Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: j0f40rt0WRjgcAcD+8A2jX017HKnKjC04/Ny2kJKJHE=
Subject key identifier: 81:28:28:2D:B7:1F:DB:C0:A7:38:99:EC:D5:BC:1D:CD:52:2C:84:D8
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 019E1C7E0257D35942847B2A7B30F81F63A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0EF3
Signing time: Tue 12 May 2026 14:01:20 +0000
Manifest this update: Tue 12 May 2026 14:01:20 +0000
Manifest next update: Wed 13 May 2026 14:01:20 +0000
Files and hashes: 1: dXjAuEZ8xG_k8lwu6Hj_xZmUk9A.asa (hash: znE+Vn5w5mJLLUAxXFcPNeMUExg32SuqaPEhMXXfl3w=)
2: pKievJotd0Vwu1YJE0cQcf-DltY.roa (hash: h+T203a1jd44mMy05CeC2wpUpgb3MOkiNaLP9bVt08U=)
3: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: VYMu9KVA9ADZ3tF/2LqITT0cVpTlPZVYFqBHhAvjYuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7e:02:57:d3:59:42:84:7b:2a:7b:30:f8:1f:63:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: May 12 14:01:20 2026 GMT
Not After : May 13 14:01:20 2026 GMT
Subject: CN=8128282db71fdbc0a73899ecd5bc1dcd522c84d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f6:42:4e:52:07:69:96:97:a1:e7:1c:f2:f8:
62:b0:55:d0:a3:a7:bc:1b:5a:fc:ba:b3:d5:61:44:
1f:f3:ad:72:05:4e:6e:fa:9a:9b:b7:db:a8:97:5f:
8a:ba:d4:1a:89:a3:04:8b:32:93:a0:aa:85:91:28:
b8:2d:ea:4b:a9:cc:75:88:ef:19:00:5d:32:ad:09:
f8:7a:0e:26:6d:c2:ca:f4:2a:70:35:13:21:f8:d5:
a4:bb:a4:a0:3a:b9:d8:ad:c4:f8:b6:ab:60:a3:1d:
7d:35:59:57:89:bc:cc:20:9f:a0:fd:3a:17:1d:70:
8e:74:ac:db:05:e2:44:11:8c:e3:af:66:0b:ce:b5:
34:47:97:62:6b:4c:5a:2d:7c:dd:cd:34:60:7b:71:
25:7c:81:d1:97:d9:a9:90:4c:8f:e1:fb:23:d8:b1:
f2:ce:fd:7c:0d:a4:18:14:e8:b8:8c:b2:39:75:1f:
72:4f:6d:2f:1b:ed:00:48:64:6c:fa:37:de:06:92:
bf:21:2d:a7:3e:51:c6:c2:1e:78:21:63:2c:8a:a9:
de:dc:07:27:dc:8f:33:54:14:6a:20:6e:31:31:8d:
19:aa:41:7e:8a:dd:3d:4f:90:12:f7:f2:14:19:90:
86:fc:31:86:12:53:c7:b1:96:d2:7d:87:07:1a:c0:
a7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:28:28:2D:B7:1F:DB:C0:A7:38:99:EC:D5:BC:1D:CD:52:2C:84:D8
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:b3:4c:52:ac:40:ac:9f:9c:70:77:7a:68:fc:fa:81:c9:72:
fc:f1:98:dd:12:32:8a:26:cd:cd:e7:6c:da:7e:c4:32:aa:d9:
b0:9b:78:54:37:5d:58:be:ab:6a:ff:e2:10:c7:e7:72:01:aa:
cd:a3:de:eb:4a:26:22:9f:a8:33:1e:20:c3:ff:09:20:a4:a4:
7b:0a:fa:6e:32:27:43:b5:0a:fd:53:03:80:0b:a3:b1:17:77:
1f:42:24:3a:ea:23:cc:6c:dd:47:dd:69:7b:68:df:3c:c1:ef:
af:a2:45:a8:1d:b0:e3:c9:c5:b4:75:7c:30:cc:be:f3:f9:4a:
21:6b:45:ed:96:cc:e4:d5:16:f5:99:19:bf:56:1b:fe:ab:0a:
24:3c:eb:36:7b:a2:88:18:94:e8:88:1b:d4:c3:b7:7e:11:c8:
bc:41:f0:7b:03:88:a8:fb:a1:d6:f1:d1:d6:6e:6a:2f:e4:38:
36:50:df:5d:9d:0f:31:09:e3:05:17:fb:92:b4:72:04:31:20:
50:b5:fe:62:ed:e7:0f:4d:d1:df:48:ca:3e:02:01:5a:7c:86:
13:f4:52:e6:de:2a:9a:7c:b0:03:7d:ea:c0:a2:bb:92:12:b4:
32:80:5c:c9:f4:e1:8f:a2:4f:72:70:62:3f:51:29:70:e1:d0:
bd:e0:70:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:26:18 2026 by rpki-client