Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
File: Ze3JFheq3wwsx_H115bb237YWQ0.mft (raw, json)
Hash identifier: We3heqZGVsJ8QYbgsomYD0qmupT+YdG5kfH/oRny6jY=
Subject key identifier: A3:68:27:95:C6:00:43:0E:4B:0A:D8:45:59:74:A8:AF:E2:4A:17:74
Authority key identifier: 65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
Certificate issuer: /CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d
Certificate serial: 019D2996DDDB5BBF0ED5101D46B19381B2C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
Manifest number: 0852
Signing time: Thu 26 Mar 2026 10:00:46 +0000
Manifest this update: Thu 26 Mar 2026 10:00:46 +0000
Manifest next update: Fri 27 Mar 2026 10:00:46 +0000
Files and hashes: 1: Ze3JFheq3wwsx_H115bb237YWQ0.crl (hash: 7XHe6jaBSSknCmeMBZp1I2rz3gG+tb/zQJPqrxCddN4=)
2: sFVqpHtt4QH5hTgc8rcQ47NJPQg.roa (hash: fR+JTFzmOCy3kHLWAX1K1ruMHrlyFg5jdcK5x7rhFac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:dd:db:5b:bf:0e:d5:10:1d:46:b1:93:81:b2:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d
Validity
Not Before: Mar 26 10:00:46 2026 GMT
Not After : Mar 27 10:00:46 2026 GMT
Subject: CN=a3682795c600430e4b0ad8455974a8afe24a1774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:43:11:82:0c:1b:40:af:16:c6:12:5e:0e:c5:
fd:4b:83:1c:4c:6f:bd:08:1c:f7:1d:f9:e1:ab:16:
4a:aa:67:d5:58:eb:5c:bb:f2:1d:e6:7a:c0:5f:71:
ff:c2:50:e9:8c:fc:38:78:b7:fd:7a:dd:a5:3f:05:
71:04:46:b3:f3:ba:4e:c3:63:88:82:50:1a:2a:29:
f3:c2:6a:64:fa:7d:07:38:eb:5e:7e:3d:56:a4:dc:
38:c1:47:c1:80:6b:cd:77:0a:08:1a:f9:d4:f3:7a:
74:08:40:ad:71:37:74:ec:96:a1:b6:85:61:37:82:
e3:0c:92:a1:10:e2:79:62:91:36:71:76:a0:e2:de:
a1:a1:67:17:a2:8b:fd:e9:ce:5a:1c:ab:8a:33:0d:
cf:fd:39:e1:70:3d:b8:98:b0:23:d2:e0:bd:05:90:
fc:19:ed:59:aa:53:5d:0a:79:09:ac:17:85:05:92:
74:f1:d8:95:6e:d7:b9:3f:07:3a:42:b9:3f:d6:ca:
63:df:c5:b4:ce:82:4f:e1:55:27:34:ab:9c:25:4a:
7a:4e:b7:14:75:e9:35:63:97:2f:51:68:cb:62:d7:
a0:98:8e:d0:a4:f6:55:08:f3:04:f2:73:83:9c:24:
9d:4d:c2:08:a5:88:4f:36:89:e1:c3:90:27:58:65:
a6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:68:27:95:C6:00:43:0E:4B:0A:D8:45:59:74:A8:AF:E2:4A:17:74
X509v3 Authority Key Identifier:
keyid:65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:f5:19:42:ef:6f:8c:df:04:9b:ab:c8:08:25:0c:b8:ef:fb:
a9:c1:4c:72:f1:31:49:1f:97:7a:ab:90:9b:fb:d1:56:ab:e7:
3b:61:97:b1:c7:dd:53:62:fe:a1:18:27:46:7a:39:eb:72:e6:
78:0c:db:44:a6:3d:86:04:66:55:42:57:56:42:e6:61:c5:08:
94:46:64:2d:6a:02:b7:94:03:83:c6:42:a6:9a:04:b4:63:ee:
29:6a:29:7d:24:88:46:93:aa:d9:90:66:2c:30:16:65:88:9c:
0e:07:35:9d:f7:1c:09:d3:9b:3a:0d:71:3a:8b:af:3b:30:34:
bf:5e:db:4e:92:e6:ee:f5:73:c8:57:0e:ec:10:85:a4:13:6f:
08:91:68:b4:05:da:2d:3b:91:3f:7b:0e:2d:5b:01:26:3c:bc:
02:1a:01:1c:ae:41:76:06:37:4e:ff:99:5d:24:a5:53:c1:2a:
b2:56:60:b1:af:a0:e2:cd:ad:4e:5b:03:c8:00:9f:53:b5:06:
5b:bb:d8:e0:d0:a0:eb:0b:3c:95:dd:15:e7:60:c6:b3:2a:2a:
87:70:37:e3:51:5b:42:86:00:36:b3:c1:2e:64:c5:73:37:4e:
dd:d7:39:a0:90:85:66:b9:71:e6:fb:4c:b7:5f:81:4e:cc:89:
02:91:b4:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:07:03 2026 by rpki-client