Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: XK5CseGCGjDbj8zn6Aj2FJrKwwL55hu3nLQ2drnXLD4=
Subject key identifier: D8:4B:5E:EE:F7:92:25:52:F8:D6:A5:DA:72:68:96:53:36:D6:FF:8B
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 019E2023EEED1EE9DAEB8CE2E83A69E89EBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0FAE
Signing time: Wed 13 May 2026 07:01:26 +0000
Manifest this update: Wed 13 May 2026 07:01:26 +0000
Manifest next update: Thu 14 May 2026 07:01:26 +0000
Files and hashes: 1: w3WwugLLFUcrItCxeJKoofI3afc.roa (hash: EnJ2zpdE5VsVYk/C8ci9QDlsMzJ01oLKtWbpS2SqvN8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: d96KTv+bhxs1zsRNNPvpWaNRlTh+Ck/yK1XghKQmWuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:ee:ed:1e:e9:da:eb:8c:e2:e8:3a:69:e8:9e:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: May 13 07:01:26 2026 GMT
Not After : May 14 07:01:26 2026 GMT
Subject: CN=d84b5eeef7922552f8d6a5da7268965336d6ff8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0c:29:5f:02:59:04:fa:cd:ee:c9:8f:9e:7c:
78:1a:83:78:86:e2:8a:2f:5b:33:31:7b:da:9e:ef:
f6:61:11:c6:14:85:2a:86:5d:a4:09:26:56:e0:cf:
f0:ff:17:a5:6b:e7:fd:67:ba:8b:96:75:5c:53:79:
fd:af:c8:88:b5:01:52:63:dd:93:2d:15:70:ac:a2:
df:7d:51:29:e0:fc:2e:3b:ea:69:0c:1f:d7:ac:27:
c4:63:8d:72:de:99:35:e2:eb:58:cc:54:76:fc:c4:
dd:81:b4:a1:a2:40:d5:b5:bf:35:e8:a2:1a:da:9d:
5a:8d:d4:91:42:6f:9f:3e:a7:30:57:cc:5c:c7:79:
0f:1e:bc:5c:07:6f:3d:2e:53:7a:ce:eb:4a:15:5f:
cb:86:49:7f:53:53:87:2e:6f:38:7d:e1:d1:2d:1f:
c8:bc:9c:cd:f5:b5:ce:29:1b:80:8d:a4:6b:f0:bb:
cc:6e:f1:92:68:36:37:25:23:ae:85:6c:2c:5b:99:
65:cf:8b:c7:c0:6f:3e:d7:2b:d5:cf:33:07:d9:75:
e6:9c:ca:60:21:62:9b:b3:b6:ed:57:48:81:f4:2c:
b4:c9:a4:66:56:8f:d4:be:14:31:a4:0f:31:2a:b7:
d2:55:46:2c:df:97:5b:e3:e1:e6:c4:e7:d5:94:6a:
01:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4B:5E:EE:F7:92:25:52:F8:D6:A5:DA:72:68:96:53:36:D6:FF:8B
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:d9:6b:98:2e:d9:7b:d1:4d:9b:74:cc:99:8d:94:49:a5:26:
72:9d:20:e1:7a:30:2a:6c:23:18:c7:35:7e:ae:84:15:37:f7:
83:12:c3:c1:45:9a:0a:b6:34:37:2e:74:61:6a:5f:df:6c:88:
7a:ef:22:64:aa:f4:76:7b:3a:ec:d6:86:ff:f4:88:bf:29:76:
64:71:52:fe:90:18:9a:de:51:f1:2f:00:fc:42:26:c3:7e:7e:
3f:b0:06:2b:70:7c:37:50:ec:16:87:a5:a9:2b:3f:68:13:11:
9f:40:7c:66:67:e8:13:66:5a:2e:a8:64:68:cd:48:68:28:0d:
19:15:38:26:85:6c:76:b0:13:e3:81:4a:7d:a5:63:ef:32:13:
c5:24:e9:ed:c2:4a:86:c6:65:ad:9e:6b:b7:d6:c6:c2:4d:49:
a8:1d:a5:39:0f:e9:89:fd:26:89:b9:6c:96:ba:c4:a2:b4:cb:
d9:43:42:fc:e6:03:24:a5:2a:6e:9d:f5:03:3c:83:9b:45:df:
fe:32:97:da:c2:1d:7a:85:de:af:99:d0:77:00:63:4b:34:82:
98:ab:29:6c:94:c2:76:2e:96:3b:da:a0:43:1c:21:4e:a0:7c:
f1:5c:f2:51:1f:5c:ad:84:31:f7:c8:80:cb:a2:aa:0b:a7:38:
6c:6e:a5:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:28:00 2026 by rpki-client