Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: fcYfnEXLhHFVtXbB00omIrTdHTGFM2QcAw/bYvMaDKg=
Subject key identifier: 87:1C:D4:4C:16:FA:3A:E4:A2:72:61:D6:37:A7:16:43:0D:BE:4C:C3
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 019EC25BFA20E1D6354D91AF07EA3DBA3384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 110F
Signing time: Sat 13 Jun 2026 19:01:08 +0000
Manifest this update: Sat 13 Jun 2026 19:01:08 +0000
Manifest next update: Sun 14 Jun 2026 19:01:08 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: lycYX5qB/2bIigsSzFHZtd1IMlCe5m/6UfGcUzfXaPs=)
2: 5iwb34X7et8A-ZwDnoqtR_xqPsw.roa (hash: WeDprzbgEpDRHXWUflU5QUsB4X7FqUJMR6LQN8vcE2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5b:fa:20:e1:d6:35:4d:91:af:07:ea:3d:ba:33:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Jun 13 19:01:08 2026 GMT
Not After : Jun 14 19:01:08 2026 GMT
Subject: CN=871cd44c16fa3ae4a27261d637a716430dbe4cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b4:c3:6a:08:23:7e:9f:67:d5:d1:55:22:92:
ca:2e:c7:06:c2:4d:bf:e5:74:11:d8:eb:2e:89:81:
5e:9f:6a:1b:88:34:3a:69:1b:fc:05:7e:8a:2d:a6:
fb:89:d5:a8:cf:d5:f7:90:25:a6:99:3d:48:03:35:
25:80:2f:ec:f9:7a:86:64:0d:62:3f:9c:88:39:05:
4a:1b:3e:f6:bb:fb:fc:1d:b7:49:9c:46:67:4b:65:
e7:f2:11:50:ee:66:90:ee:1a:f4:95:82:54:c3:1a:
d8:93:d4:4b:6d:bb:87:71:26:2c:04:a5:78:4a:af:
f1:31:36:f6:db:05:f8:10:da:38:37:21:4c:93:59:
70:4f:25:56:2e:6a:b4:55:e8:90:a3:3c:23:74:25:
48:f1:22:13:d9:bd:04:7e:a7:70:29:70:cb:9b:bd:
9e:ae:f8:0a:5e:f0:92:d0:11:65:b4:7b:54:ed:a6:
49:0c:80:fc:f8:52:ac:6e:e6:2e:f8:31:92:26:eb:
e0:44:e9:ae:f5:54:af:55:7e:3d:19:07:57:02:cc:
e0:3f:06:66:d3:59:63:1d:7f:d5:7b:05:92:95:2a:
0b:c8:6b:68:6c:7a:2c:dc:85:2a:d1:86:37:15:b3:
e0:97:65:6e:bd:7b:13:48:51:1a:d2:a6:38:41:9b:
81:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1C:D4:4C:16:FA:3A:E4:A2:72:61:D6:37:A7:16:43:0D:BE:4C:C3
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:f0:d5:1b:26:cc:f0:06:85:af:10:b8:92:f4:04:f9:4d:35:
1d:ae:28:ae:d9:84:32:d2:48:f6:32:51:22:d2:94:fc:d4:80:
59:04:8e:69:8c:84:2c:e1:26:3a:ce:87:8a:93:18:0d:69:0e:
0c:dd:ab:ef:39:37:fa:a8:58:79:64:4f:06:91:fe:8d:d4:1e:
06:3a:a8:9f:64:2b:33:7c:c6:dc:9a:a2:53:53:3b:1f:e1:47:
49:b3:88:61:99:ca:30:05:db:44:2f:ff:3f:7c:b5:ac:ae:63:
22:52:8c:3f:47:85:b9:64:f6:5c:d0:da:92:3f:e9:0f:66:4b:
e6:83:e2:42:6f:1b:1d:16:a0:bf:93:97:9c:e6:89:9f:8e:78:
11:6b:e4:2a:83:d6:d7:f2:13:88:96:d1:f7:c7:21:6a:98:a5:
2a:45:ba:22:36:9c:9a:d1:4f:13:f7:47:08:34:21:8c:12:25:
4e:6e:7e:88:e4:15:0d:c1:68:f8:83:8c:54:3d:ba:4c:e4:0e:
c7:92:b5:1b:57:75:b7:15:f0:30:96:ec:ff:03:c2:0b:c6:af:
95:1a:b4:3e:01:0c:d9:58:55:b0:4f:6c:7c:8a:ea:f4:c8:e7:
5b:fc:8e:2b:b2:65:c0:a8:13:33:11:0c:73:53:42:04:c3:53:
96:af:45:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:52:42 2026 by rpki-client