Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
File: Zo1_de9C8L1xqpxmZo4KM9vhY08.mft (raw, json)
Hash identifier: KJ3S6Ag4BYEtl9tsT7rf8FCpU/530elzUmlmqTUvbfE=
Subject key identifier: 7C:9E:F3:C5:BC:27:4D:B9:C2:F1:AB:0D:09:BA:44:42:D9:DF:AD:65
Authority key identifier: 66:8D:7F:75:EF:42:F0:BD:71:AA:9C:66:66:8E:0A:33:DB:E1:63:4F
Certificate issuer: /CN=668d7f75ef42f0bd71aa9c66668e0a33dbe1634f
Certificate serial: 019D28BBB4CD47055B647FB0EE21286E2C15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 06:01:23 +0000
Manifest this update: Thu 26 Mar 2026 06:01:23 +0000
Manifest next update: Fri 27 Mar 2026 06:01:23 +0000
Files and hashes: 1: FCrI_OtnxQ-1-z-8biyHW_0Jr3k.roa (hash: UDISGnchaBY9CTjsTbG4ZtPwcxVzVNzDL/kKcPoMHj8=)
2: Zo1_de9C8L1xqpxmZo4KM9vhY08.crl (hash: tR8zosvjGw1kmgvM2v3nb0/4FkggjUwX90ySsUNMDiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:b4:cd:47:05:5b:64:7f:b0:ee:21:28:6e:2c:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=668d7f75ef42f0bd71aa9c66668e0a33dbe1634f
Validity
Not Before: Mar 26 06:01:23 2026 GMT
Not After : Mar 27 06:01:23 2026 GMT
Subject: CN=7c9ef3c5bc274db9c2f1ab0d09ba4442d9dfad65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f6:2e:c7:4f:8b:59:9d:11:33:d9:a6:81:c4:
10:05:1e:a3:57:47:9f:bf:dd:69:2c:8c:49:8c:e6:
ae:53:12:1a:5a:91:84:ca:b0:3f:59:d1:f1:fe:92:
d4:f5:8b:35:22:4b:68:91:48:ed:99:ad:72:8b:dd:
dc:08:88:01:76:7d:af:1e:82:32:31:fc:ac:1b:63:
ba:a4:11:76:81:68:5f:b8:64:aa:fa:6e:e3:8f:49:
14:56:fd:28:d4:af:b5:e2:ba:3d:da:54:46:65:fb:
6e:9a:58:cd:de:fc:5e:a0:06:9f:f2:11:6a:64:d5:
86:67:28:fb:77:83:4d:bb:ae:1b:25:0c:2c:3b:b5:
2d:bc:55:b5:f7:b3:1f:99:24:1f:b9:ab:23:43:16:
46:11:ae:99:85:37:76:2d:4b:ba:3e:e1:3b:00:90:
c0:29:71:c1:f2:5b:99:6b:ba:10:28:93:df:94:5f:
a9:02:60:8d:ec:38:a5:62:5b:14:4a:11:0c:a1:c6:
1c:0a:d5:51:d8:c7:b8:35:fd:8e:2b:a3:4b:66:f0:
ae:7a:3c:04:27:88:24:8a:63:a5:f9:ec:8c:fe:37:
58:f0:12:e3:9f:83:d8:cf:2d:4a:b4:33:f8:10:97:
db:5f:43:c6:5a:75:1d:c9:85:d7:c1:81:93:bf:fa:
e8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:9E:F3:C5:BC:27:4D:B9:C2:F1:AB:0D:09:BA:44:42:D9:DF:AD:65
X509v3 Authority Key Identifier:
keyid:66:8D:7F:75:EF:42:F0:BD:71:AA:9C:66:66:8E:0A:33:DB:E1:63:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:12:4a:7e:1b:13:06:ea:8d:90:05:f5:b8:0d:28:98:0a:84:
9c:c5:d5:86:a0:92:f5:dc:31:7b:10:92:82:18:98:ea:36:87:
b6:a2:3c:09:30:df:49:08:da:83:29:32:46:9c:b9:71:05:64:
6e:49:51:f7:2d:c8:dd:34:76:af:fc:c5:22:fe:a8:62:76:8a:
0d:52:2c:10:6e:91:43:e1:b8:45:c9:fc:12:62:64:9c:8a:c8:
da:c7:ea:2e:6e:35:04:5c:2b:ce:14:25:90:25:3b:91:d1:3a:
8c:88:c2:35:23:b3:3e:fb:78:a2:cf:d7:d4:70:65:f7:cf:b9:
53:76:fc:c1:51:b0:9c:2e:4d:9f:64:14:df:28:3a:3b:61:b5:
ad:32:f4:03:ca:1a:dc:3e:3c:fd:6b:c9:3c:db:91:4d:c4:20:
63:fa:32:e8:b3:eb:1c:11:8d:02:b6:1a:8a:99:6c:7b:eb:1a:
c3:4a:64:63:dd:3e:0b:68:1f:f9:e0:cd:a2:00:45:09:73:0d:
65:2e:47:2b:a7:6f:1c:9b:ca:aa:97:50:0a:70:7c:e9:32:b1:
06:69:07:7c:02:46:79:fa:80:aa:19:78:55:2d:f1:ae:05:2b:
3b:14:a8:c0:71:60:9f:d6:44:7e:f9:0e:b3:1b:1d:01:38:91:
4e:ad:a4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:15:04 2026 by rpki-client