Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json)
Hash identifier: Z1oEH/aZfSa2mEJaEJqvoBBRlFnNpA9kQUr141C0ogE=
Subject key identifier: 1B:88:BD:D4:85:64:43:7D:5D:98:B1:40:89:B1:CE:59:5E:42:B9:1D
Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a
Certificate serial: 019D25F182F6A92907BDACFF9A584E74B341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
Manifest number: 1883
Signing time: Wed 25 Mar 2026 17:01:17 +0000
Manifest this update: Wed 25 Mar 2026 17:01:17 +0000
Manifest next update: Thu 26 Mar 2026 17:01:17 +0000
Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: xIHm/sRtjRFbMIo98qlXBeFvHEfJUimP8anij3ZMcXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:82:f6:a9:29:07:bd:ac:ff:9a:58:4e:74:b3:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a
Validity
Not Before: Mar 25 17:01:17 2026 GMT
Not After : Mar 26 17:01:17 2026 GMT
Subject: CN=1b88bdd48564437d5d98b14089b1ce595e42b91d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:1f:67:f3:83:a3:29:f6:fb:5e:30:86:ef:
e5:7d:a1:dd:6e:fb:04:62:76:03:0d:67:0a:5d:17:
80:0b:63:d7:07:34:54:4e:37:74:b8:ee:47:53:74:
f3:cd:68:1c:70:de:21:62:35:be:d9:35:b6:3b:b8:
20:7c:42:bf:c9:04:24:b2:cb:d0:3a:a5:b6:af:a0:
d7:68:65:59:56:40:e3:0a:eb:f7:4f:32:04:11:fa:
f2:d0:cf:62:6c:b3:bc:42:79:be:36:66:b5:60:65:
70:5d:3f:7b:27:e7:99:b6:14:43:1d:57:91:72:00:
f0:6f:93:b8:26:e9:15:b1:62:fb:4b:43:1b:77:c6:
a7:fb:bf:22:cc:d8:55:df:57:28:a9:46:87:78:17:
01:90:22:4c:1c:4b:68:18:1a:0a:62:e6:8a:fb:90:
a8:a7:00:6a:4e:e4:f6:5c:5c:7a:02:59:33:b9:fe:
55:2f:91:4d:d7:da:0a:b3:bf:26:e5:b0:2d:88:e1:
72:f4:c4:f7:32:5e:be:c5:b2:2c:16:2a:c1:5f:5b:
85:14:91:63:ea:01:72:2a:22:09:40:7b:12:8e:77:
a6:f7:58:91:c4:58:e9:07:c1:32:85:0c:8a:d3:ff:
a4:23:74:5e:64:cf:c6:8a:b2:bb:83:93:f3:2a:8e:
48:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:88:BD:D4:85:64:43:7D:5D:98:B1:40:89:B1:CE:59:5E:42:B9:1D
X509v3 Authority Key Identifier:
keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:33:31:ad:02:94:1e:55:4d:ea:2a:d4:94:a4:91:7c:b4:7e:
29:e1:a7:55:1d:5e:dc:cd:0b:a0:5a:a8:38:b3:c3:e3:77:1b:
6a:ad:bc:5f:e1:e8:5b:ab:cd:1a:68:92:8a:1c:84:4c:9c:2c:
9c:ec:4c:fa:e5:d8:fd:90:ab:13:c6:ee:4d:ab:38:b1:22:3c:
e3:b2:e1:ea:fc:e2:77:ae:ac:48:b8:13:f5:65:9b:55:8b:b8:
0f:76:88:ab:80:5d:b0:50:0b:e3:75:fa:7e:95:7d:91:82:f8:
ac:a5:2f:34:b7:a8:42:50:ae:56:58:1c:01:21:58:27:0f:9d:
f9:9a:3d:c6:ee:e8:aa:b8:f7:a1:5f:85:3a:b9:2c:44:66:42:
19:cd:b7:99:26:ce:1d:f3:c4:37:78:e6:15:b3:a1:7b:1d:ac:
18:95:29:ee:9c:f1:6a:37:e9:cc:1b:92:f3:fd:5a:f4:49:45:
ed:a0:3d:0d:6c:4c:c8:2f:ae:d3:2d:9a:e3:bb:2b:84:c4:8c:
f1:7b:6f:86:94:df:f8:f2:06:00:ac:8d:12:b1:68:84:4d:f0:
9c:1b:de:8b:0f:2e:6a:09:ad:69:a9:b6:53:74:be:91:54:46:
74:c9:13:1d:1b:a7:a8:88:96:2e:60:17:1f:f3:ea:7a:65:c1:
2b:ce:10:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:16:48 2026 by rpki-client