Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: zgR0w2099eov0hxhr0bCoudb4Aa40Ls2TMC48rTnyFI=
Subject key identifier: 34:42:A1:BC:18:05:D5:36:40:23:5B:D9:6C:D3:74:FC:68:96:1E:92
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019D27DFE70C0344F135B6F95AC2AB467BBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 08B0
Signing time: Thu 26 Mar 2026 02:01:18 +0000
Manifest this update: Thu 26 Mar 2026 02:01:18 +0000
Manifest next update: Fri 27 Mar 2026 02:01:18 +0000
Files and hashes: 1: QHXSRTuQ2wXN4fBaqbTGI2do0QM.roa (hash: 6/Lj3vL/L1J4PjbZ1lCMZ4grKgrWI3SnlcnhAkor32k=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: tE0zk9YW3YBFradd08krWHpvwLoMsGMpbBFYXEYMkjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:e7:0c:03:44:f1:35:b6:f9:5a:c2:ab:46:7b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Mar 26 02:01:18 2026 GMT
Not After : Mar 27 02:01:18 2026 GMT
Subject: CN=3442a1bc1805d53640235bd96cd374fc68961e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:1c:5d:43:86:50:84:4f:97:b8:e7:3c:e2:b0:
4a:88:3d:10:62:e3:c9:e3:0e:23:33:79:99:e7:53:
26:9c:22:ff:4a:9f:61:7c:c6:fe:7b:8e:86:65:07:
18:bf:d8:fc:89:b6:c9:d8:b8:06:79:22:e7:2c:12:
e3:a9:a3:68:61:99:b2:3e:4c:13:9c:ae:b7:fd:d3:
6f:71:2e:f3:03:9f:e4:2d:c2:43:8f:da:5a:38:a0:
ab:70:ce:1d:68:86:d9:d7:3d:08:e0:ca:46:f2:ba:
21:15:b5:65:79:15:b1:64:02:dc:b7:ea:e4:36:cb:
af:45:bf:36:e4:55:87:53:6f:2d:f6:a0:be:30:37:
f9:8c:c8:a4:88:e1:c0:8b:9e:80:f2:78:1c:a3:72:
28:6c:17:63:ed:40:28:62:90:eb:c1:7c:eb:d6:c5:
8a:93:cd:04:cb:c9:fc:41:97:b6:3d:b0:b7:a3:be:
6e:e0:ce:70:1e:90:67:3b:4d:bc:12:34:04:5c:f5:
77:d0:a7:ba:5d:3c:f4:9c:47:94:5a:ed:af:30:3e:
6d:0f:40:4f:e3:0a:54:93:d5:ee:12:43:03:73:0c:
e8:8f:96:36:33:26:92:41:4c:38:f3:19:7c:f6:0b:
65:4d:d7:ae:71:1f:a3:26:13:aa:a8:9d:59:87:2c:
20:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:42:A1:BC:18:05:D5:36:40:23:5B:D9:6C:D3:74:FC:68:96:1E:92
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:55:1f:5a:19:08:37:f0:f8:17:de:9e:9a:d7:8d:9b:44:e7:
e5:c4:f9:8e:52:8d:20:b1:02:43:69:dc:12:9f:b6:6e:59:55:
0a:11:82:58:24:f2:76:1a:2c:3e:12:ad:76:54:40:7d:f7:42:
77:93:05:18:09:f5:e6:d2:57:2f:ee:cf:ea:5c:5f:fb:21:11:
85:b5:de:a5:60:3f:12:94:1e:3a:7a:68:8f:89:3c:98:b1:a1:
04:ab:9d:cc:4c:49:7e:18:bb:e9:6e:51:e6:1a:a8:f0:27:58:
8e:10:8a:17:60:55:34:75:f0:fc:de:fd:5d:22:90:34:5c:a4:
44:33:84:1f:06:2a:e5:b7:53:30:cb:74:82:bd:7c:4f:3c:c4:
4b:5f:40:e4:e6:d6:53:66:ca:d6:bd:d1:28:cd:d3:ae:48:24:
fb:18:9d:e2:a6:c7:42:38:84:4d:a3:62:e0:f6:80:65:dd:89:
ca:a6:2a:b0:da:37:05:4f:05:9e:26:3e:c7:82:dc:c7:a5:b4:
7b:d5:ae:dd:b6:53:01:55:ea:a0:eb:09:2f:e3:56:54:de:9e:
46:60:7b:85:d0:d6:d5:c1:c9:66:65:df:a8:43:79:a4:4d:ec:
88:64:98:d0:d9:7a:bb:e6:6b:36:ad:62:50:a6:c0:5b:4a:9f:
37:d6:0c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:28:30 2026 by rpki-client