Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
File: znQefeZX5KEPk8qSxReoGywLJR4.mft (raw, json)
Hash identifier: JgvUJG5zLFWcgqer86spwqHS7xwprtnX1XKXO/9tXuM=
Subject key identifier: 4F:41:7D:2E:C3:21:AD:4C:4D:C2:6E:14:26:A0:3C:C1:18:CB:E3:88
Authority key identifier: CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
Certificate issuer: /CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Certificate serial: 019E1F4828755CF418755E6604F94687F1B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
Manifest number: 0EFB
Signing time: Wed 13 May 2026 03:01:23 +0000
Manifest this update: Wed 13 May 2026 03:01:23 +0000
Manifest next update: Thu 14 May 2026 03:01:23 +0000
Files and hashes: 1: 9As_XsenM5-QTmM1X_BCn4yPeqA.roa (hash: Dxtnn5XYXXhgv4gymsVhkJbLhB4m0DGlBCGRadS6kHQ=)
2: znQefeZX5KEPk8qSxReoGywLJR4.crl (hash: 1bth1vvhHUDW0yHgdXYXRdc4P+ATnOFGMx10r7XzgZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:48:28:75:5c:f4:18:75:5e:66:04:f9:46:87:f1:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e
Validity
Not Before: May 13 03:01:23 2026 GMT
Not After : May 14 03:01:23 2026 GMT
Subject: CN=4f417d2ec321ad4c4dc26e1426a03cc118cbe388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:50:42:83:5d:9f:f7:a2:80:51:32:8c:b5:8e:
a4:65:7b:aa:bf:a3:5b:70:fb:31:95:2b:bc:aa:7e:
cc:3b:d2:01:d1:b8:6c:85:95:b9:99:3f:6e:4b:d7:
e2:16:74:60:0b:90:fd:95:95:27:90:b3:3e:14:ed:
f0:76:a6:9a:a4:73:e3:cb:98:26:c8:06:c4:f9:c2:
78:9f:b7:dd:bd:54:41:1a:74:33:18:c5:71:85:d4:
29:cb:14:4d:f4:f3:fa:93:bc:1f:f5:ef:75:51:c4:
e1:11:bd:94:66:8c:90:a5:3c:21:51:40:4c:7a:32:
08:c9:55:57:a0:02:a9:4b:ad:1a:7e:56:96:99:be:
42:34:b3:ba:b4:d7:e6:9f:f2:1a:56:b4:33:cc:88:
87:a8:75:54:13:35:3c:ef:9b:03:3e:29:93:5c:60:
af:e1:f0:a3:62:93:2e:74:34:b3:4a:3e:e1:c6:0d:
bf:2b:3e:0e:38:82:3b:13:e6:3c:ec:94:cc:15:27:
04:1d:45:19:92:7b:f3:27:3c:b6:0a:70:29:3b:97:
d4:09:c7:e2:1f:5e:92:95:f1:96:ee:c6:e8:ce:00:
f5:a6:56:58:af:c4:2a:5f:15:49:e8:31:48:67:9a:
89:93:50:04:0d:81:2a:09:e8:7d:cc:b2:da:aa:df:
45:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:41:7D:2E:C3:21:AD:4C:4D:C2:6E:14:26:A0:3C:C1:18:CB:E3:88
X509v3 Authority Key Identifier:
keyid:CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:85:d1:6c:3e:53:b3:9e:ec:3f:8c:ae:b4:32:43:48:5f:a0:
6e:33:6f:11:23:58:7f:bc:7d:2c:5f:b5:96:44:72:67:d1:f5:
24:05:ee:52:47:74:c6:ae:d5:f4:aa:bb:74:53:fd:50:fa:e4:
b5:af:46:73:f8:06:98:a9:76:3a:26:98:83:e3:11:5e:78:f2:
af:79:da:22:64:8b:08:b3:56:0b:32:f7:ff:be:0d:84:4b:98:
4a:94:ca:04:71:f6:18:b8:7d:6b:e1:0f:2f:b2:a5:71:9f:12:
26:74:f7:3e:fe:1d:3d:e0:f0:fd:57:51:11:dc:33:da:b8:8c:
f0:76:c1:91:28:20:7f:a1:d0:6d:c7:e2:65:e0:14:90:9c:19:
09:44:9e:75:a7:cd:44:7e:fa:12:c8:79:94:6a:9a:94:ba:54:
35:05:b1:9f:4d:69:fa:9e:f6:a1:3d:38:fe:97:b5:fd:4b:34:
81:e6:4c:2b:08:60:2a:0e:a3:ef:39:ed:b6:09:f3:a0:aa:05:
e9:1f:0e:18:0e:1b:a6:a2:3f:9e:d8:02:ad:88:5d:ed:72:01:
15:ee:65:9d:7f:fc:53:09:1f:7a:b1:5c:f6:eb:d6:f1:a5:f7:
54:1f:42:e2:f4:74:37:b6:03:ee:7c:f3:22:bc:df:80:05:98:
ff:c1:c7:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:31:28 2026 by rpki-client