Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
File: zkP-lNpK73rfscFih1rxysfLpLE.mft (raw, json)
Hash identifier: SNVzBL9NLjq5HG2VhlupSBg/AoWkJLzUBrLMdQd/yEo=
Subject key identifier: 7E:0D:C9:D6:A7:8B:88:EC:2D:B5:82:E0:1A:AA:30:6A:49:D2:FF:B5
Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Certificate serial: 019D265FDC1A3D24409C4BE9F1B156B583A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 19:01:49 +0000
Manifest this update: Wed 25 Mar 2026 19:01:49 +0000
Manifest next update: Thu 26 Mar 2026 19:01:49 +0000
Files and hashes: 1: 0lsa2lsdRbGhXDlBoxyUzEcvTkw.roa (hash: TZA+evGUSrxkMyqk95k24o509cA93t42uHVcHnI4ehI=)
2: zkP-lNpK73rfscFih1rxysfLpLE.crl (hash: RZKyQxyR7cg0gpIt1Hr3C1OZ5N5sApyLYQGi7VG7vHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:dc:1a:3d:24:40:9c:4b:e9:f1:b1:56:b5:83:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Validity
Not Before: Mar 25 19:01:49 2026 GMT
Not After : Mar 26 19:01:49 2026 GMT
Subject: CN=7e0dc9d6a78b88ec2db582e01aaa306a49d2ffb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b9:b0:97:a5:be:07:a0:18:7f:3e:fb:61:c2:
9f:9f:fb:8d:72:9a:d0:83:14:fa:d4:c0:37:ef:87:
0f:d9:95:79:dc:a9:6a:5c:1c:cf:53:a8:a2:a4:f4:
ff:0e:f5:39:22:b8:ec:00:e7:c5:73:fb:f5:7e:da:
58:d8:52:93:5c:ef:5b:d4:fb:a8:10:79:95:ae:11:
23:82:f9:91:3a:54:53:9e:00:b1:7a:d1:41:0a:b9:
81:8c:ce:88:9c:13:7e:94:cc:a1:13:16:df:16:9a:
7e:b0:89:d6:4d:d3:a5:63:d4:5d:fe:fe:61:57:5b:
65:eb:2c:96:9e:a9:82:67:2e:40:5d:07:87:8a:72:
6e:db:84:6e:0e:b1:02:9c:fc:c2:8c:71:f1:17:8b:
c8:8f:6d:19:5a:d4:59:9d:2b:e1:1b:f8:17:b0:32:
b8:5e:b2:e7:64:81:50:2f:3a:7a:72:0a:79:26:50:
8c:56:0e:13:4e:8f:96:19:4a:f0:2d:30:34:2b:e1:
f4:9c:e3:34:f0:32:a4:fa:d7:a4:53:c4:10:c1:0c:
7f:06:89:c3:ec:5f:0f:3a:32:09:0a:a2:14:a9:2e:
41:59:01:8e:26:f2:0d:30:1e:a1:88:f5:89:14:7c:
63:63:e5:17:50:ca:7c:9e:65:de:0e:b7:dd:71:ec:
56:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:0D:C9:D6:A7:8B:88:EC:2D:B5:82:E0:1A:AA:30:6A:49:D2:FF:B5
X509v3 Authority Key Identifier:
keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:2c:60:cb:89:13:b6:88:e0:20:a3:dd:b5:bd:e1:c9:fe:2a:
3e:87:af:60:dd:f5:37:3a:6a:94:4d:9c:08:78:a0:c5:4d:f3:
35:c7:eb:8b:81:9b:0c:7f:a1:1c:d9:a6:d8:9c:c6:38:a6:6a:
84:9d:bf:06:7c:cd:66:05:2a:d6:6c:16:14:77:6b:6b:b0:a6:
3e:d2:f6:90:f4:5a:27:ed:87:fa:45:17:71:ab:d5:c2:98:eb:
6b:f3:76:ac:e9:7c:7a:df:06:3d:cc:ae:75:7f:07:33:8e:d7:
a7:28:f8:71:d7:85:bd:df:6a:fe:7d:70:d9:f2:72:a3:f7:c8:
18:fb:42:cd:4c:ff:7a:fc:1a:cf:98:46:c8:be:42:fd:37:6a:
7b:b1:e4:59:2d:01:9d:8a:d2:56:80:81:0e:d6:1b:b5:62:ed:
18:e5:70:59:52:65:1c:9a:f3:3f:03:e1:39:10:85:28:2f:20:
b3:ce:27:71:9c:07:89:b5:3d:da:a2:7f:1d:7b:e4:19:c2:61:
4b:2a:07:58:3c:06:25:52:1d:cf:8d:84:f8:4f:ec:8e:3d:b2:
73:da:bd:8a:5b:29:1d:76:d8:c6:c8:3c:da:7c:cf:07:af:d1:
ad:a8:d9:a8:42:f8:ff:73:05:b6:f6:eb:f4:24:39:db:ef:b6:
6b:b3:44:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:15:00 2026 by rpki-client