Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: LfATvYRkLKknb5iajPuZznbD6cP1eqRW4BeS2RmYHX4=
Subject key identifier: AC:72:C8:4B:67:F5:F8:74:DF:1B:E1:27:BD:B8:ED:08:A2:6D:D1:8E
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 019D2AE0E615E7C3212C9A5AF164F6B88711
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0F2F
Signing time: Thu 26 Mar 2026 16:01:15 +0000
Manifest this update: Thu 26 Mar 2026 16:01:15 +0000
Manifest next update: Fri 27 Mar 2026 16:01:15 +0000
Files and hashes: 1: w3WwugLLFUcrItCxeJKoofI3afc.roa (hash: EnJ2zpdE5VsVYk/C8ci9QDlsMzJ01oLKtWbpS2SqvN8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: ClsUwmPCohnZMRX2vqlxSARMpD1ARymi+CDA4ZGmtvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e0:e6:15:e7:c3:21:2c:9a:5a:f1:64:f6:b8:87:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Mar 26 16:01:15 2026 GMT
Not After : Mar 27 16:01:15 2026 GMT
Subject: CN=ac72c84b67f5f874df1be127bdb8ed08a26dd18e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:71:b2:87:04:b3:d8:11:9c:b9:db:40:52:71:
77:b5:01:2c:f3:53:57:b3:26:f8:f6:48:09:df:7d:
a5:bf:89:12:48:e3:23:1f:b5:96:40:e6:0d:54:58:
a8:c8:a8:cf:2a:8c:69:44:a3:85:76:78:e1:03:c9:
23:84:66:77:f3:63:f7:7f:0f:72:24:a4:3b:29:ee:
5a:71:00:3d:45:36:b8:83:ce:a4:74:06:a9:32:4c:
ab:3a:54:cd:28:d5:bd:09:61:1c:6a:fd:d8:8e:52:
0e:ca:e5:3c:c5:c9:18:f2:aa:b6:aa:ee:b6:cc:e4:
bd:5f:b1:72:4f:7b:d5:df:e2:f0:32:2f:b5:8f:d9:
a9:ef:71:fc:2b:17:5b:9c:4d:99:56:06:ec:5b:1b:
1d:32:0a:a4:e0:69:d7:97:8f:55:23:a8:4f:60:1e:
d0:f6:8b:34:dd:cd:d9:07:8d:cf:13:bd:33:9d:a1:
c3:fc:44:6b:ce:1f:6b:66:4d:ad:0e:9f:e7:19:9b:
ba:d5:9e:53:6f:fd:e7:7c:a2:5f:46:8d:90:d7:ad:
f7:26:18:e5:c8:09:ce:8d:d0:1c:db:92:fb:47:03:
ca:1c:ee:53:76:15:f2:64:ca:2e:fb:79:d5:72:6f:
11:32:30:87:cd:5c:f9:7d:6f:6a:6c:c0:bc:b4:74:
08:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:72:C8:4B:67:F5:F8:74:DF:1B:E1:27:BD:B8:ED:08:A2:6D:D1:8E
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:04:fd:ee:9e:1e:c0:ad:05:f7:e0:2a:ca:85:b8:ff:6d:ce:
0e:e4:b0:0b:85:4e:f7:e0:27:25:f8:d0:8c:9b:4d:b4:a7:27:
8a:48:f8:53:3d:a3:82:a4:14:14:45:4a:ed:bd:e1:58:50:67:
a1:b2:c8:f9:48:5a:41:0e:b3:a5:fc:79:e1:af:a1:5b:46:8f:
8d:aa:de:f8:0d:c4:df:45:23:9f:af:46:d3:03:54:46:6d:a7:
f1:d0:b1:16:46:fb:76:3d:b5:04:fa:51:00:ac:fe:48:56:63:
b5:7d:2e:0e:f1:47:6a:18:a8:6c:11:fa:04:7c:f4:ee:b8:e9:
53:26:c7:04:41:e4:26:42:b8:7b:a1:d0:03:6e:e2:81:7c:cc:
e4:9c:2d:df:21:52:c7:67:69:13:d1:9a:ba:39:fa:b6:da:5e:
b7:fb:13:28:6c:18:ff:eb:18:51:d6:de:d6:6e:d1:d6:66:cc:
18:88:eb:37:10:8f:30:a0:ab:67:f9:8b:22:67:fa:ac:4e:2d:
a4:e8:00:45:94:a9:8d:9d:ff:20:72:ac:a5:22:e2:ef:db:60:
ed:99:e8:8f:42:3b:c7:f3:25:7d:1e:f6:54:2d:45:01:93:fc:
a6:a8:8c:73:70:10:8c:a9:e4:96:ba:43:ce:5e:2e:76:e0:f7:
7a:2f:ae:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:18:12 2026 by rpki-client