Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: FEDILYdos0CQdHp6gp4fvrQNf4YrXntr9OuG42vSNSY=
Subject key identifier: 7C:3A:B6:A2:39:91:92:55:92:9C:DF:5A:00:6B:FC:5A:6F:36:49:D9
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 019E1F7EE8AED8693FDDFD2582A093932008
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 048A
Signing time: Wed 13 May 2026 04:01:11 +0000
Manifest this update: Wed 13 May 2026 04:01:11 +0000
Manifest next update: Thu 14 May 2026 04:01:11 +0000
Files and hashes: 1: NS4bJSf8JtisPPo4E4AUvgYiJkI.roa (hash: kNAqy7sfsX/DzrejY1IHLtdhRNkU/dXjQEKN71zDd5M=)
2: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: HgqXqb9rkE/ywHvvlj6WlsusBi60CEQGVU3XdoZ0ZmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:e8:ae:d8:69:3f:dd:fd:25:82:a0:93:93:20:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: May 13 04:01:11 2026 GMT
Not After : May 14 04:01:11 2026 GMT
Subject: CN=7c3ab6a239919255929cdf5a006bfc5a6f3649d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:10:81:d2:3c:1c:06:33:46:33:40:89:46:49:
55:c8:dd:d7:28:6f:bd:7b:5a:be:fe:92:2b:6a:94:
ad:bd:6b:82:07:0b:ae:31:21:2a:28:e8:dd:0f:11:
df:92:85:af:18:fa:20:5e:43:08:33:1b:e5:57:f1:
ae:d9:ad:ff:79:1f:32:70:c1:89:aa:a8:8d:de:6f:
e4:7d:f8:fa:aa:7c:d0:b2:ab:c1:4b:58:99:c1:7e:
01:d1:49:92:7e:d9:fc:b9:5c:45:a8:8f:ee:03:bf:
0e:eb:7d:7f:c2:36:56:34:3a:04:b1:44:74:00:55:
e6:2f:b5:12:38:5c:d3:e8:7e:26:55:cf:f9:00:ed:
ea:91:a8:c6:d5:4d:74:2a:15:81:7e:4c:9e:1e:0f:
45:86:44:68:42:34:ed:05:b8:e5:01:e8:dd:a3:ca:
7b:0b:24:55:bf:c7:b2:64:8c:e2:f1:4c:98:ca:58:
e3:17:8c:36:c2:85:f8:70:7e:8c:c6:72:16:ef:5c:
7f:1a:52:91:df:6b:b9:2c:5f:f2:5c:32:57:e0:f6:
e9:46:37:49:9d:8d:31:e7:cb:2e:5c:07:46:4b:58:
79:70:13:cb:aa:32:d4:2c:21:b7:4d:91:7d:18:22:
95:d8:bf:e1:bb:f9:f6:7f:e8:ea:e5:64:0b:c8:86:
d8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3A:B6:A2:39:91:92:55:92:9C:DF:5A:00:6B:FC:5A:6F:36:49:D9
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:92:c1:4b:2c:3b:02:61:c1:3f:5a:43:6e:80:c6:84:08:49:
39:09:36:3f:1b:5c:0a:6f:bf:6c:52:67:d8:fc:ae:39:de:fe:
3b:b3:1d:70:85:60:39:fe:4e:45:d3:f1:01:27:2b:77:48:40:
ed:f3:92:74:b4:5f:74:cc:9b:17:64:4e:db:d7:79:50:f4:d8:
54:8b:77:3c:1d:9a:7a:3f:b5:d7:44:cd:c3:d0:2a:c2:f7:16:
f2:03:f5:1f:92:af:67:e9:3c:9c:af:c3:6c:53:0e:e1:c4:06:
24:17:bd:96:ca:10:28:4d:52:20:c4:bb:82:11:74:14:e1:d2:
d1:89:0f:d9:98:75:26:e7:a4:83:1b:0a:98:ea:31:04:60:bf:
b7:c3:a9:d0:18:c8:f7:8b:e4:12:f5:2d:32:27:c8:c3:9a:b5:
20:15:5f:48:09:dd:ae:f5:1c:86:a5:d1:5d:18:42:20:26:a1:
bd:cf:56:fc:55:91:fc:ed:8e:e8:9f:06:80:5f:22:ae:f1:83:
b9:d8:0a:7d:82:d2:bd:49:2e:52:13:77:b7:6f:17:36:57:f7:
2d:1b:33:70:48:6c:31:7f:6c:d8:a5:9f:10:3e:f8:d4:14:93:
4e:05:4f:ef:dd:2d:63:93:22:c5:91:dc:d9:aa:e3:19:00:a9:
70:f5:3a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:10:27 2026 by rpki-client