Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
File: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json)
Hash identifier: HWfJ0zg+P1xXQUbCOaCMcuHTzs4gjY26SDi/CQuR8fU=
Subject key identifier: 4D:A5:EA:D2:A8:81:5F:21:3B:3F:DB:BD:FD:B2:AF:66:A3:E8:2E:55
Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
Certificate issuer: /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Certificate serial: 019D25F185DF35B034BC31F31EE6A90AAF91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
Manifest number: 1796
Signing time: Wed 25 Mar 2026 17:01:18 +0000
Manifest this update: Wed 25 Mar 2026 17:01:18 +0000
Manifest next update: Thu 26 Mar 2026 17:01:18 +0000
Files and hashes: 1: 11UHbWWyzf12DKqEVtlPbvmvLDo.roa (hash: Dg6T6ROSIHh46iUOhkgkZyjyj5P7h4/p+TTyu04jv1k=)
2: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: 49XlND3ZJ5/4KSRRcOYFXwrxD98jwA8i8WPN6FYI8Vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:85:df:35:b0:34:bc:31:f3:1e:e6:a9:0a:af:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Validity
Not Before: Mar 25 17:01:18 2026 GMT
Not After : Mar 26 17:01:18 2026 GMT
Subject: CN=4da5ead2a8815f213b3fdbbdfdb2af66a3e82e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:e1:39:63:db:8b:3c:80:ca:f2:cf:d6:1b:
3b:52:a8:9b:8b:b5:70:eb:7f:0b:47:c5:5e:73:a1:
84:ef:47:13:d0:05:d0:b8:ed:3e:d6:a9:65:e4:93:
d4:06:96:50:2c:ff:c6:e7:1d:70:3e:ed:bb:76:fb:
70:5a:9c:5a:40:7e:d5:34:71:a9:f2:6e:18:49:c2:
a5:e7:c7:d6:f9:3d:ff:e0:b4:c9:71:a9:c5:80:f2:
60:e2:7c:16:3c:d6:91:bd:dd:21:c0:71:9f:3e:41:
ac:92:80:31:21:ee:47:62:0d:6c:39:76:61:30:a4:
c5:80:c6:84:fb:4d:30:d8:13:79:a1:4c:fd:5c:30:
8a:b2:34:b2:13:74:b1:9e:76:4b:d6:b9:13:5d:ee:
95:57:c7:d8:46:df:ad:bd:3e:52:ec:e4:df:91:ef:
0d:f1:99:a3:75:aa:99:08:75:5c:54:3e:ca:e4:26:
33:94:32:01:ef:11:ab:22:15:5b:3d:ff:26:98:90:
4c:41:f3:fa:c2:75:6a:82:3f:e0:56:dc:00:bf:8d:
6e:52:63:a1:87:51:4b:f9:7b:e0:7a:1e:c1:3a:fc:
8c:76:c0:13:ee:41:b0:90:57:74:de:ce:46:f5:fb:
e1:16:68:af:66:e9:51:b0:32:b8:a5:33:af:b8:79:
81:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A5:EA:D2:A8:81:5F:21:3B:3F:DB:BD:FD:B2:AF:66:A3:E8:2E:55
X509v3 Authority Key Identifier:
keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:f4:ae:b7:11:5d:04:c7:8c:31:d7:6e:b7:ca:04:17:ee:f9:
a0:e3:ab:e8:24:ce:a1:d8:93:9a:83:00:f0:e6:47:2e:41:4c:
05:8c:75:de:a3:a3:88:04:2f:fe:00:dd:be:4a:56:92:33:31:
f6:b0:40:1f:fc:21:d4:d9:a1:08:53:c4:92:0b:54:22:ba:b7:
95:0e:f2:dc:1a:45:67:91:42:3c:2f:09:ea:50:93:29:b6:63:
ea:d5:fd:12:7d:2c:58:2e:05:7f:ef:04:0e:07:3b:c7:52:98:
05:a4:1d:40:4d:98:26:4d:14:32:ef:1c:67:91:b4:29:ea:ee:
86:73:80:6a:b9:dd:66:35:32:ae:40:6e:fa:4f:0d:02:88:a0:
ae:b0:1a:f8:60:bc:1c:ad:9a:f2:12:7c:d0:90:ae:67:e6:cf:
28:2e:90:4d:8b:37:9e:76:d5:bc:63:8c:46:9f:54:e8:99:49:
44:79:5a:82:16:8e:15:cf:30:44:52:ce:4b:0c:01:2f:7b:13:
21:e4:60:7e:ca:22:cd:f6:fe:69:44:c8:04:1b:e7:4b:20:ce:
ee:82:9a:3b:46:8a:53:4b:b9:c2:3f:c3:f4:1d:9e:40:b9:98:
3b:29:d4:5b:b6:c2:28:ab:b3:5e:6d:95:c6:e6:5a:e4:78:87:
97:f7:40:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:28 2026 by rpki-client