Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
File: ZnKfnQeG9ooezVxakrw5LYaRl14.mft (raw, json)
Hash identifier: 2OCPOkypqLxhqJ4mDJt0NbTM+sfLEGV5pqNlJcBfsgA=
Subject key identifier: 11:B2:47:30:29:2B:3E:3A:82:07:A0:D7:7A:45:71:CC:04:BA:C0:88
Authority key identifier: 66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
Certificate issuer: /CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Certificate serial: 019E213664C68A561448830628B6061B9A08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
Manifest number: 14EB
Signing time: Wed 13 May 2026 12:01:13 +0000
Manifest this update: Wed 13 May 2026 12:01:13 +0000
Manifest next update: Thu 14 May 2026 12:01:13 +0000
Files and hashes: 1: ZnKfnQeG9ooezVxakrw5LYaRl14.crl (hash: z/awDjKgZNwbg20VtPNmuoIQ+DNCYziJQ7GnOgqMj6E=)
2: uoe5Gtg5RLHmca7orVX_kgMJ6LA.roa (hash: fAkGAUFUUGm9PtxJMnL3fGCs6QplpIcm9Vtk+9FgVDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:36:64:c6:8a:56:14:48:83:06:28:b6:06:1b:9a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Validity
Not Before: May 13 12:01:13 2026 GMT
Not After : May 14 12:01:13 2026 GMT
Subject: CN=11b24730292b3e3a8207a0d77a4571cc04bac088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5d:16:58:34:98:a8:32:0b:2e:c2:e0:6d:8b:
34:a1:55:62:ce:5b:e5:1e:27:0d:a2:0a:23:7f:01:
eb:58:9b:5d:19:bc:9a:1b:81:f4:3f:fe:e0:0b:44:
e7:7c:35:24:92:90:75:30:0d:a1:87:78:23:3b:c4:
dc:26:9a:d8:a3:d4:2c:fc:66:1c:5e:37:e9:e1:0d:
c4:11:ec:45:ed:6c:d7:b5:3e:58:6b:76:c8:81:bd:
df:af:3e:c5:aa:ba:42:bd:a9:12:83:1a:81:0c:5f:
09:5f:77:f8:93:21:7a:bf:67:61:a4:a6:e8:33:49:
0a:35:6c:45:66:3f:6b:bd:9f:3f:11:35:4e:4e:6b:
1d:dc:72:4a:86:fd:78:1b:63:41:f6:0b:f7:e9:f6:
04:b8:05:ab:b1:cb:c2:28:3f:64:7f:a1:1c:03:c3:
c3:23:8a:38:dd:5c:56:e2:9c:a3:e6:ab:7d:d8:d2:
3d:4e:91:4f:07:0c:6d:46:d5:d7:ca:6b:9f:96:5f:
15:34:2b:17:e4:59:60:19:59:d8:ff:26:98:15:2a:
39:9b:63:89:48:ef:61:65:e3:88:53:d9:a3:d3:47:
16:52:ea:74:ff:8e:b9:a3:9c:8b:e7:70:7a:1d:9f:
26:33:fa:14:eb:88:ed:8a:33:df:4e:16:c7:c7:9a:
5b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B2:47:30:29:2B:3E:3A:82:07:A0:D7:7A:45:71:CC:04:BA:C0:88
X509v3 Authority Key Identifier:
keyid:66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:15:42:ea:c2:c6:b9:b8:bb:bb:63:df:7d:16:13:f6:c1:66:
c3:f4:ff:c8:d5:75:0a:f9:67:14:10:a9:9c:00:1c:b7:0d:27:
44:8d:48:df:7b:31:67:41:d8:8b:76:9e:3b:0f:25:fa:92:ef:
5f:ea:38:d5:77:40:65:da:24:5b:34:1c:a1:c9:20:ab:cc:7b:
63:34:f1:d1:7d:90:a6:24:92:83:14:67:dc:e9:ac:db:f1:01:
10:d9:0f:86:bf:d0:40:f8:e2:d8:0e:dc:99:22:9a:42:36:d5:
98:12:69:7e:d4:e3:28:59:bd:df:e2:91:93:78:9f:c3:14:ac:
64:9e:7d:8f:36:e6:ec:a3:db:6e:ef:76:78:f7:d4:f8:76:33:
24:db:76:01:3a:01:fd:f4:bd:15:62:23:c0:0f:f7:8c:ac:8b:
41:4a:10:07:63:a2:0f:9d:0d:0a:0d:3b:69:be:9a:97:b0:2a:
bc:a5:f5:c9:89:e3:82:5d:db:97:49:80:5e:e3:c3:6a:20:7c:
1a:d2:36:9b:f0:f9:cc:38:f1:ef:43:1e:3d:5f:30:23:31:29:
ad:45:73:91:93:2f:1a:cf:eb:0c:1c:35:c3:51:7e:8f:78:64:
52:93:b5:8e:a9:d1:c8:49:c8:f4:b5:25:8a:51:b6:8d:30:c7:
08:db:05:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:51:02 2026 by rpki-client