Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: Ga7EhLXqHO0uJ2oTQ9V+a02z353qYbh+Dkgy2GCSfP0=
Subject key identifier: D8:5C:4B:9C:9F:51:90:84:90:77:9E:0E:09:53:62:6D:F5:15:86:0E
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 019D26963F3FE0E932134FF724A7F5467587
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: 038C
Signing time: Wed 25 Mar 2026 20:01:13 +0000
Manifest this update: Wed 25 Mar 2026 20:01:13 +0000
Manifest next update: Thu 26 Mar 2026 20:01:13 +0000
Files and hashes: 1: DV_1PU5sghttOAyD5Fk0auja6M4.roa (hash: vyYX2XFHKs4PfXvL2MDa+XaKNUQzIY/+9Y9TmVp9CiU=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: tlLXqHIj4aKFkoOfvGMuCrs4KpNRrM903JEZiapSzG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:3f:3f:e0:e9:32:13:4f:f7:24:a7:f5:46:75:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: Mar 25 20:01:13 2026 GMT
Not After : Mar 26 20:01:13 2026 GMT
Subject: CN=d85c4b9c9f51908490779e0e0953626df515860e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:03:2b:65:8d:d2:4d:ed:a0:60:fa:bc:4e:
1f:10:73:d3:d9:de:e8:0e:5e:52:c4:0e:1d:f3:32:
cc:d8:71:71:4c:22:d9:07:fe:3c:fe:01:d8:f2:2d:
4c:63:2a:3c:5e:f4:d8:97:a7:d7:7a:4f:5b:93:64:
bc:36:84:2d:59:00:8a:d9:d4:28:33:2b:68:f1:63:
07:70:d6:fd:06:1f:5e:68:4a:41:43:f2:ed:4f:2e:
ce:8d:8f:38:3c:5f:fe:a0:ed:a3:15:b8:36:26:ef:
d0:c7:2e:18:98:5f:07:91:c5:76:a5:3f:d0:32:99:
61:0e:e3:96:da:82:95:bf:30:80:7e:cd:1c:81:ab:
32:3a:30:32:5c:94:86:ba:3e:c8:44:87:3f:d2:75:
76:89:37:84:92:d9:a8:17:1f:91:ed:e6:79:89:e7:
1b:e8:f9:5f:d5:c4:ff:74:f0:e9:6f:26:9d:8e:7b:
79:26:e0:52:f6:d7:61:f7:64:de:cf:dc:d3:6e:e3:
8d:ec:05:77:4b:0b:80:97:c8:0d:3f:68:71:5b:a0:
76:fd:e1:bf:c3:a9:d0:20:e6:44:99:71:3c:39:1c:
d6:0a:d6:dc:3d:8a:ec:9f:31:f9:65:15:81:4c:51:
4f:a2:a0:3d:4a:59:0e:32:73:d7:76:84:bf:1c:8d:
de:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:5C:4B:9C:9F:51:90:84:90:77:9E:0E:09:53:62:6D:F5:15:86:0E
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:6b:e5:9f:fb:0e:cb:c2:65:19:dd:e0:7b:7b:95:15:f5:d2:
f9:d4:ae:15:ba:97:45:76:e9:08:da:36:c9:f8:b1:ae:a2:ba:
da:de:61:14:5f:ba:24:9a:61:c4:3c:cb:49:c0:28:65:d7:7d:
1a:b9:d2:70:8d:ab:c8:c3:18:9b:44:d2:2a:50:90:29:34:11:
6b:95:92:1a:0c:03:ca:de:f2:5d:c0:0b:ba:63:6b:cc:e5:94:
3d:08:5f:27:37:0b:96:dc:77:f8:1f:4d:63:08:93:25:3a:75:
ef:eb:28:6e:54:39:b7:9e:94:48:c2:8e:8f:07:1d:fb:39:4b:
fd:3a:a4:31:81:ab:86:54:af:9e:8d:43:cd:1d:7a:e9:14:9e:
ff:05:dc:b6:ae:28:72:7a:11:00:40:0d:f7:8a:e1:89:28:c9:
6c:94:82:03:1e:93:b5:1b:57:03:f0:6b:e6:51:3f:f2:75:85:
51:9e:aa:b5:c0:ad:7e:07:bf:65:e4:e9:a2:ce:f2:4c:be:cb:
fb:b2:66:b0:ee:b6:83:79:af:1b:a7:07:5f:86:58:ea:60:d1:
9b:7a:03:cd:02:e8:97:9c:64:2e:81:eb:74:b3:8c:d1:58:8d:
f7:3f:9a:74:98:4c:a2:cb:84:70:e3:75:27:19:f6:39:a9:7e:
22:c2:d2:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:28 2026 by rpki-client