Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
File: z173qHDUsUjrHU9P5mbtUFSt6uw.mft (raw, json)
Hash identifier: X/UBTMLUUXx80nPz78k9ybyMOdrpnQfWbDJOK6pno9o=
Subject key identifier: EE:B1:CA:18:63:A3:71:60:63:EB:1D:F5:04:90:AA:FC:FA:FA:82:07
Authority key identifier: CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC
Certificate issuer: /CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec
Certificate serial: 019D2583129942E032C7F9CEF390D04C848D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
Manifest number: 0FFC
Signing time: Wed 25 Mar 2026 15:00:40 +0000
Manifest this update: Wed 25 Mar 2026 15:00:40 +0000
Manifest next update: Thu 26 Mar 2026 15:00:40 +0000
Files and hashes: 1: WcEXb1FwWuq7CmZIR_j833VQVLg.roa (hash: YwtVclxxnke6RUqR5TUDz5Eu+w+6DwiJjWOIUuWJONU=)
2: bfREzEwR-EXPjAe3wBGoI04LV-k.roa (hash: 769fYTMFcVF5MUU/DGKAsF33sj2AY85ZIEX4Env7vD8=)
3: z173qHDUsUjrHU9P5mbtUFSt6uw.crl (hash: ydOEa+0Q4DJ7OtD3UMvz6r00BLzSHiGOulPxFWlNf4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:12:99:42:e0:32:c7:f9:ce:f3:90:d0:4c:84:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec
Validity
Not Before: Mar 25 15:00:40 2026 GMT
Not After : Mar 26 15:00:40 2026 GMT
Subject: CN=eeb1ca1863a3716063eb1df50490aafcfafa8207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0a:1b:1e:7d:31:3b:63:4d:66:8d:1b:72:a0:
53:3a:c5:ce:32:5b:1f:ea:3d:09:b7:d0:28:24:bd:
fc:62:b8:be:e5:52:cc:28:91:05:41:e9:fa:19:1f:
22:49:2c:98:5c:1f:4a:77:e9:f5:31:18:c6:e5:1a:
04:10:28:b6:e0:2c:0d:c1:d6:95:53:49:e6:1c:fc:
46:e6:f0:3e:32:20:c3:c3:c1:47:5e:a3:01:f5:8e:
c0:83:2e:b3:c0:5d:3c:4c:4c:95:12:17:70:df:c8:
f0:17:4d:fb:eb:c7:c1:4d:b8:16:ef:93:cc:b0:7a:
1b:86:9b:61:08:4e:04:6c:58:4b:8b:ac:fd:96:84:
82:ba:6a:3a:78:f3:10:5a:e8:95:1a:cd:a4:20:31:
ad:3b:9d:dc:81:f2:98:49:3f:5a:12:16:ad:3a:d5:
09:80:ad:46:d2:9b:ce:7b:6d:2e:a7:97:f7:98:84:
c6:aa:43:2b:fd:d4:b1:b3:f3:18:c4:ab:e4:df:d3:
2a:5a:56:86:6b:67:ba:e2:74:e7:0d:9b:e0:49:88:
e5:59:3e:36:8b:81:b8:d4:d3:cf:49:3f:1d:5b:2b:
81:ca:66:6d:3b:79:12:fb:89:88:cc:7a:7a:0f:22:
80:e5:0b:3a:51:e3:3d:2f:44:30:70:99:d5:8e:c0:
aa:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B1:CA:18:63:A3:71:60:63:EB:1D:F5:04:90:AA:FC:FA:FA:82:07
X509v3 Authority Key Identifier:
keyid:CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:86:d7:2b:38:ed:04:81:82:db:d1:1e:7d:ba:49:99:ba:d5:
ec:8b:fb:86:78:14:cf:b6:25:78:50:0b:f8:73:be:04:45:81:
72:fb:6b:3a:d2:fe:c7:0e:a7:b1:89:63:06:df:9e:2c:9e:c3:
1b:bc:aa:83:9b:bf:94:fb:70:06:50:3c:81:fc:b1:da:a3:09:
df:af:72:aa:4b:a3:92:81:b9:dc:fb:f9:97:43:57:e2:65:37:
4b:f9:5d:66:68:f7:77:11:53:af:36:68:59:71:b4:bd:f6:6b:
0b:c3:b2:2d:7e:02:3d:a8:9d:c8:4c:dc:e0:d8:a4:c9:8f:84:
6e:1a:d5:f9:17:53:5b:01:c2:ba:97:3b:03:e8:c7:c5:72:09:
61:3c:13:c2:43:c4:83:74:62:99:5e:49:d1:57:92:a1:24:3a:
9d:ed:7f:3a:9a:58:da:3f:3d:72:e2:19:e0:3b:d3:1a:37:28:
fd:eb:48:71:41:87:e1:97:40:27:61:8b:4f:61:b0:8f:36:6e:
bf:0d:08:08:0f:d0:16:81:56:f5:e9:53:ac:b9:03:9e:c1:c6:
c6:7d:2c:04:15:bd:8d:1a:af:b1:12:2c:bf:bc:5b:0c:78:eb:
57:e1:34:08:ab:a1:f4:77:5c:07:ef:81:33:52:16:d7:0b:a5:
ca:09:27:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:00:02 2026 by rpki-client