Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
File: ZnKfnQeG9ooezVxakrw5LYaRl14.mft (raw, json)
Hash identifier: DAd0UZKV7uxBk7h+pjvVSwO8R+BUZSFqg37ebsp873o=
Subject key identifier: 66:A7:39:29:F9:1B:4F:C1:AD:5D:6A:BD:AC:15:89:DA:B0:59:A4:21
Authority key identifier: 66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
Certificate issuer: /CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Certificate serial: 019D2BF32F0A4533C13BF302A07051CE4895
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
Manifest number: 146C
Signing time: Thu 26 Mar 2026 21:00:50 +0000
Manifest this update: Thu 26 Mar 2026 21:00:50 +0000
Manifest next update: Fri 27 Mar 2026 21:00:50 +0000
Files and hashes: 1: ZnKfnQeG9ooezVxakrw5LYaRl14.crl (hash: mkPBz7VF5DR0tgjcdPb67fO9/ecauVLHz7buRyGSfzI=)
2: uoe5Gtg5RLHmca7orVX_kgMJ6LA.roa (hash: fAkGAUFUUGm9PtxJMnL3fGCs6QplpIcm9Vtk+9FgVDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:f3:2f:0a:45:33:c1:3b:f3:02:a0:70:51:ce:48:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e
Validity
Not Before: Mar 26 21:00:50 2026 GMT
Not After : Mar 27 21:00:50 2026 GMT
Subject: CN=66a73929f91b4fc1ad5d6abdac1589dab059a421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:21:1c:a7:12:99:16:cf:7f:c5:0a:e9:d0:cd:
c1:c7:1a:b9:cd:87:b6:6b:2c:64:1d:3d:ef:c2:37:
58:6d:06:92:94:9a:bd:ea:65:00:ac:26:76:f4:76:
aa:73:32:83:88:ab:2d:e5:f0:31:14:7c:00:4a:18:
11:27:52:af:6e:ad:e7:0e:da:07:73:45:83:1d:52:
c5:fd:67:42:c2:3b:44:a3:fa:63:9d:9b:3a:81:bb:
99:83:af:f2:7f:e3:3b:86:f9:db:5d:5a:7a:c7:89:
ed:c0:3b:a4:50:db:d6:c5:c5:1f:c9:a4:ac:8d:4f:
dc:c9:7a:77:4c:6a:db:49:42:e6:48:89:1e:84:92:
6d:20:26:58:46:6b:18:a0:4d:f2:7e:3c:85:bd:a2:
84:bd:ec:f4:4c:dc:12:46:99:a4:61:1e:0b:ac:ef:
86:40:75:4d:bf:11:e9:14:a2:8e:51:e8:da:b2:52:
fe:ca:8a:be:97:cf:55:c6:c2:9a:6b:63:21:1c:cd:
6a:ff:84:17:f6:f3:71:7f:e6:1c:7f:8e:a3:3a:91:
26:68:c8:a7:50:a0:06:f3:ff:b0:5d:da:93:5f:fc:
95:b0:a2:3b:6a:69:4a:bd:f7:1c:70:21:40:63:b0:
38:04:e2:aa:33:7d:78:14:8d:cd:9c:ee:0e:b4:18:
75:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A7:39:29:F9:1B:4F:C1:AD:5D:6A:BD:AC:15:89:DA:B0:59:A4:21
X509v3 Authority Key Identifier:
keyid:66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:ee:26:2f:39:17:f8:70:4e:47:24:f9:28:8d:ff:2a:cf:9b:
cb:55:e9:f8:50:95:81:81:37:0c:04:d0:05:cd:58:3b:63:77:
71:7d:7b:11:18:3e:20:62:bb:70:e6:42:55:40:03:d6:df:ed:
b6:b9:2e:47:76:44:fd:2d:d5:eb:0c:f3:36:15:5c:4f:2e:d3:
21:4d:a0:68:51:f4:5d:2f:29:6a:89:4e:e8:4e:2b:e8:af:a4:
26:27:31:d7:0a:3e:ee:c5:29:3f:3f:fb:17:19:98:9a:6c:de:
3d:4a:12:57:f3:64:37:b9:f9:dc:20:12:2c:8e:19:d7:48:62:
dc:80:ad:65:46:93:5e:69:b7:4c:de:4d:44:92:55:2b:f5:35:
0a:21:92:d4:5e:c3:3c:95:b0:6b:51:18:69:dd:2f:1f:ff:ac:
9e:d4:e3:0e:c8:18:2b:c7:b7:76:e1:ee:ef:fa:98:13:7c:4d:
26:54:ad:ac:81:92:ba:f7:4f:89:f1:82:73:4e:c2:56:50:3c:
bc:7e:b8:48:55:88:ad:25:68:8e:a4:32:27:35:52:72:f3:3e:
10:d0:f9:e6:f7:ee:cd:b0:6a:75:ab:46:91:21:5c:9b:6b:ed:
36:19:6f:0c:a6:17:dd:04:b3:a4:83:aa:dd:1a:69:3b:52:45:
2b:c8:0a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 05:11:08 2026 by rpki-client