Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json)
Hash identifier: SFBx6zxWwHaUnve6ax2sMYDkl/H8sqDyWVbQ87ZkbWE=
Subject key identifier: D9:AF:2A:9D:64:01:7F:5F:4C:9F:17:22:4F:ED:27:20:EE:12:AD:F0
Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Certificate serial: 019D284E27B99E5BF8AFA81857B19D472E69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 04:01:43 +0000
Manifest this update: Thu 26 Mar 2026 04:01:43 +0000
Manifest next update: Fri 27 Mar 2026 04:01:43 +0000
Files and hashes: 1: BVCNuyEI8Escb23UOBkojnAQ3uU.roa (hash: TpAVxATDxHC3mnDA/ZCfMM4mNI1Q7807T0lCqaxfnlA=)
2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: +Rz8j1O/gYuSTxLvfquxPGEwyPTp3VHwPLrJhtBomtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:27:b9:9e:5b:f8:af:a8:18:57:b1:9d:47:2e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611
Validity
Not Before: Mar 26 04:01:43 2026 GMT
Not After : Mar 27 04:01:43 2026 GMT
Subject: CN=d9af2a9d64017f5f4c9f17224fed2720ee12adf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ff:ec:de:fb:b7:47:05:85:d3:17:aa:8f:ae:
e5:c5:35:ec:1e:f7:3c:34:53:7a:39:70:d2:9a:6e:
18:d8:bf:7f:a8:b7:02:17:58:4d:e6:46:73:f3:62:
f8:56:3b:5d:03:41:83:b1:df:8e:14:18:8b:fc:fc:
a2:96:eb:a0:9b:79:26:b7:44:f9:3c:cb:1c:4f:5d:
7c:a8:92:af:4b:0f:09:3a:bf:1d:95:b5:ef:6a:b0:
1f:19:27:28:9e:07:c3:9b:8d:67:97:12:b5:c4:1f:
d8:ee:27:aa:a3:8b:15:0b:80:d3:66:2a:61:68:76:
ae:45:06:22:26:1b:10:ef:cc:2f:98:32:39:12:59:
2e:4b:98:e1:fc:80:44:37:e9:06:24:d9:1e:ad:f6:
94:c3:a2:ab:a9:e5:76:13:01:e8:f8:0d:1e:07:b8:
d2:d0:58:db:28:3a:0f:28:96:93:72:b3:15:31:d9:
2f:06:f3:09:20:fe:19:09:03:64:04:80:8e:a0:60:
b5:c5:b9:6a:2b:a5:75:41:7b:58:c3:77:8c:5a:7b:
67:b8:d8:bd:29:c1:84:b9:57:aa:17:e3:78:f7:2e:
db:d4:48:5d:eb:56:f0:f1:6b:de:21:17:51:33:86:
32:92:0d:c7:6f:87:f8:46:06:9a:06:dc:20:26:cf:
41:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:AF:2A:9D:64:01:7F:5F:4C:9F:17:22:4F:ED:27:20:EE:12:AD:F0
X509v3 Authority Key Identifier:
keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:9f:8e:b1:cd:b5:1d:08:be:c9:56:0f:92:25:31:58:57:c1:
21:1d:8b:46:9c:34:65:46:91:ed:ec:9b:c6:90:df:b8:bc:f8:
fb:f5:71:54:24:25:f3:43:b5:7a:ea:1f:f9:8b:2f:d4:07:e5:
3f:4d:a1:6b:1c:ef:12:33:b2:8c:ea:68:be:2f:ac:7a:6a:f1:
72:63:f0:fa:3d:eb:8f:d6:07:a0:f7:c1:b0:05:51:22:30:5c:
a3:fe:47:2f:27:04:a7:92:51:7e:b1:fd:85:68:42:b9:ba:10:
d7:5b:b1:c3:29:dd:3b:5f:c6:b4:d5:45:78:da:ca:c5:ca:e7:
e9:ca:bf:7a:fb:bf:56:ec:da:fd:a7:00:d8:ab:c1:4b:d6:f5:
1b:13:0d:dc:0a:83:30:b4:14:31:ee:ad:55:4d:44:03:dd:cf:
9e:8e:52:cd:7f:3b:1d:5d:ae:ff:99:7f:0f:65:b8:19:08:13:
9f:85:86:d2:de:01:a4:64:5d:96:74:ae:f2:c7:b5:0e:bc:3c:
7c:e0:8b:5b:f4:10:7e:31:59:e6:86:cc:5c:3b:c1:64:50:63:
74:da:8a:6e:f8:4f:87:e2:9e:89:08:5f:a2:95:6e:48:fe:c5:
0f:ce:11:78:2e:97:0d:7c:69:aa:eb:20:f4:7e:99:f6:b7:5a:
d7:f5:7b:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:01:41 2026 by rpki-client