Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: 5exXtexSc3e+TDypHiC+QMs2nNqHn2KOYYdx/9CUlZo=
Subject key identifier: 05:FE:5C:5E:1C:94:9E:EE:47:29:0A:ED:87:31:B3:2D:D0:80:8C:89
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 019D9AE2C56C30B50A3FA0085206F1692F54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 1076
Signing time: Fri 17 Apr 2026 10:00:46 +0000
Manifest this update: Fri 17 Apr 2026 10:00:46 +0000
Manifest next update: Sat 18 Apr 2026 10:00:46 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: KpiOnilTE1rOcUoVDFl3Qqy2uWBBl/NIFOXuZ7LNpXE=)
2: 5iwb34X7et8A-ZwDnoqtR_xqPsw.roa (hash: WeDprzbgEpDRHXWUflU5QUsB4X7FqUJMR6LQN8vcE2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:c5:6c:30:b5:0a:3f:a0:08:52:06:f1:69:2f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Apr 17 10:00:46 2026 GMT
Not After : Apr 18 10:00:46 2026 GMT
Subject: CN=05fe5c5e1c949eee47290aed8731b32dd0808c89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5c:65:82:94:c2:95:47:fa:e6:c2:a1:40:5f:
b0:ab:22:33:79:78:f3:02:aa:e3:36:e9:4d:37:89:
df:70:90:89:04:e2:45:97:49:18:a7:37:66:33:d0:
94:a7:72:56:e1:51:9b:4d:85:ef:31:b3:da:31:b8:
46:db:0f:35:44:9c:cd:ea:da:e7:f2:4e:dc:7e:94:
5a:56:a3:bf:e7:8b:53:00:c5:df:d1:3c:2c:24:47:
15:c7:f1:d8:08:03:94:20:d4:37:cf:f8:ae:57:e9:
1d:6e:83:90:be:ef:c5:dc:1b:e5:f2:5d:bd:f0:6a:
67:50:3d:90:15:86:f9:b8:e0:5c:99:66:58:5b:c4:
09:dc:ed:ed:e3:e2:25:a3:da:fe:26:2a:f4:cb:46:
6b:79:2a:cd:87:6b:9e:4b:1f:fb:75:45:6f:5b:8c:
9f:e3:5d:11:e0:60:3b:54:ef:9c:e6:fc:a9:d1:26:
4a:f3:9c:f5:ec:bf:8c:da:b7:ec:60:b3:15:d1:f0:
e8:46:f0:8a:0c:80:8e:fa:9d:90:96:5a:3f:99:c7:
c5:65:f2:97:48:36:d7:0a:c6:29:5e:0f:61:ac:03:
3f:21:3b:2c:06:ad:41:f8:f5:86:c7:f1:e8:be:ee:
48:7b:01:a0:1d:13:fa:d3:64:82:69:62:1e:54:ea:
05:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FE:5C:5E:1C:94:9E:EE:47:29:0A:ED:87:31:B3:2D:D0:80:8C:89
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:c7:c2:f5:fd:da:72:b9:1b:91:bc:a9:c5:41:ef:c9:13:96:
ce:1f:6a:c6:49:40:e0:21:79:c7:69:47:07:f4:f2:4c:c4:c5:
59:1e:f7:38:8b:58:60:fc:6e:b3:af:8b:0e:c9:01:2e:7a:c9:
fe:93:fa:28:e6:1d:2d:95:3e:bd:c2:00:36:36:31:81:79:aa:
55:5a:49:40:1e:96:59:07:a3:9a:b3:c4:a4:63:79:c7:ea:77:
53:43:57:c2:6c:c3:34:11:68:d1:89:41:b5:79:74:49:8e:ed:
b2:18:fa:5a:c6:65:ed:2b:1e:b6:ce:73:f3:ca:b5:40:09:d4:
5a:b4:6d:e8:94:8f:54:b1:08:b4:c5:bc:a4:f3:e9:13:8b:6b:
04:26:89:c3:f4:d6:ff:a8:47:34:42:6e:e5:95:d6:3c:57:c8:
97:e6:7d:4e:72:ab:ca:99:1d:52:f2:c1:a4:0f:2a:6f:fb:c9:
e7:65:8f:c1:db:f5:8e:0f:16:a6:64:e5:e9:98:1e:6c:37:9c:
74:7d:ea:44:b1:8f:c3:8a:30:c4:72:e4:1f:7a:da:fc:ae:53:
71:2c:ad:a4:39:21:c2:76:8e:b9:fd:b2:a0:03:a0:7d:1e:c6:
b5:ad:d2:cc:35:8a:ed:1a:1a:ef:96:42:f8:0b:26:2b:75:4d:
2a:c0:c5:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:54:14 2026 by rpki-client