Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
File: 2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft (raw, json)
Hash identifier: SWPKBxFJDOwQ3x0ZvObSC4XfLGLcW7PREeiZzh790TQ=
Subject key identifier: EF:38:8E:E4:F7:63:69:B2:E8:3B:C8:30:82:6B:12:42:EF:F1:94:05
Authority key identifier: D9:91:D6:89:0F:91:FB:2C:D7:79:31:B8:09:BD:B1:EB:05:09:13:49
Certificate issuer: /CN=d991d6890f91fb2cd77931b809bdb1eb05091349
Certificate serial: 019E1E35A6396438670E7F4010792EA0EEC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
Manifest number: 13A1
Signing time: Tue 12 May 2026 22:01:32 +0000
Manifest this update: Tue 12 May 2026 22:01:32 +0000
Manifest next update: Wed 13 May 2026 22:01:32 +0000
Files and hashes: 1: 2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl (hash: ExNtl2cAOQIqFfVNtdE2Tj/fOCiyNPtIPwmVbwIXQ5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:a6:39:64:38:67:0e:7f:40:10:79:2e:a0:ee:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d991d6890f91fb2cd77931b809bdb1eb05091349
Validity
Not Before: May 12 22:01:32 2026 GMT
Not After : May 13 22:01:32 2026 GMT
Subject: CN=ef388ee4f76369b2e83bc830826b1242eff19405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:88:df:b3:02:f9:8c:6f:55:23:02:0e:3d:30:
74:51:c3:2e:89:6c:b2:ff:03:27:d3:82:f8:a8:e0:
01:33:9a:78:33:54:f3:6b:84:c1:e9:0f:9e:43:36:
db:ac:81:8a:c0:93:98:70:29:24:ef:92:48:12:90:
b5:53:16:39:89:bf:32:f9:95:87:1a:52:a2:9a:ee:
d4:bd:42:11:5e:3f:62:d0:b2:6f:2d:cd:42:b2:7c:
0b:6e:70:dd:a8:7a:65:81:c3:72:0a:2e:57:36:d1:
19:09:66:4f:c0:44:63:97:16:f1:07:13:e9:de:b7:
23:d1:99:5d:80:bc:15:89:32:7e:c8:75:75:e1:97:
41:a7:04:7f:23:ae:6c:d5:dc:99:64:d2:6c:2d:51:
38:e4:3b:e4:de:1b:d6:40:44:9c:4b:19:55:ed:5f:
20:dd:74:78:a3:b8:21:cf:18:17:94:3e:a1:12:dd:
b9:0e:fe:f8:90:3d:14:af:2b:aa:76:7b:86:56:65:
bc:88:7d:8c:58:d5:32:c1:fb:1d:36:af:7b:d1:c8:
a9:c6:b0:07:96:72:3a:ed:7f:78:10:47:92:d2:ec:
87:f6:e7:d5:49:ac:04:2c:19:10:ed:ca:ab:44:32:
d7:8b:38:d3:de:a7:b2:02:14:9a:12:4e:98:84:5d:
51:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:38:8E:E4:F7:63:69:B2:E8:3B:C8:30:82:6B:12:42:EF:F1:94:05
X509v3 Authority Key Identifier:
keyid:D9:91:D6:89:0F:91:FB:2C:D7:79:31:B8:09:BD:B1:EB:05:09:13:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:9c:4a:61:91:61:ce:77:bf:61:e9:e2:65:79:0f:15:d4:85:
7f:fe:dd:1d:54:41:1e:f7:99:11:2a:16:30:59:45:64:96:97:
c5:ad:52:fa:0d:01:1e:65:40:75:aa:8a:01:43:69:fd:af:de:
6d:bc:a4:d2:d8:6b:e9:e0:40:25:a6:c9:de:c3:27:fd:21:ea:
cd:f9:d9:77:e4:c0:01:6d:41:68:6d:88:bb:12:df:df:d3:7a:
1f:1d:5b:45:ce:34:7f:f9:ef:53:e6:ec:93:f7:60:1a:96:49:
4e:16:14:9d:ad:b4:36:9b:a5:5b:2c:79:d4:b5:3f:45:bb:fa:
ac:a2:90:ef:d3:ac:3e:a4:8d:c9:91:11:5d:72:2e:b6:2b:67:
83:77:02:59:08:15:2e:aa:ae:f0:46:89:92:6c:88:46:58:2e:
a6:7a:54:8f:fc:ce:f0:2c:93:52:13:a6:9f:06:2a:fa:03:ee:
04:dd:ea:6a:ca:27:b4:9e:df:41:b5:60:27:9d:3f:37:ee:2e:
c2:3f:2e:37:66:be:21:5b:e4:86:ce:3c:b3:ac:a2:4b:da:2b:
e4:c4:2c:c3:e1:a7:36:32:bb:20:c5:0b:3f:f3:af:8c:12:ad:
2e:df:de:36:d6:c5:99:71:02:32:9f:27:17:47:6f:c9:03:9f:
6c:20:1c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:23:39 2026 by rpki-client