Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
File: Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft (raw, json)
Hash identifier: eMoP8kHamcHmMpCwP4UkBythZFvPHaWx0kSvEIFPNRs=
Subject key identifier: 0B:FE:A5:47:40:C5:20:86:15:B8:05:2B:99:2B:F8:96:6E:7B:5E:59
Authority key identifier: 67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
Certificate issuer: /CN=6765a21b561ba8665cf79fbf44c31959de28f216
Certificate serial: 019D9C2C5322D17780594DA4E0FDFF816484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
Manifest number: 0A0C
Signing time: Fri 17 Apr 2026 16:00:43 +0000
Manifest this update: Fri 17 Apr 2026 16:00:43 +0000
Manifest next update: Sat 18 Apr 2026 16:00:43 +0000
Files and hashes: 1: Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl (hash: D4ikdz5ddcc8w5GeLf0kGQLFYHiWr9JlO1Ngo8QQEt8=)
2: q-N4SkxuSPlKg7X5WqFUQAnFD7s.roa (hash: GLAdjtugl2x3FM2Zba5Eclt3UAYEj3C31Itsrx0oxUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:53:22:d1:77:80:59:4d:a4:e0:fd:ff:81:64:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6765a21b561ba8665cf79fbf44c31959de28f216
Validity
Not Before: Apr 17 16:00:43 2026 GMT
Not After : Apr 18 16:00:43 2026 GMT
Subject: CN=0bfea54740c5208615b8052b992bf8966e7b5e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:72:1a:d0:32:30:38:76:f5:71:35:35:2a:0d:
61:24:30:f5:55:10:96:1f:dc:81:13:64:7c:c5:a7:
7c:40:a2:ab:ee:05:62:6b:46:3d:01:4b:25:d7:95:
bc:f9:fe:26:8e:59:84:e3:19:92:f7:53:1c:cf:c6:
ee:c5:0f:d3:82:b7:eb:f2:03:09:a8:f3:33:74:ef:
d7:a7:d1:a7:eb:29:c2:09:24:ad:34:d8:39:5e:d9:
fb:d5:82:a8:5c:ad:0b:d9:47:47:e3:10:a5:2f:68:
67:ff:69:e9:26:2d:2c:a2:2a:88:ac:54:f5:05:17:
7e:52:32:24:ad:f7:8a:d5:22:4c:dc:a7:8d:cf:bd:
c4:2e:cd:4b:57:1b:d6:19:60:ab:3a:5b:e1:55:0c:
01:9f:58:bd:f3:05:e5:90:a1:10:b3:3c:e6:c3:e8:
6d:0d:59:95:ad:c8:2d:50:d4:d0:be:e7:27:23:0f:
f8:17:dc:3d:75:53:54:dd:55:62:4b:0f:af:ee:fd:
37:bc:23:70:2e:be:f6:88:63:29:e5:b1:03:18:88:
77:4f:e4:f4:11:28:9d:34:47:d7:68:ab:45:ae:56:
f9:4a:20:be:bb:a8:97:8e:4b:ad:b2:8c:ad:98:17:
ca:78:c4:59:c0:1a:e3:99:a3:ec:cc:b0:a1:47:7c:
df:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FE:A5:47:40:C5:20:86:15:B8:05:2B:99:2B:F8:96:6E:7B:5E:59
X509v3 Authority Key Identifier:
keyid:67:65:A2:1B:56:1B:A8:66:5C:F7:9F:BF:44:C3:19:59:DE:28:F2:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2WiG1YbqGZc95-_RMMZWd4o8hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8b89c-8268-402b-aa26-ead041774e07/1/Z2WiG1YbqGZc95-_RMMZWd4o8hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:59:f0:67:c9:93:e5:02:fc:48:cb:55:7f:fa:27:4d:1d:45:
10:47:55:a7:97:ad:c8:3d:6d:e0:8f:36:42:77:40:64:d0:e5:
cf:16:28:3f:27:f1:0a:44:d3:5d:18:98:04:7e:c9:e1:dc:2e:
ae:f6:14:1e:3c:4e:f3:6c:52:f2:37:e8:60:83:ac:7c:89:64:
d3:7b:61:a6:c5:28:cc:b6:81:b9:c3:8a:1a:d5:b4:0c:d9:24:
e4:ca:c1:62:ac:8e:ec:8b:2f:44:62:b1:52:64:e0:ba:73:39:
0e:27:05:e1:45:62:dc:45:4a:71:75:56:68:5b:27:b9:c8:bc:
df:a5:bb:3d:48:bd:8b:af:4b:76:47:94:fb:4d:f0:6d:ac:6f:
32:57:c3:61:a4:e1:f8:53:0b:36:ce:fd:a3:e5:bb:27:b4:2a:
a3:46:da:48:b7:be:46:b9:7f:d4:ce:62:49:f7:fc:31:be:d7:
3d:3f:ef:75:ac:33:d7:a9:c8:40:34:fe:43:c2:86:19:a3:eb:
7f:00:45:e9:46:5f:7a:c5:fa:1a:a6:6d:34:52:9b:0b:f1:26:
43:b1:9d:30:dd:23:e7:ab:e6:4e:1d:60:c2:f8:93:65:87:a2:
19:14:eb:3f:f3:44:75:2c:5f:64:39:98:9b:75:b0:10:6c:4c:
62:40:a7:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:47:10 2026 by rpki-client