Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: LGC86c5upWbEzKma6ncKTRYN8MIcUmJ0ULUyYe8sEHY=
Subject key identifier: 3A:03:99:DF:C6:09:76:9C:22:D6:FF:A6:F6:24:C2:A5:B8:5A:99:4E
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 019E1FB5A7A2CDFD1046D3BD4AFA27FD4347
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 082F
Signing time: Wed 13 May 2026 05:00:59 +0000
Manifest this update: Wed 13 May 2026 05:00:59 +0000
Manifest next update: Thu 14 May 2026 05:00:59 +0000
Files and hashes: 1: jv18kUzHEBlDlkIHJKkxODrKqc0.roa (hash: wdFZODPpunDdGOXTc+SSGtgRA0zL9y523IFxS0/YWn0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: ntmDMEF39Ickg+XRx9TWSLgWr0lPz8rKoIo/Q2W+KFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:a7:a2:cd:fd:10:46:d3:bd:4a:fa:27:fd:43:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: May 13 05:00:59 2026 GMT
Not After : May 14 05:00:59 2026 GMT
Subject: CN=3a0399dfc609769c22d6ffa6f624c2a5b85a994e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:23:15:68:b0:e3:4a:6e:11:e1:69:31:e1:02:
45:e6:72:5c:2d:31:17:9a:72:45:bc:22:4d:9c:9e:
48:9c:90:b6:bb:04:b7:97:6f:c6:54:8d:d2:4b:12:
25:ff:72:00:60:ac:f1:8d:6b:3b:ae:e9:8b:a2:cd:
25:07:6c:74:40:1c:21:68:ed:69:c5:69:3d:7c:4b:
df:76:be:e1:ea:ae:7b:6d:60:54:d7:58:69:4f:86:
99:ce:a8:55:06:d8:41:9c:5c:3f:90:9b:02:76:0e:
ac:7f:66:55:89:b8:8d:b1:43:65:05:b4:19:83:a3:
d0:98:42:d0:29:00:26:6f:6e:62:d3:5b:42:2e:12:
4b:f2:5f:ef:91:f8:61:73:a3:4b:f4:8a:09:13:5a:
10:1c:35:11:79:7f:e1:4d:25:42:aa:c4:42:1a:90:
55:27:a0:88:2c:2d:f4:86:06:1d:46:e7:c9:e5:d2:
e7:83:28:cb:72:db:43:6b:a0:d2:dd:4a:5f:8b:29:
06:9c:a9:d0:a8:3e:9e:fe:24:08:a6:ee:32:04:28:
05:52:e5:97:d9:ad:6f:ee:37:74:59:fb:f0:23:e0:
53:7f:e4:07:ee:6a:ec:69:6d:bb:54:5e:15:60:31:
49:73:4e:76:94:3f:98:24:4d:49:b9:1c:36:0f:d4:
66:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:03:99:DF:C6:09:76:9C:22:D6:FF:A6:F6:24:C2:A5:B8:5A:99:4E
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:98:a6:f8:af:a1:5b:e9:8c:3b:16:1b:61:66:a9:22:df:d1:
a2:36:e4:a2:d9:bc:1e:7e:fa:aa:c2:2b:e4:13:99:b6:56:92:
c8:eb:c4:7e:b0:aa:09:e6:8e:b5:32:df:38:ac:2a:69:a6:13:
36:84:64:65:92:98:71:e2:56:b3:d3:05:11:eb:7e:61:42:f1:
47:88:f1:c7:b5:41:b2:06:a9:83:87:23:a1:40:6e:2a:10:7a:
bc:75:af:24:37:04:54:f5:56:66:e0:1c:d3:20:4c:16:87:d5:
8e:5f:de:7f:f9:74:ed:0d:f6:0f:e2:0d:4e:49:66:6a:06:ea:
9c:54:b1:2f:21:9b:e7:fd:3c:d3:29:61:cd:76:62:b8:31:80:
bc:d0:67:64:8c:ca:14:3a:1a:9a:c3:ec:29:80:63:de:97:bc:
54:3a:d8:aa:5d:5c:84:4a:37:89:a5:e2:a2:c2:2c:57:f3:9b:
98:9a:6c:6b:3b:67:2d:2c:26:da:b8:7c:cd:e4:12:a7:0d:3f:
6d:b8:b0:c9:17:d5:89:2c:50:75:8f:05:49:a8:ca:f4:df:2f:
67:52:3a:8d:bc:93:cf:67:40:9b:5e:eb:26:aa:50:dd:1d:21:
a5:a7:b9:81:7f:e7:54:dc:69:c1:ac:a7:ba:01:61:18:3d:b6:
6c:6a:47:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:25:41 2026 by rpki-client