Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
File: z9rC7BEEwkXZyrqOthY46drxADk.mft (raw, json)
Hash identifier: lyT8qUYNbBIXz9GlOOEkU0HnqolUtpIN+C8JyZRhTFc=
Subject key identifier: 46:E5:E8:63:A9:8A:B6:53:EF:CA:DE:50:A9:DD:D7:B6:78:86:A2:9A
Authority key identifier: CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
Certificate issuer: /CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Certificate serial: 019D2704927390578CE75630E266FE5CC608
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
Manifest number: 13C3
Signing time: Wed 25 Mar 2026 22:01:44 +0000
Manifest this update: Wed 25 Mar 2026 22:01:44 +0000
Manifest next update: Thu 26 Mar 2026 22:01:44 +0000
Files and hashes: 1: z9rC7BEEwkXZyrqOthY46drxADk.crl (hash: WQh6hdxl38yluQbXStoNi73maIeQSKJN+QxYikzWi5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:92:73:90:57:8c:e7:56:30:e2:66:fe:5c:c6:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Validity
Not Before: Mar 25 22:01:44 2026 GMT
Not After : Mar 26 22:01:44 2026 GMT
Subject: CN=46e5e863a98ab653efcade50a9ddd7b67886a29a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2e:86:5d:3b:b8:5c:b7:2e:ad:5c:62:be:28:
41:3a:3a:c3:b2:c4:8e:62:c4:2d:8d:d4:e8:f2:83:
ae:d8:9e:62:f2:a9:15:0a:45:94:a9:a8:85:7a:6c:
71:d4:45:41:eb:ce:81:41:54:ac:d3:35:95:69:29:
bd:c2:ed:00:de:2a:d3:a0:c7:24:40:20:6d:89:1f:
3b:5b:91:84:b2:d5:04:75:e8:23:04:a9:3e:ab:e4:
60:64:80:ad:22:ba:2d:e8:06:20:87:b2:a0:12:9e:
5a:fe:41:37:c1:17:35:ca:38:04:03:0e:e1:c4:71:
c9:55:bd:04:fa:80:d7:5f:c1:4c:98:b7:b1:0d:29:
e7:ea:71:22:df:72:14:6f:51:f3:69:87:32:59:ed:
9f:ee:e8:6d:ae:7f:a5:11:5b:5f:50:ee:6b:a3:30:
c5:be:67:17:bb:8a:ab:6b:14:55:c7:b5:45:7f:1f:
df:9b:11:c3:cb:ee:9d:89:49:b9:4f:23:74:1f:cc:
36:94:b7:8a:10:4d:75:d1:5d:a7:3a:d2:2d:8a:4f:
a2:3a:45:6d:69:b8:66:01:e8:44:cf:95:5b:83:ad:
04:f3:9f:8c:6a:3f:5b:c8:e3:03:b8:dc:a8:ec:dc:
21:49:b9:13:02:f6:c3:1c:70:45:f2:31:c9:4b:3a:
f8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E5:E8:63:A9:8A:B6:53:EF:CA:DE:50:A9:DD:D7:B6:78:86:A2:9A
X509v3 Authority Key Identifier:
keyid:CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:c0:0d:78:49:78:25:d2:c6:f4:21:82:94:29:92:d5:59:4d:
93:84:9c:9a:fb:04:ee:cd:11:b1:ee:1b:86:38:86:ce:d3:ec:
40:1d:fe:39:6f:fa:88:2a:79:f9:26:7f:b6:f7:9d:97:46:ab:
c5:cd:a1:83:28:5b:21:1f:70:00:61:bd:d9:08:a1:6c:e9:dc:
60:e3:6a:f1:8c:95:5e:c8:64:f2:42:6a:7b:2a:ec:30:03:cf:
8f:c2:1a:90:f6:39:72:b1:1e:33:10:65:28:cb:9d:b1:06:97:
52:8b:35:21:64:66:0c:03:d9:54:35:b6:07:a9:bf:62:03:f2:
95:cd:cd:c3:5a:64:a8:0b:91:78:48:cd:bd:0d:a8:63:30:22:
29:bf:cf:6c:51:1e:60:45:75:55:f2:72:3e:c7:b5:47:b1:65:
24:31:69:4b:53:ec:9a:48:05:4b:54:f6:f0:c9:7e:69:43:53:
3f:26:f1:29:d0:34:cb:b0:de:8e:11:23:7b:38:f1:95:cd:48:
8b:2b:53:c4:ff:91:f1:e1:53:03:9b:06:cc:f8:58:a0:12:e3:
cb:d3:91:ff:10:e6:40:8b:ef:1c:cf:e2:4e:07:4f:9a:ca:fc:
ac:34:d1:8e:92:94:c1:15:5b:94:a6:74:19:b9:1c:b6:80:fd:
ca:f9:ac:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:16:33 2026 by rpki-client