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:39:39 2026 by rpki-client