Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft (raw, json)
Hash identifier: NIQ6tZAeGIxdxUbCy5eZdjeMoy+edT8MZnk0PL1EAnM=
Subject key identifier: 18:2D:02:26:F4:C7:02:AC:C7:D1:1C:F7:A5:AD:B4:6E:04:5C:D6:C6
Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c
Certificate serial: 019D25F1DC59095324538D935CCDA0CEB4F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
Manifest number: 0692
Signing time: Wed 25 Mar 2026 17:01:40 +0000
Manifest this update: Wed 25 Mar 2026 17:01:40 +0000
Manifest next update: Thu 26 Mar 2026 17:01:40 +0000
Files and hashes: 1: QdHInLlgS5JRpnU_JucTtPY8VJk.roa (hash: QfoNmRCKJigBgYRu4CBAAOqEk87PTUk4h7GOHN5KHOs=)
2: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl (hash: v9foWiQDPZE7I8Dex2yksX7QWhmedBmarn0GF81dwGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:dc:59:09:53:24:53:8d:93:5c:cd:a0:ce:b4:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c
Validity
Not Before: Mar 25 17:01:40 2026 GMT
Not After : Mar 26 17:01:40 2026 GMT
Subject: CN=182d0226f4c702acc7d11cf7a5adb46e045cd6c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bb:2e:9f:9a:1a:15:c3:d8:c3:0e:ef:78:13:
1b:ae:e1:6e:64:75:3e:83:ef:bd:7c:03:3d:ec:38:
49:47:a2:bc:2e:76:77:73:5d:35:1a:73:7d:1c:b5:
13:ec:1c:cb:92:e9:69:ab:c5:2d:c9:dd:4b:73:ab:
a7:9e:12:14:eb:78:ae:03:ab:0e:ac:42:d2:09:f4:
b5:74:4f:1d:b3:a4:55:68:98:92:34:00:2d:cb:d2:
16:c2:3b:9e:9d:d7:13:96:ab:f0:b1:11:73:30:8c:
52:3b:3f:fc:4a:45:8e:3f:98:1e:77:47:f1:c8:13:
f5:70:c3:d0:5b:35:8b:a2:4b:c5:fd:dc:aa:cf:d1:
1e:cf:cd:93:96:9a:5f:77:5c:61:43:9f:9c:f4:69:
4e:7d:c1:a9:ec:16:c2:69:8b:e5:1b:13:28:40:1a:
d2:99:41:bc:92:81:11:33:53:0a:9f:bb:80:fa:0b:
d6:6c:16:21:22:6f:3e:0b:97:60:ca:23:20:29:5e:
58:d6:07:dd:0a:2c:b6:dd:79:aa:4d:93:7d:89:5a:
aa:9c:6e:e1:4a:bd:09:80:6f:57:83:b9:d5:d6:b9:
1e:3f:55:f7:20:9f:df:f3:92:ac:44:ac:f7:51:e2:
7a:3f:a4:b2:de:85:cc:6a:9d:01:7e:82:4c:e6:3a:
5a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2D:02:26:F4:C7:02:AC:C7:D1:1C:F7:A5:AD:B4:6E:04:5C:D6:C6
X509v3 Authority Key Identifier:
keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:9e:b0:ae:ad:9a:3a:dc:e6:8e:d7:66:d1:51:47:34:9b:64:
7d:0e:53:8d:60:1c:34:70:75:e6:6e:1d:e7:c8:dc:46:27:47:
a4:cc:17:9c:b2:13:9b:b6:77:33:61:ff:51:4f:55:0e:20:16:
ed:1d:a3:22:c9:89:91:4a:44:e3:2c:e2:00:b4:35:6c:29:66:
ca:08:54:db:c2:e8:ee:54:0a:f7:cf:e0:48:28:b8:0d:ed:e7:
53:68:fe:7c:4d:39:bc:21:41:02:79:b6:ca:6f:95:eb:ac:e2:
93:39:6f:7b:88:90:34:31:d0:5f:9b:9f:02:a5:0d:70:54:7a:
be:95:0f:bd:c1:cf:b5:80:96:f7:09:3b:14:37:06:02:1c:38:
f9:7d:13:d3:8a:f8:43:4f:53:4a:e7:b4:88:73:38:60:26:07:
f2:2a:f7:7f:a5:ee:9a:9e:78:c4:a5:3a:90:8a:2e:fa:6a:a6:
b7:09:82:bd:20:4f:e0:43:1c:f2:cf:85:03:c2:0c:b9:c2:a6:
1d:c7:73:7b:b3:3c:47:ac:fb:d8:19:d0:62:71:02:a7:18:cc:
7d:ff:c6:a0:0c:b7:78:a6:82:a8:d3:60:58:98:75:0b:5b:84:
38:d7:f8:7d:4d:14:19:63:f6:02:22:fe:68:1d:5e:d3:a3:f3:
06:4a:b4:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:51:37 2026 by rpki-client