Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
File: zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft (raw, json)
Hash identifier: Zryxo7qZZOjfkMA3lSEKxfbqw3GuH56yLUiO7geaD6U=
Subject key identifier: 04:17:6C:E2:54:14:7E:3E:B9:F4:D6:23:66:92:91:88:95:CC:E8:D7
Authority key identifier: CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2
Certificate issuer: /CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2
Certificate serial: 019D26CCF84B294EBE0A044F8ABE77DB8280
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 21:01:00 +0000
Manifest this update: Wed 25 Mar 2026 21:01:00 +0000
Manifest next update: Thu 26 Mar 2026 21:01:00 +0000
Files and hashes: 1: P2B766sld6YbwOxda85NHhDsjNc.roa (hash: Rh+n3/ugGLGil4AXCXWWDwwftkzN5fZJ5lMUe38d6gg=)
2: zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl (hash: RdUXru6RQo46kwxo457DF1QzXgpVuCG+IpWB+Lgn+XA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:f8:4b:29:4e:be:0a:04:4f:8a:be:77:db:82:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2
Validity
Not Before: Mar 25 21:01:00 2026 GMT
Not After : Mar 26 21:01:00 2026 GMT
Subject: CN=04176ce254147e3eb9f4d6236692918895cce8d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:38:7a:99:24:a8:c8:50:34:ba:47:48:b7:e2:
5a:b7:0f:1d:78:c6:d5:95:b8:2f:68:ee:a2:02:29:
40:c3:58:25:6d:76:71:17:69:2a:68:1e:8c:76:35:
88:37:f1:94:7c:9a:a3:c3:99:ae:92:f4:c6:5b:19:
ef:c9:37:05:6d:d5:9c:2a:6a:4b:1d:60:fd:68:bf:
79:34:ff:c1:1d:d6:5e:3c:1d:44:17:c1:17:bb:f0:
23:da:a2:a7:1b:b1:2d:29:f8:ef:e4:45:14:c8:5e:
34:f9:59:34:9d:fb:35:f9:d9:bb:b1:8d:ab:0d:87:
ed:20:69:d9:e7:53:5e:98:a8:cf:9e:f5:ed:a9:93:
a7:0f:f8:75:89:2b:98:33:5a:51:7f:6e:0c:fd:f9:
9a:4f:46:52:e6:19:06:f9:cf:db:e6:b0:bb:32:ac:
77:35:89:c6:91:c2:21:2f:5c:5d:f4:ed:c3:c6:38:
60:4b:2d:bc:49:fb:15:f6:8a:56:36:53:89:bf:aa:
7a:47:a2:2a:54:31:26:74:1a:4e:4e:50:d0:57:b0:
76:97:be:b1:8a:1f:42:ca:9a:02:b8:78:48:0f:34:
08:05:5d:dc:09:76:72:b4:04:d6:77:f8:77:f6:3a:
cc:df:ce:23:99:6a:57:91:e4:75:33:47:20:e1:03:
69:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:17:6C:E2:54:14:7E:3E:B9:F4:D6:23:66:92:91:88:95:CC:E8:D7
X509v3 Authority Key Identifier:
keyid:CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:33:3e:a7:43:7c:f1:4b:f8:0d:93:a8:45:6d:ef:e4:da:c9:
75:83:26:6d:4c:29:b5:79:7e:88:a9:9d:d2:ca:e9:af:3a:15:
19:b8:de:7f:50:5c:3b:3c:72:2b:9d:bd:79:13:a5:39:08:55:
03:01:50:bb:2f:c6:e0:be:11:d8:a2:88:ba:31:ea:22:28:f9:
7f:a6:09:36:ef:6e:a2:2e:77:fe:dd:60:fe:fb:c3:df:0e:ae:
ab:7a:72:1c:0a:1e:cb:57:ed:6a:c5:e0:41:7d:5f:97:77:2b:
52:fe:ac:b3:7a:36:8c:50:aa:7d:18:ac:21:67:0a:e8:e8:7b:
2a:77:06:36:19:1e:41:b3:00:94:62:7d:f1:c6:e2:68:4d:77:
4a:c9:a0:ce:d2:d7:c1:0f:a6:1b:32:72:7e:3f:5c:6c:38:be:
97:92:f1:cd:3c:35:57:80:f9:98:ed:e1:56:61:26:e8:ad:84:
f9:f6:44:65:91:43:81:43:8a:b4:f1:5f:17:98:f6:c4:14:e4:
43:8d:e3:45:ae:14:4b:8f:23:18:36:4e:15:6d:64:0a:63:ec:
b4:f5:2f:9f:8b:50:ef:85:c3:12:11:f8:2c:08:e3:b5:73:33:
c0:2a:33:7e:fd:c6:3d:44:d2:58:3c:99:88:07:84:24:de:d3:
8d:24:85:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:18 2026 by rpki-client