Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: Cc8GrSoFeQn3Wd4m9HpG3jpGu3V3Waf+uX3EpWq8maY=
Subject key identifier: F8:A1:96:1E:67:E9:3F:7A:C6:92:B4:26:8C:52:16:9D:18:0D:AB:8E
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 019E1D90A26214FCBFB83ABFDBAE16BF21DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 19:01:18 +0000
Manifest this update: Tue 12 May 2026 19:01:18 +0000
Manifest next update: Wed 13 May 2026 19:01:18 +0000
Files and hashes: 1: BVCNuyEI8Escb23UOBkojnAQ3uU.roa (hash: TpAVxATDxHC3mnDA/ZCfMM4mNI1Q7807T0lCqaxfnlA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: X1RqKxjngzZmZDbEPi0XXjMxdREK5YcB1MQ4SqOh5dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:a2:62:14:fc:bf:b8:3a:bf:db:ae:16:bf:21:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: May 12 19:01:18 2026 GMT
Not After : May 13 19:01:18 2026 GMT
Subject: CN=f8a1961e67e93f7ac692b4268c52169d180dab8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:51:4e:a4:6b:a0:b5:e0:a4:36:ad:4d:a4:3f:
73:8d:e4:a6:b6:c3:f6:b0:06:77:eb:35:85:6a:4f:
83:5c:b9:25:56:8c:58:bf:19:cf:05:78:28:1d:d0:
dd:f6:e7:0c:14:75:79:82:fd:0d:2d:ed:82:c3:b8:
5d:82:4b:39:a4:ee:26:80:b4:30:75:bc:87:64:42:
ff:ab:46:40:af:b7:ab:70:e4:62:cd:0d:7d:30:b5:
28:11:69:16:9d:91:44:bf:fe:a3:49:99:65:ac:be:
dd:84:4b:61:f7:b6:a3:25:7d:e6:7c:3f:bb:72:6c:
7a:26:36:9e:f3:2a:2f:a6:e0:ff:3f:8a:eb:74:94:
84:e0:12:88:40:33:88:b6:1d:52:06:d1:53:d7:2c:
46:d9:9e:12:92:a7:60:eb:5e:6b:c1:31:c2:1b:04:
db:a2:db:14:8d:6d:89:c2:90:49:f2:ff:e8:70:ae:
d9:e3:f2:ad:c7:70:ad:cd:b5:b9:dc:a6:ac:b2:70:
ff:7a:2a:0a:85:dd:9f:74:25:db:a7:63:0c:9d:c7:
ef:3c:c8:5b:5d:dd:d0:82:1f:66:ab:e0:07:71:95:
54:e0:1a:55:a5:1a:ff:b8:70:65:8b:8b:10:32:40:
24:d9:ed:fb:b6:c6:e4:12:51:82:1a:84:80:e1:78:
90:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A1:96:1E:67:E9:3F:7A:C6:92:B4:26:8C:52:16:9D:18:0D:AB:8E
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:33:94:ae:4a:3b:1d:83:8c:47:b2:bd:07:d0:82:7b:e4:a4:
45:75:df:98:80:ac:b1:b9:b3:c5:7c:81:ad:50:45:b4:99:ce:
22:7f:a0:cb:54:60:62:d0:70:15:e3:01:f5:87:a5:4a:2c:44:
38:0e:49:f2:be:e8:74:c0:4c:fd:d3:13:d8:39:0d:c9:c1:ca:
f3:9a:04:31:45:75:2e:9d:c4:2b:a3:b7:de:68:5b:50:56:9b:
7d:66:cc:28:01:4f:69:bd:66:f5:67:08:28:95:7e:ac:9c:30:
e1:3d:cd:21:33:5e:bd:c7:77:e1:b2:38:22:3c:69:bc:dd:56:
79:5e:df:e5:c3:51:ea:eb:0e:27:16:f5:0a:4a:6d:3e:76:00:
59:36:92:31:70:25:6d:b2:c4:31:e2:55:cf:66:4b:81:d8:20:
c8:4f:c1:62:46:11:68:62:64:98:85:c3:cf:ac:ac:42:61:b0:
b1:d8:99:1e:3e:48:83:26:32:10:ff:a9:31:96:4c:66:b5:06:
c2:d3:ed:bd:76:96:ce:da:1a:6b:75:33:cc:ac:6a:fd:0c:24:
32:53:45:95:e2:c5:ee:1a:4c:6b:79:bc:d4:31:08:e7:aa:a9:
5b:b2:8f:8f:40:4e:cc:74:e1:0c:3f:de:71:a0:e8:d0:66:6d:
31:9d:e4:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:16:19 2026 by rpki-client