Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: B7ZZAEp6wHSl8ZMud6Y/4Uye4+3GQi2RqJMQulF8ugY=
Subject key identifier: C1:6C:6E:AB:9D:E8:8F:3C:15:A1:EE:05:C8:C0:27:A5:4C:40:7D:29
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 019CAD592CC791B8ACA8072446E5BF7002D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 10F6
Signing time: Mon 02 Mar 2026 07:00:28 +0000
Manifest this update: Mon 02 Mar 2026 07:00:28 +0000
Manifest next update: Tue 03 Mar 2026 07:00:28 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: Zg5k8YVeyhmQ6dG59p2d1M3LNOoC7Gp/1ihLRFgRyi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:2c:c7:91:b8:ac:a8:07:24:46:e5:bf:70:02:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Mar 2 07:00:28 2026 GMT
Not After : Mar 3 07:00:28 2026 GMT
Subject: CN=c16c6eab9de88f3c15a1ee05c8c027a54c407d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c0:3c:3f:9c:1f:66:7c:c6:b4:f4:fe:d9:14:
44:5e:dd:12:70:c3:3d:99:a3:77:d8:97:d1:e8:39:
f1:0c:1d:6f:26:11:6b:2f:3a:c7:07:95:d4:63:05:
f2:1e:47:37:e6:f4:8f:a5:07:da:5e:b1:52:93:af:
28:54:7e:90:dc:e4:9e:e2:76:eb:1c:64:22:6e:de:
cb:40:b1:4d:13:bf:ec:07:8f:e6:1c:6b:11:0d:c3:
75:4d:ee:c0:62:d0:82:d8:1d:99:b6:c0:b6:5d:29:
f4:c1:98:6d:9b:6f:82:0c:ef:04:37:28:4a:ff:a2:
5d:59:5a:c8:1f:64:cc:82:7d:3a:26:7b:53:4a:b0:
34:69:7d:66:f1:9e:48:11:1b:01:bf:4d:94:a5:0c:
6b:9b:9b:82:14:a9:90:fb:fc:65:41:8d:f8:98:01:
d8:53:94:d8:ea:ac:92:dc:3f:7d:32:9f:c7:25:7f:
a5:63:42:fe:a2:19:e9:3a:31:6f:2f:94:26:34:c1:
87:d8:5c:04:8d:36:67:f6:61:9e:f2:b3:f8:52:34:
83:ac:26:7b:3c:7a:48:b0:6b:d2:21:ce:b4:2d:b4:
6c:f7:df:e0:b6:b1:24:41:0b:8b:d0:0f:cc:fe:f9:
af:5f:1d:01:62:b1:f0:f4:48:72:0c:7a:fb:2d:04:
04:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:6C:6E:AB:9D:E8:8F:3C:15:A1:EE:05:C8:C0:27:A5:4C:40:7D:29
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:10:23:ae:65:e3:ad:ad:8d:fe:2b:3c:64:75:24:5c:6b:5b:
8a:b4:b3:30:be:b5:4a:3f:80:23:87:0d:e7:c9:e0:e2:5e:cf:
e8:11:1a:9b:86:6f:aa:e9:ab:d5:0f:8b:3b:e5:e2:3a:a9:5c:
61:7b:c5:fd:82:8b:52:bc:d1:ac:9c:80:96:78:45:e1:ec:5a:
20:37:43:4b:7e:ff:89:d7:bd:be:cd:5b:92:db:f4:d8:5b:10:
29:d9:19:b2:0e:84:88:d5:ef:b0:c6:b1:74:f3:ae:f2:69:7a:
d7:20:28:cd:31:2e:01:29:19:91:cd:d7:04:c4:0d:47:51:ba:
f9:9a:63:be:52:59:c2:44:17:3d:06:32:13:31:df:8e:81:d3:
d6:8f:7b:65:33:f8:92:a2:bc:70:60:74:1c:97:e6:f9:96:1d:
49:ca:06:3f:3e:33:a9:a4:e0:d2:e9:df:36:c4:53:c5:95:e4:
07:26:ae:3e:6f:e2:91:2a:77:07:80:8a:d1:92:71:a0:ea:23:
f6:91:e9:9d:13:54:65:a2:61:5a:af:33:16:e5:e6:41:3d:5f:
f1:1e:57:78:54:e0:98:5d:3f:05:72:1a:c8:65:d4:5e:93:59:
9f:ca:89:14:6c:e1:0d:e9:f8:d5:e1:fc:b4:b7:b6:7a:30:97:
21:d7:e1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:49:44 2026 by rpki-client