Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
File: ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft (raw, json)
Hash identifier: ALhpHRDCCcK9fMdyqUzqIDhMrjgDQtmyvZm18sJEn20=
Subject key identifier: F2:AC:83:71:7A:75:85:C5:91:B2:A5:11:D5:0D:F0:04:E8:B9:5E:9B
Authority key identifier: 64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9
Certificate issuer: /CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9
Certificate serial: 019D2704407BF4E9EACD59D4A4ABD9651031
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
Manifest number: 1814
Signing time: Wed 25 Mar 2026 22:01:23 +0000
Manifest this update: Wed 25 Mar 2026 22:01:23 +0000
Manifest next update: Thu 26 Mar 2026 22:01:23 +0000
Files and hashes: 1: ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl (hash: KzG/cS+euYoMLeKHL5NWVz9XW4O9rGVZt9vVzz48vOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:40:7b:f4:e9:ea:cd:59:d4:a4:ab:d9:65:10:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9
Validity
Not Before: Mar 25 22:01:23 2026 GMT
Not After : Mar 26 22:01:23 2026 GMT
Subject: CN=f2ac83717a7585c591b2a511d50df004e8b95e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:dc:74:77:e2:32:65:db:f0:c1:7b:f8:64:d8:
0a:4f:b1:c9:1b:73:f2:cc:e7:cf:f4:61:f0:e0:19:
78:66:7b:d1:d8:6e:c6:08:a6:05:83:2c:51:cc:59:
b2:19:8e:67:e7:e7:63:e4:7c:3a:9b:f6:f8:83:19:
4b:cf:84:cc:4c:11:8d:b6:44:e3:0f:04:ef:eb:c8:
71:34:c3:96:3e:41:bd:2c:64:b1:ee:a5:e6:f1:02:
fe:3e:99:9a:fa:2f:91:c3:bd:08:99:ff:89:30:5d:
75:2d:59:f8:af:94:a8:8e:04:46:1e:bf:91:ac:c8:
cd:4b:10:a4:73:de:8b:54:81:b6:d2:e7:fb:09:57:
1e:0a:f7:f4:5d:42:21:9d:80:1a:bb:65:3a:3b:70:
61:77:3f:a5:95:21:d6:8f:14:42:ce:b6:ad:9e:aa:
fd:b4:4c:dc:4e:7e:4c:33:f8:0c:73:71:45:c3:d0:
c9:9a:ea:84:9a:59:06:8b:bd:45:9d:cc:a3:37:43:
d2:f6:4d:14:c5:3d:b5:59:83:b8:68:d2:12:c5:e8:
ce:a2:41:f8:70:38:f0:7c:68:8c:b1:b5:f7:2f:8c:
42:5f:9e:42:3e:e4:28:1e:a8:dd:7a:21:3d:28:e0:
a3:0f:f2:e7:b8:87:b6:36:64:d0:78:5e:ba:97:6b:
02:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:AC:83:71:7A:75:85:C5:91:B2:A5:11:D5:0D:F0:04:E8:B9:5E:9B
X509v3 Authority Key Identifier:
keyid:64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:dc:9f:1d:b4:c7:88:20:76:f1:20:d5:06:99:07:b7:59:e5:
17:ce:0f:ce:27:19:27:8c:36:95:47:ec:5b:11:a2:2d:6f:b5:
85:41:be:69:38:bc:16:75:ff:30:1f:dc:09:19:d6:a7:24:ee:
14:1d:3b:63:6b:e4:f9:b4:5a:06:35:1f:58:25:9b:cb:ad:08:
90:73:31:a5:fe:b3:07:7f:be:d9:cd:d4:76:26:65:aa:f1:30:
ae:44:97:af:a7:10:2f:ae:01:54:21:00:55:cd:65:f0:30:7f:
92:57:b7:e7:53:24:4d:6e:29:5d:9f:e6:81:f0:a4:42:f2:2e:
3a:ba:b0:69:73:a8:4f:ad:14:84:6b:a4:23:2f:1e:e2:1a:98:
22:44:e8:13:8d:a5:ea:01:2d:22:3b:9a:d0:3b:8e:35:1d:29:
ba:0c:3a:e1:99:e1:88:8a:16:8f:8c:38:02:61:83:a8:99:2c:
6b:63:ed:ab:a1:0d:8d:54:f4:30:78:d0:43:a8:c8:21:30:5d:
60:fb:a9:f0:7a:14:bd:7d:72:d0:c3:21:ea:ff:13:5e:2d:09:
87:8f:9d:cd:67:f7:99:20:77:0d:72:95:82:9f:5f:09:85:21:
02:9f:17:01:be:e6:56:4b:4e:f2:42:98:dd:26:a4:b5:ea:7e:
c6:20:ba:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:00:48 2026 by rpki-client