Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.mft
File: 0ZHOrh_4itqODi-VUGddFTMokeQ.mft (raw, json)
Hash identifier: 3R2M5/OwMEBkR4OTCeim1zWRY576l1QHqEyo3iEXdhU=
Subject key identifier: B9:3C:24:57:C5:D4:80:32:C6:F4:48:6B:C4:C7:C4:27:CD:98:52:1C
Authority key identifier: D1:91:CE:AE:1F:F8:8A:DA:8E:0E:2F:95:50:67:5D:15:33:28:91:E4
Certificate issuer: /CN=d191ceae1ff88ada8e0e2f9550675d15332891e4
Certificate serial: 019D3307F03B56E311CF2B57980E7C79D2CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ZHOrh_4itqODi-VUGddFTMokeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.mft
Manifest number: B2
Signing time: Sat 28 Mar 2026 06:00:51 +0000
Manifest this update: Sat 28 Mar 2026 06:00:51 +0000
Manifest next update: Sun 29 Mar 2026 06:00:51 +0000
Files and hashes: 1: 0ZHOrh_4itqODi-VUGddFTMokeQ.crl (hash: ++S/eholiUaYCnK45KabZqiPgKoAZctqR2IB3MNTJKE=)
2: _VYu2mv6bKW7U-bqoazVPbuNZw0.roa (hash: jBfKqmXGL7y6Zilv4tkveGpy7JudLuPoH0FpKfvCBu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ZHOrh_4itqODi-VUGddFTMokeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:07:f0:3b:56:e3:11:cf:2b:57:98:0e:7c:79:d2:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d191ceae1ff88ada8e0e2f9550675d15332891e4
Validity
Not Before: Mar 28 06:00:51 2026 GMT
Not After : Mar 29 06:00:51 2026 GMT
Subject: CN=b93c2457c5d48032c6f4486bc4c7c427cd98521c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:67:f6:f7:4b:02:d3:d8:ea:ec:99:59:a5:0d:
09:6e:5e:f8:a3:86:d7:00:99:ad:00:15:96:4b:a1:
07:de:67:04:79:f6:0a:68:a1:51:fe:77:d7:28:28:
1f:3d:1a:65:ae:4e:02:46:d9:5c:6e:a6:a7:ab:e6:
8d:ef:f2:ab:a1:f7:5f:9d:e1:37:13:9d:72:a1:67:
99:89:ac:08:6e:84:f7:0a:a8:ac:3b:49:e2:91:a2:
a7:d5:86:c2:eb:c1:b8:29:4e:92:5c:51:5f:af:75:
cb:3c:fe:4c:36:e2:ee:61:fd:e5:67:4c:6e:5c:92:
a1:57:ac:6b:43:15:a4:d2:26:04:85:a0:e1:c4:1f:
25:ff:62:83:bc:4e:8b:55:08:55:c9:9d:f8:41:ed:
16:31:ac:93:2f:fd:54:bc:a4:23:21:f0:0f:e1:4e:
3c:19:dc:9b:3c:db:e2:b5:08:fc:66:1c:1c:f4:d5:
c1:fb:92:a0:7f:a2:e3:d0:80:db:b2:09:85:d9:ff:
bd:b6:aa:9d:ee:c8:86:62:8f:a8:a3:d2:7a:90:64:
c7:fc:b0:11:9f:83:30:7e:3f:cc:a7:56:23:d5:8a:
53:83:3e:5d:05:ab:dc:82:fd:65:41:0d:08:b5:fc:
75:07:47:c0:0a:11:0b:91:81:e2:25:94:20:2a:36:
3c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:3C:24:57:C5:D4:80:32:C6:F4:48:6B:C4:C7:C4:27:CD:98:52:1C
X509v3 Authority Key Identifier:
keyid:D1:91:CE:AE:1F:F8:8A:DA:8E:0E:2F:95:50:67:5D:15:33:28:91:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ZHOrh_4itqODi-VUGddFTMokeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c5cd96-b9d2-434b-a431-1c35fbce9616/1/0ZHOrh_4itqODi-VUGddFTMokeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:cc:69:f7:6d:d7:a1:7a:f7:0c:dc:25:8c:6e:06:37:57:80:
2c:cf:a5:d3:d9:75:56:8e:98:f0:a9:fe:3b:60:c6:1b:94:9e:
7a:5b:a6:aa:e4:14:ed:e5:cf:c6:5d:5b:8b:4d:2b:42:7e:04:
b2:49:0c:12:d2:10:d2:df:cf:97:6c:d8:70:6d:d7:e0:3d:fb:
d6:c6:48:d8:37:e9:a6:06:8b:ed:4b:9e:b2:d0:35:55:ad:6c:
70:a9:76:b6:9d:b7:df:4b:2a:ba:7d:cd:b4:aa:21:fd:6b:cf:
ce:a3:a2:90:89:90:0d:ea:66:4c:7e:5b:d5:bb:cc:d7:77:ee:
bb:02:80:4a:e3:d3:6a:0f:61:61:11:23:47:fc:e0:9c:58:3b:
34:18:96:a5:04:65:33:49:8b:cb:2b:5f:61:1b:b3:1e:bd:65:
52:51:b7:67:ae:6c:2e:1e:c0:46:3f:c9:44:33:bc:a4:2c:b1:
a0:2d:47:a0:dd:b4:43:d9:ad:49:ad:7a:eb:6e:0e:97:2b:db:
da:31:ca:92:39:e9:fc:c5:2e:bb:22:11:ae:74:d1:cc:fd:ca:
d9:4c:e0:b7:35:ae:28:86:44:fb:7c:0a:84:37:18:c2:93:23:
c5:54:e8:87:61:ef:20:08:7a:6e:22:31:9c:fb:57:df:d4:a3:
09:86:cb:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:57:09 2026 by rpki-client