Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
File: ZhBOT32fONjiKi0yvgGQMZMMGkc.mft (raw, json)
Hash identifier: 7YlkoaofnHl24BeO/TnESd+PDUIgm9k4M6r87S4UwQ8=
Subject key identifier: D9:D2:DC:53:0F:7B:91:47:84:0C:DC:4E:91:89:05:85:86:AB:25:7E
Authority key identifier: 66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
Certificate issuer: /CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Certificate serial: 019D27DFF4364FA5BBAA4197132F10330986
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 02:01:21 +0000
Manifest this update: Thu 26 Mar 2026 02:01:21 +0000
Manifest next update: Fri 27 Mar 2026 02:01:21 +0000
Files and hashes: 1: 5UJy-FglB36m_WVGPhQjUeDpJcA.roa (hash: jbNzffXqgNznaRTGjwlBv00PamtPBMfxq/7d1gTuI2I=)
2: ZhBOT32fONjiKi0yvgGQMZMMGkc.crl (hash: /urg1ROZZJYIs6F+ZPYtoj6bvX+fuhV4xDFoIawUKnc=)
3: e1ImFgRyhdMOKFgAB5kl9XY5Nfc.roa (hash: nTHeDeSEMp4wiPOugAgAjRRaTG5Sm3T4L+dSsNdSPbM=)
4: jsanitEq0EQzEoP-koTj7RMMQyI.roa (hash: CH0iu1++iAldc7IvIKXIHNPTTc8uHt4Xf+q2a+oCLdQ=)
5: xaFYB9Z2Erc-fREk_pDSJqz_vjU.roa (hash: PD/YbANQupr5zYAFp72kktOtRa9bbOhTbu5miLL+NIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:f4:36:4f:a5:bb:aa:41:97:13:2f:10:33:09:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Validity
Not Before: Mar 26 02:01:21 2026 GMT
Not After : Mar 27 02:01:21 2026 GMT
Subject: CN=d9d2dc530f7b9147840cdc4e9189058586ab257e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:bf:72:92:fa:4b:10:f1:2b:06:db:fe:a1:
6f:e7:56:15:bc:53:96:9c:d6:22:70:cf:1e:65:43:
15:63:63:d8:26:bc:91:71:ee:b0:e1:a2:a9:ae:9c:
78:8a:d2:b3:76:49:7b:83:bd:21:dd:30:92:0d:eb:
a2:c4:98:51:92:b9:e7:e9:62:d4:26:51:27:00:ba:
ea:da:22:8b:13:dc:14:fc:6b:6e:ac:2f:7b:c5:3c:
7e:5f:12:4c:cb:41:c8:93:f8:64:90:21:35:e5:44:
b0:39:fd:6b:3a:94:2e:ed:a5:31:1c:82:83:7a:4b:
eb:58:9f:8f:39:b8:a2:5d:26:c6:34:a4:60:51:66:
02:82:8a:75:1f:10:7d:c9:41:b8:98:a7:5a:46:5c:
83:87:7c:ca:b6:1f:15:27:04:d9:63:cc:82:8a:08:
77:07:ac:7f:e9:37:3d:a7:8f:f0:c9:24:48:5c:cc:
48:38:bf:bf:e6:47:c5:c7:bd:cf:72:02:3b:db:6b:
29:cd:49:f0:21:83:8e:7d:43:e4:79:e1:f8:5d:8a:
38:00:d8:6a:3e:9c:26:fc:40:fe:85:c1:18:3e:fa:
59:32:76:c3:f4:b8:e9:20:bc:3d:df:9b:81:df:58:
bb:cf:ca:36:0b:34:af:87:75:14:f6:1d:9f:f8:09:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D2:DC:53:0F:7B:91:47:84:0C:DC:4E:91:89:05:85:86:AB:25:7E
X509v3 Authority Key Identifier:
keyid:66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:b1:bd:02:46:ce:08:c7:e0:aa:58:7f:48:03:07:4e:f9:61:
05:d7:3d:01:f1:12:0e:fe:51:6b:6e:fe:61:53:3e:06:b1:26:
a0:81:95:b8:a3:fc:84:f6:cb:2c:c2:79:3a:be:db:64:09:a3:
a4:53:48:5b:ee:cb:bf:5d:60:4b:bc:16:d1:c5:11:a0:63:b3:
ff:0d:6e:9a:38:c9:4c:87:13:8f:86:76:78:53:e3:51:99:40:
48:c9:56:66:8b:95:fa:8b:7e:96:e0:4e:b3:32:7c:e9:92:21:
f3:72:5c:e0:27:f5:8a:91:c7:7d:09:74:05:e8:b6:29:be:34:
f7:6c:90:c9:a1:3f:b6:81:43:85:f2:20:b2:8d:67:b2:28:36:
f2:ee:2c:15:05:2b:b8:09:83:18:47:50:96:fe:2b:58:df:87:
98:df:3e:cb:ea:60:b7:88:23:35:7c:63:78:66:b5:cf:40:b1:
6b:cf:e9:ca:ef:ef:51:55:79:ec:8d:f7:d9:59:64:f7:04:c3:
ff:e9:40:61:00:93:74:7c:32:82:4b:3a:ef:75:be:6c:22:4d:
02:5b:43:2a:b7:59:98:7b:f5:4c:1c:9f:ab:83:ca:45:21:d5:
b9:23:e6:6b:6f:a8:f8:33:df:f1:9f:3a:cb:9f:ad:40:fa:7a:
a4:a1:c3:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:08:12 2026 by rpki-client