Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
File: ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft (raw, json)
Hash identifier: 6iHvsElTbF6p9Zyu8obsSb++SlCEA5hFK2XgAcX+uOY=
Subject key identifier: 70:32:6D:03:71:DF:98:B0:4D:3E:39:61:AB:53:36:F0:DD:FC:60:CC
Authority key identifier: 65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
Certificate issuer: /CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Certificate serial: 019D25BACF6DE9B0A50BAC8F5719E103F72E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
Manifest number: 033B
Signing time: Wed 25 Mar 2026 16:01:32 +0000
Manifest this update: Wed 25 Mar 2026 16:01:32 +0000
Manifest next update: Thu 26 Mar 2026 16:01:32 +0000
Files and hashes: 1: OpiyEA7jLNoth377L3JQZRW22EA.asa (hash: r8ONgzWitytpplKZRKdun1LH8tmOWmyteR7//LNHOZ8=)
2: TBDRW3pZmuh3LqJB0SgJxwzZcn8.asa (hash: hzhoB7Z5vY10r4VrziTI+hp0NwmrNuDhAq362RHDbhc=)
3: ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl (hash: C+fImxXH2fqngMImfm4N6nBc11ccNbRcsBcqfPmfNdM=)
4: rzi7m0KP8cPnEmWD-fco-_paj9U.asa (hash: lfKqSnhuUomLdxGZp4G4SFo0AldQ+I4AQDQ1X6QehlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:cf:6d:e9:b0:a5:0b:ac:8f:57:19:e1:03:f7:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Validity
Not Before: Mar 25 16:01:32 2026 GMT
Not After : Mar 26 16:01:32 2026 GMT
Subject: CN=70326d0371df98b04d3e3961ab5336f0ddfc60cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:de:70:97:2a:db:f5:96:4e:86:47:b5:00:43:
7d:36:e3:e0:b9:60:b6:f0:d9:fa:2e:37:c4:ae:56:
18:1d:94:fe:70:c0:f6:cb:e3:01:4e:f9:4c:d5:14:
0f:c1:91:3a:24:29:34:83:27:2b:b6:e3:c2:b3:f6:
d4:92:20:62:a9:05:5e:24:e2:fe:07:aa:97:d1:4c:
34:d5:1a:b2:2f:2a:d6:14:06:cb:73:d7:02:4f:e2:
8a:b1:55:3b:ee:72:df:cb:98:00:99:56:5a:c1:af:
3e:42:c4:cd:86:54:e8:91:b9:db:25:d0:3a:2c:43:
82:b8:6a:9a:31:cb:2e:aa:4b:d9:4a:ec:76:57:89:
5d:c1:d6:3d:2a:d8:0c:9e:10:14:c7:b4:8b:50:51:
ff:e8:18:37:f0:7c:99:9b:d2:ba:a8:e7:ce:a8:41:
64:8b:5e:1f:13:d5:7f:52:13:7a:6e:33:d9:2b:1e:
37:14:29:06:54:c8:5c:a5:a6:1a:8b:7d:0e:ba:cc:
bc:52:2d:d3:e5:16:80:9f:5b:6e:dd:b4:fc:05:bb:
66:9b:fc:a2:7a:e9:9a:fa:ec:3c:c5:ec:54:e4:25:
f5:41:46:d9:2c:5a:66:97:7b:7d:bb:d4:2c:27:ff:
92:46:79:64:d3:f9:9f:25:20:69:68:b2:4a:f2:ce:
ec:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:32:6D:03:71:DF:98:B0:4D:3E:39:61:AB:53:36:F0:DD:FC:60:CC
X509v3 Authority Key Identifier:
keyid:65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:ee:43:8f:77:6a:8b:88:83:b8:2f:c8:3c:98:1d:8a:f4:b4:
6f:4e:ed:28:4c:09:de:99:55:b5:a6:4c:df:69:2e:67:0b:94:
61:0a:c7:97:18:83:3b:66:b9:41:bc:44:0f:9f:e7:cf:f2:d2:
07:d3:d0:c8:f4:7b:f1:2a:ee:0d:dc:86:ef:52:6a:10:fc:15:
63:65:3a:b5:d7:cd:71:c4:3e:de:bd:36:f7:2a:e4:f3:99:5d:
3f:7c:66:c1:74:d8:cc:11:1b:f0:6c:e0:b5:20:ff:35:41:c7:
02:0c:f9:35:d0:03:e4:54:85:06:95:f9:7b:c4:2a:b2:c4:08:
49:80:84:cc:d4:c8:67:96:e8:f2:33:72:17:7c:e8:c7:b7:10:
e3:83:a9:14:22:9e:fd:ad:d0:a3:1e:16:a9:72:79:e3:e8:24:
35:db:67:93:a7:d3:95:b4:c7:f6:f1:ba:1e:fc:8a:3a:60:e7:
e4:bf:9e:43:27:0c:c1:d7:e2:e8:32:11:34:bc:9e:5d:d8:0f:
bd:f0:57:a0:17:6a:c5:2f:65:2c:54:7e:2f:98:78:c8:54:42:
24:b1:86:6e:2d:32:02:24:3b:21:7f:79:d6:b9:73:89:6c:50:
1a:12:96:84:5d:d6:66:6f:cf:bf:29:39:15:47:55:83:68:b1:
68:11:4f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:41 2026 by rpki-client