Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
File: Zhao67AREZsvaVMn-xblH4hwRHk.mft (raw, json)
Hash identifier: sg+MpPRafjlAdDalABZfpWmiSZrKnBLBcgtJqMb8q8g=
Subject key identifier: 21:5F:25:7B:CD:EA:6A:47:BB:2B:1A:92:81:C1:15:D6:11:9D:76:32
Authority key identifier: 66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
Certificate issuer: /CN=6616a8ebb011119b2f695327fb16e51f88704479
Certificate serial: 019E1E35CA6CA1EE830AE830A4A29674DE02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
Manifest number: 03C2
Signing time: Tue 12 May 2026 22:01:42 +0000
Manifest this update: Tue 12 May 2026 22:01:42 +0000
Manifest next update: Wed 13 May 2026 22:01:42 +0000
Files and hashes: 1: 0owzz-yAwZGI1zbtpD_4a_vchXc.asa (hash: uEee6eXF8F1K0rvUsnDtxWWj1AUGW3rXYuMBFxhYtPg=)
2: Zhao67AREZsvaVMn-xblH4hwRHk.crl (hash: I4LuDQX8yiEMAp/ypJVIn4xXm4Go6hXSmIlTJcqgGNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:ca:6c:a1:ee:83:0a:e8:30:a4:a2:96:74:de:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6616a8ebb011119b2f695327fb16e51f88704479
Validity
Not Before: May 12 22:01:42 2026 GMT
Not After : May 13 22:01:42 2026 GMT
Subject: CN=215f257bcdea6a47bb2b1a9281c115d6119d7632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4e:fd:3b:c9:59:da:86:a9:b8:9a:53:54:7b:
c3:00:6c:4b:2d:ce:03:96:24:56:3e:27:98:27:ec:
72:3d:09:cd:f5:c4:f4:9a:89:84:d3:c3:97:a2:d2:
f0:a2:39:bd:a2:2e:c4:05:0f:36:8e:21:ec:07:55:
58:61:64:fb:62:25:ec:32:aa:c1:1e:57:3a:7a:bb:
4e:41:3a:0b:cc:df:4f:16:f1:0e:78:0e:47:06:41:
b7:23:4b:40:39:3b:62:75:ff:1e:af:d2:59:bb:9a:
ec:51:b8:83:3a:00:6b:e9:c8:d4:a9:72:94:45:01:
ae:09:b0:96:d0:7a:4e:43:97:04:ab:99:bf:98:31:
13:7f:46:ff:64:55:2a:5d:96:3e:00:2e:90:43:be:
de:cf:78:3c:60:b9:ee:f8:9d:cc:db:8b:b0:fe:08:
54:53:eb:a5:e8:e6:ae:39:d1:ea:7e:0a:ae:92:7d:
67:06:13:55:2b:60:de:31:5a:46:30:b8:d9:47:0c:
f2:27:d0:bf:90:c4:a2:7a:16:1d:24:9c:e6:dd:1f:
1c:3d:d9:0e:8b:4e:7b:a4:86:2a:5d:56:1c:84:38:
87:51:9d:82:27:44:a3:21:6a:3f:f7:ab:91:16:6d:
8f:f6:a4:12:2e:48:e9:5f:ce:75:0d:04:be:a7:06:
7d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:5F:25:7B:CD:EA:6A:47:BB:2B:1A:92:81:C1:15:D6:11:9D:76:32
X509v3 Authority Key Identifier:
keyid:66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:23:fd:54:5b:f7:ac:2a:b9:e1:2a:bd:bb:68:fd:56:fd:64:
8d:ab:80:70:47:77:53:c1:9e:2b:3b:96:55:63:ac:b1:22:31:
1a:6e:8b:8a:b1:bc:fe:76:87:a8:7c:0f:7a:e3:26:5e:e1:16:
8d:14:4a:d0:70:56:07:c4:da:c5:90:fa:ec:d7:5f:ea:b7:aa:
66:38:93:8d:3d:2c:89:cc:79:d4:98:32:12:7b:4c:0a:c7:b8:
b2:9f:d7:79:ee:2b:f2:92:a2:c0:2b:d1:03:ea:86:7e:ca:0f:
a1:80:1e:13:bc:f8:76:14:63:f2:3d:e8:a3:d2:5e:89:ad:fc:
2a:22:b3:d3:ec:3f:b1:93:dd:99:5f:75:72:f1:40:b3:bf:72:
59:7c:10:c0:3f:f7:78:a6:e1:42:91:b6:bb:a8:5a:6c:89:42:
dc:b7:19:8e:14:e8:2d:0e:de:52:7a:f8:09:d5:6c:a8:a3:25:
31:c1:a2:96:17:fd:6e:a4:c3:b7:fb:a8:b6:62:30:67:37:06:
4e:35:39:7a:cc:39:90:c8:0b:d7:6a:c2:4c:06:5f:c2:d1:0c:
0f:8f:a8:ad:5b:15:58:06:60:27:d4:97:64:f2:e8:15:ca:f4:
f4:f2:b8:4e:0d:1f:44:bc:a4:1a:63:49:df:74:42:05:5c:59:
43:67:95:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:01:55 2026 by rpki-client