Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
File: g-ZAPPcyIcEX6km8kjT-b0oR14A.mft (raw, json)
Hash identifier: ybK4mTHGfjNlIKJEm5gwNP8ym+YkFTZa7uZYnGeSKQQ=
Subject key identifier: CF:C4:BF:01:B9:9C:4B:3E:50:E7:81:AC:3E:6D:D7:E8:32:8B:17:39
Authority key identifier: 83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80
Certificate issuer: /CN=83e6403cf73221c117ea49bc9234fe6f4a11d780
Certificate serial: 019D273AE01B273C09BAD1193940AF231377
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
Manifest number: 137A
Signing time: Wed 25 Mar 2026 23:01:02 +0000
Manifest this update: Wed 25 Mar 2026 23:01:02 +0000
Manifest next update: Thu 26 Mar 2026 23:01:02 +0000
Files and hashes: 1: g-ZAPPcyIcEX6km8kjT-b0oR14A.crl (hash: sQrcsUSH0AVNpEZGq1whdal7Rvjs15PO5o24F/kR6p4=)
2: kb5QsyYCWAXreqKDSNly_eUOWbs.roa (hash: R6T+O7UNp0e/weGB+lvgWkopq769WLtdhPDiexDGO0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:e0:1b:27:3c:09:ba:d1:19:39:40:af:23:13:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e6403cf73221c117ea49bc9234fe6f4a11d780
Validity
Not Before: Mar 25 23:01:02 2026 GMT
Not After : Mar 26 23:01:02 2026 GMT
Subject: CN=cfc4bf01b99c4b3e50e781ac3e6dd7e8328b1739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:30:0e:9a:97:1b:a0:85:2e:2f:c9:56:b8:ac:
6b:8b:42:3b:6e:4b:ea:75:44:24:b8:86:9d:95:2e:
38:e4:aa:24:62:a1:70:e1:28:24:2d:33:6a:f0:41:
ca:f5:a8:34:c4:05:11:10:79:8a:c7:8f:f7:59:96:
17:a2:8b:00:c0:9b:41:02:98:23:57:ac:d0:3b:65:
2b:34:94:c8:4b:4a:5b:18:9a:c8:6b:e2:9b:90:6d:
45:c0:95:f8:8a:f1:29:ea:20:37:82:96:bd:e6:fd:
34:60:90:ae:52:e1:d9:be:35:07:81:b7:b0:f4:de:
33:2f:d1:bb:45:11:16:c6:76:cc:c9:42:05:ce:a6:
3b:02:3a:f7:e4:76:4f:f7:58:25:ca:30:4e:b8:8a:
1b:7f:70:d7:a7:46:b0:6d:77:f7:4d:56:35:99:dc:
9b:88:d6:80:46:33:76:b7:34:b4:09:b6:76:eb:cc:
3d:47:b6:14:9f:0c:57:7a:8b:9b:1d:36:6d:7d:28:
d1:9a:0a:57:f2:f1:35:2d:be:5d:54:e6:9d:2f:86:
1a:54:2e:e0:f4:a8:f1:43:ed:cf:41:14:8e:fc:c0:
da:36:d1:bf:aa:e4:96:ce:cf:1b:36:83:89:9e:2f:
3f:05:16:3f:4b:91:11:5b:b1:0e:31:f5:2d:92:ec:
c3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C4:BF:01:B9:9C:4B:3E:50:E7:81:AC:3E:6D:D7:E8:32:8B:17:39
X509v3 Authority Key Identifier:
keyid:83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:60:c7:7e:3c:22:2b:5b:2f:ca:9a:fd:0f:11:d7:36:5a:bb:
29:4e:57:bc:a5:2d:ec:97:b8:fb:5a:d1:ba:4f:4a:4b:2a:52:
3d:95:0a:58:34:13:77:4e:e0:1f:75:49:77:82:a4:5a:5a:d9:
6b:4c:95:b7:1a:1b:1a:32:4b:27:d4:a0:2a:b5:47:17:1e:92:
0a:a8:31:cf:d4:cd:53:d6:2a:e1:91:d3:10:17:b0:20:f7:e7:
95:d6:a5:41:ae:f4:4f:44:1c:f0:3f:c7:bf:be:94:22:5b:7a:
58:21:7b:5e:28:71:4b:e1:85:ec:46:b7:fc:65:61:a5:b2:8e:
d2:47:ff:ab:e9:ad:30:e5:4e:e4:dd:64:c9:54:16:33:8b:be:
aa:14:d7:1e:de:9e:5b:b6:e5:f2:bf:9a:6f:5e:93:6b:71:7b:
25:09:bf:17:1c:83:81:96:5d:0d:5c:69:be:8b:ee:6a:66:50:
40:d5:e7:d4:3c:31:bf:4b:e8:7b:53:09:15:be:82:cc:91:36:
09:2c:4b:a3:5f:d3:7e:76:cf:e3:31:72:6d:ee:f6:e5:94:76:
18:5a:9f:63:e1:56:44:80:0c:2a:83:08:97:ba:53:f5:07:1e:
f9:8e:20:1c:07:6d:85:bf:4a:4d:b2:81:ca:90:7d:52:56:6d:
a2:05:dd:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:05:40 2026 by rpki-client