Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
File: z2hDzhUimoAj2X-iejflkniyv9c.mft (raw, json)
Hash identifier: lgygyWYS4tt3hkSsTWECzhS7T/geZOB6V4up4+Q4p6Q=
Subject key identifier: FD:81:DF:C9:11:C5:53:BE:7B:4F:EB:A1:2F:9C:AE:46:23:DA:83:88
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 019D273AD8280C7F84CE552B1778B31B0815
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
Manifest number: 0E74
Signing time: Wed 25 Mar 2026 23:01:00 +0000
Manifest this update: Wed 25 Mar 2026 23:01:00 +0000
Manifest next update: Thu 26 Mar 2026 23:01:00 +0000
Files and hashes: 1: dXjAuEZ8xG_k8lwu6Hj_xZmUk9A.asa (hash: znE+Vn5w5mJLLUAxXFcPNeMUExg32SuqaPEhMXXfl3w=)
2: pKievJotd0Vwu1YJE0cQcf-DltY.roa (hash: h+T203a1jd44mMy05CeC2wpUpgb3MOkiNaLP9bVt08U=)
3: z2hDzhUimoAj2X-iejflkniyv9c.crl (hash: jeV1SGLda5ubN6pwUSZW/KvfSCoKGpco2KaTf5Dls3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:d8:28:0c:7f:84:ce:55:2b:17:78:b3:1b:08:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: Mar 25 23:01:00 2026 GMT
Not After : Mar 26 23:01:00 2026 GMT
Subject: CN=fd81dfc911c553be7b4feba12f9cae4623da8388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:37:ba:b7:fc:16:88:e6:65:0f:5d:8d:88:72:
30:97:c6:9b:0a:19:2f:7c:65:52:40:9e:d9:db:a0:
3b:cd:da:0a:85:89:aa:59:ce:b5:ec:e7:bc:32:a1:
5c:e1:7e:bb:96:49:8c:d7:e4:3e:4c:d9:4d:2d:40:
34:cc:11:bd:35:ad:e7:e4:9c:fe:fb:18:a1:f7:23:
b9:36:f2:65:ef:0e:80:8f:ea:e3:aa:1b:11:1e:71:
86:d9:4e:c9:6e:5c:00:fb:e2:6a:48:ce:65:ff:08:
67:2c:03:1a:b6:76:56:f6:b1:1d:27:a1:c6:74:0c:
d0:fc:65:ba:5d:83:9a:81:c5:2b:88:14:d5:45:f1:
9c:69:89:cc:dc:a5:2c:c5:c6:76:03:13:01:c5:5c:
bd:cf:d5:13:55:f1:25:2d:6b:05:cb:bc:c6:0c:2e:
b8:01:64:a3:a6:43:33:b2:a9:ff:0d:d2:93:e7:72:
54:84:8c:87:d2:d3:29:8f:6b:26:49:53:26:07:6c:
b0:8c:cd:7f:8d:0f:d2:80:7c:57:e0:07:01:c8:7e:
84:1f:ea:0e:e9:75:7f:38:ec:9e:aa:e2:69:1f:b6:
af:6e:8b:cf:a4:00:8f:a3:70:3c:e7:c4:e5:13:22:
60:8c:91:20:2c:ed:cb:ae:46:fd:d3:9b:79:97:fb:
ff:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:81:DF:C9:11:C5:53:BE:7B:4F:EB:A1:2F:9C:AE:46:23:DA:83:88
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:c6:22:f6:42:2f:02:a3:74:bb:c3:10:a1:b4:1c:ab:f7:08:
86:5e:2e:e8:68:c1:82:46:88:39:33:65:74:ac:13:0d:c8:28:
94:5d:ef:05:df:6b:65:20:54:5e:d5:0e:66:c0:52:15:38:87:
51:8e:3d:32:30:10:09:58:09:53:fa:d6:95:17:e1:1c:a2:59:
4b:01:25:90:28:c0:ac:0c:02:5e:8c:94:75:58:08:d7:06:65:
c1:f7:5e:48:51:49:22:40:2d:c9:4c:0d:bb:a4:d3:9b:07:9c:
c5:ba:5d:8f:69:b9:17:47:5e:d8:39:fd:b1:a3:ce:be:99:5c:
70:13:06:25:48:0b:e3:f3:25:91:bd:e9:33:f0:b4:1c:ae:93:
2d:f6:9f:15:4a:66:8a:00:5c:ed:0e:f3:8d:07:9a:b2:ce:31:
d2:37:b5:79:87:88:7b:f0:62:cf:64:41:4c:ca:07:2c:6e:44:
72:d6:67:ee:88:72:61:b2:29:5a:2b:5e:ae:66:fc:bb:fd:65:
c2:32:31:75:70:91:1c:d6:51:eb:23:f4:74:73:8d:28:2a:f8:
d8:87:51:f6:a5:b1:d5:79:f4:7a:00:68:3f:e6:ee:7c:41:0e:
cf:3f:c2:4e:de:65:60:44:83:e7:78:ac:fd:e8:62:9e:02:98:
32:b0:29:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:27:55 2026 by rpki-client