Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
File: znQefeZX5KEPk8qSxReoGywLJR4.mft (raw, json)
Hash identifier: 0w9L8fmBJbB3/2USueR1unzmjQelsCOE3T3i3hzt7i4=
Subject key identifier: 57:B2:EA:5F:E5:E1:B4:2A:B4:82:E0:0A:33:26:AB:E0:8B:CA:F4:EE
Authority key identifier: CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
Certificate issuer: /CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Certificate serial: 019D2816842B95B466116FAA6E7C31593794
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
Manifest number: 0E7B
Signing time: Thu 26 Mar 2026 03:00:57 +0000
Manifest this update: Thu 26 Mar 2026 03:00:57 +0000
Manifest next update: Fri 27 Mar 2026 03:00:57 +0000
Files and hashes: 1: 9As_XsenM5-QTmM1X_BCn4yPeqA.roa (hash: Dxtnn5XYXXhgv4gymsVhkJbLhB4m0DGlBCGRadS6kHQ=)
2: znQefeZX5KEPk8qSxReoGywLJR4.crl (hash: blyPEEngVKzf4WzDj8LOm7c8bYw+d+5IhH40U71oElI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:84:2b:95:b4:66:11:6f:aa:6e:7c:31:59:37:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Validity
Not Before: Mar 26 03:00:57 2026 GMT
Not After : Mar 27 03:00:57 2026 GMT
Subject: CN=57b2ea5fe5e1b42ab482e00a3326abe08bcaf4ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a7:33:0d:aa:d3:a8:68:ce:08:1a:f3:a1:14:
a0:8e:ff:60:40:92:51:b0:90:ea:b7:7f:cf:c6:fb:
ec:e2:69:10:d2:ce:ce:2a:65:79:8e:44:1b:c1:30:
b4:95:f4:8c:5e:9f:d3:66:aa:68:ce:33:d7:2f:ae:
52:f4:30:3e:cb:03:07:9b:0f:7f:a3:fc:61:64:53:
af:67:39:05:d7:dd:00:40:5d:e9:a8:e2:ec:48:e8:
6e:4e:29:6f:bf:e7:3e:26:59:71:42:cd:14:d3:3c:
ca:bb:0f:9b:8f:65:75:4f:cb:55:16:a3:10:77:b1:
61:29:e7:3d:a3:84:64:0d:d6:2b:30:b1:82:7b:4e:
16:04:ce:4e:bf:88:67:ec:87:1f:1c:7d:0a:09:93:
98:bb:fc:35:0a:65:05:c9:03:b1:48:24:f1:9c:3b:
63:6c:f3:41:d5:50:4d:d5:f1:f2:94:22:8c:b1:1f:
4a:e2:dd:4e:3b:d0:73:0c:aa:62:af:09:f3:b0:ab:
59:34:a1:02:52:41:0b:4b:83:14:9f:b1:48:44:12:
9c:30:6f:b7:cb:7c:41:e9:81:37:c8:60:00:89:89:
dd:59:fb:ca:58:c7:8f:80:27:28:d5:4e:9a:75:7f:
18:86:33:cb:4f:67:85:43:bd:1a:13:dc:7a:5f:6f:
86:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B2:EA:5F:E5:E1:B4:2A:B4:82:E0:0A:33:26:AB:E0:8B:CA:F4:EE
X509v3 Authority Key Identifier:
keyid:CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:7e:0f:97:1c:c8:3a:2f:23:19:ef:ec:39:d5:f2:bc:96:33:
db:b8:0d:75:9a:87:85:16:9c:d5:4f:ba:5e:80:b6:c7:9b:fc:
95:61:34:26:56:06:08:17:e7:c3:11:d4:a3:89:7f:9b:9c:fc:
d1:3f:05:60:80:ad:ad:6f:6a:33:16:51:eb:ce:27:4f:e6:f4:
10:6b:21:c9:4b:b1:4f:3b:ff:52:1b:f0:2a:89:7a:64:7f:2f:
02:83:97:66:8f:16:d6:c3:8e:d2:8c:40:a1:ea:37:6a:93:00:
95:83:07:88:1a:f7:8c:35:5b:b2:0c:69:76:45:2b:7b:e7:90:
79:cb:fe:65:ca:3e:ea:82:54:5e:fc:9b:c8:9e:b3:d0:32:18:
57:b7:25:b8:e5:a1:e7:46:d3:9b:45:ca:0e:8f:57:f2:82:60:
d9:61:04:c3:74:47:7e:6b:d1:ea:0e:ea:f0:7b:89:6c:88:9e:
d5:3a:98:d4:0f:6a:a6:52:83:9d:d7:02:cd:4d:86:e2:7b:78:
8c:9b:57:84:8c:91:33:f5:13:f7:4b:85:7e:93:57:ce:34:9a:
77:ac:6a:5c:0b:08:f6:73:42:89:c7:26:bd:44:62:57:b2:95:
66:62:a0:b1:29:b5:64:11:be:9a:ab:69:00:ee:5b:70:85:8e:
23:1d:82:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:57:44 2026 by rpki-client