Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
File: ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft (raw, json)
Hash identifier: 1/2ueVXIRipaJfcwUlq1C+NxGAZ6cXSnVyAOKDAF7Ts=
Subject key identifier: 86:FF:90:E2:F0:3F:EC:21:1F:02:B7:20:A1:61:8D:73:BB:9B:65:EA
Authority key identifier: 64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9
Certificate issuer: /CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9
Certificate serial: 019D9AE2DAD25F07B947070DC53D4BA84B28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
Manifest number: 1850
Signing time: Fri 17 Apr 2026 10:00:51 +0000
Manifest this update: Fri 17 Apr 2026 10:00:51 +0000
Manifest next update: Sat 18 Apr 2026 10:00:51 +0000
Files and hashes: 1: ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl (hash: hVvEVdQqEDKSQ+DwTV6LLVKrynJMVwPiBxcHKEWbcQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:da:d2:5f:07:b9:47:07:0d:c5:3d:4b:a8:4b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9
Validity
Not Before: Apr 17 10:00:51 2026 GMT
Not After : Apr 18 10:00:51 2026 GMT
Subject: CN=86ff90e2f03fec211f02b720a1618d73bb9b65ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0f:f0:9e:33:fc:3a:9c:b1:a3:c1:a8:f7:d4:
4d:28:19:43:e9:8c:ad:b9:3c:42:c3:52:e6:8b:45:
74:5e:0d:58:49:c3:5b:e7:0d:aa:12:9c:28:cc:9b:
ac:a7:5b:ad:f7:0f:17:b1:38:99:2b:89:c3:d6:4a:
3f:84:4e:18:3e:73:aa:41:3f:51:89:84:b5:bb:23:
5b:92:47:35:18:17:68:3c:15:9a:fa:7e:0b:26:d0:
a8:99:fd:ae:ea:3a:21:98:8f:73:7d:87:73:cd:6a:
26:a6:c0:3c:de:3c:90:5c:3e:c0:72:81:68:7f:d6:
01:e0:bc:52:fd:04:b9:f8:d0:53:ea:51:a7:10:04:
9b:c7:f7:39:ca:50:90:29:a7:3f:98:25:69:cc:a6:
e8:e9:b5:4f:3b:25:b2:a7:71:c5:5b:3f:0d:af:d6:
7b:28:04:79:b1:f7:f5:5f:c9:3f:6b:f9:2e:2f:c2:
bf:fe:cf:9e:fd:4e:7a:9c:18:a9:a1:f9:b1:a2:e0:
da:27:a7:c6:f0:b3:fa:d3:24:19:93:d4:5c:16:77:
d6:9f:5f:36:18:00:d1:ec:45:15:77:59:ba:e9:53:
ed:76:19:f1:c4:4a:37:2f:ee:02:55:17:80:12:1c:
b1:59:a4:79:e2:9b:db:9d:66:13:41:57:73:f6:da:
26:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FF:90:E2:F0:3F:EC:21:1F:02:B7:20:A1:61:8D:73:BB:9B:65:EA
X509v3 Authority Key Identifier:
keyid:64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:69:56:0b:75:c0:36:1a:f9:74:71:eb:3d:03:21:9e:6c:44:
a8:90:bd:e1:71:07:11:48:77:40:c9:34:1b:69:f9:37:5e:6c:
99:9b:ab:db:73:39:ba:5e:07:79:52:9b:e5:1b:ab:cb:3d:18:
63:e0:54:7f:e2:da:56:47:ed:ef:85:a4:14:41:99:2d:8d:ee:
44:59:95:78:68:f4:89:9f:2a:fc:19:af:08:4a:15:f1:0f:b1:
5a:3c:b8:ae:41:c4:01:a6:90:19:55:57:0e:a8:85:c4:8c:04:
1f:d5:c1:07:15:f6:e1:6b:46:17:23:36:35:1a:c4:dc:ef:10:
dc:d8:77:09:4a:93:26:b6:cc:87:3f:63:34:f8:c4:df:18:23:
1f:0e:e4:ef:f9:8e:c7:e2:ad:96:7a:47:f4:39:7d:48:b6:57:
a9:76:98:f6:a6:35:2d:55:20:37:50:7d:a6:6c:5d:56:50:56:
22:bc:9e:cc:13:09:d9:33:aa:3c:9f:09:9f:a7:34:12:da:d8:
a7:8a:6d:2a:e3:ae:c9:90:b5:26:ea:8c:f5:09:fe:7d:f9:38:
5c:44:26:3e:53:cb:5d:00:3f:e4:ff:b6:48:d2:f8:9d:a8:19:
ad:fc:67:93:4e:2d:54:95:94:d3:3c:73:dd:92:2a:6b:a5:59:
82:12:0e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:30:51 2026 by rpki-client