Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
File: zkP-lNpK73rfscFih1rxysfLpLE.mft (raw, json)
Hash identifier: xbty2mYX5ErH+oG0A5fWx9aIUVnYRQLHEQtzJ+N6cY0=
Subject key identifier: 82:A2:B3:2C:96:2A:48:BA:8A:5A:B2:E2:7A:BB:D7:2B:00:20:A7:F7
Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Certificate serial: 019E1D909429726C4EC985E36DEEA15009B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
Manifest number: 1908
Signing time: Tue 12 May 2026 19:01:14 +0000
Manifest this update: Tue 12 May 2026 19:01:14 +0000
Manifest next update: Wed 13 May 2026 19:01:14 +0000
Files and hashes: 1: 0lsa2lsdRbGhXDlBoxyUzEcvTkw.roa (hash: TZA+evGUSrxkMyqk95k24o509cA93t42uHVcHnI4ehI=)
2: zkP-lNpK73rfscFih1rxysfLpLE.crl (hash: TqJzfRINmddE192i0I2JdGXogdHRs2H9acCYDljpn3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:94:29:72:6c:4e:c9:85:e3:6d:ee:a1:50:09:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1
Validity
Not Before: May 12 19:01:14 2026 GMT
Not After : May 13 19:01:14 2026 GMT
Subject: CN=82a2b32c962a48ba8a5ab2e27abbd72b0020a7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4b:c5:26:af:0e:03:46:cc:05:5a:2a:f0:c3:
15:6c:44:70:62:02:80:b2:6e:c5:78:a1:e3:df:4c:
cc:1e:eb:ab:19:69:3e:ef:13:95:5b:82:c8:71:40:
ac:4e:b2:6f:ff:e0:ee:0e:02:c9:a8:6f:0a:df:6f:
be:28:9c:58:81:02:0e:14:77:39:f0:88:ea:de:1f:
9e:e5:31:da:ab:55:d0:79:3d:6e:fe:31:30:0e:dd:
0a:07:99:5b:65:58:93:33:1c:01:2f:b6:95:c4:69:
18:62:4b:a0:9f:70:95:14:f5:ae:81:00:0b:36:9e:
34:04:81:e0:b5:dc:1c:39:7d:50:bf:59:ff:94:fb:
80:ed:d9:3a:ee:ef:9f:1f:bc:bd:43:27:e4:78:6b:
96:4d:2f:c8:a2:cd:65:96:7d:68:65:32:30:1f:7f:
c1:5e:4d:17:56:8e:83:c2:f6:7a:14:a0:42:ac:df:
44:26:93:61:54:4d:10:db:18:96:cd:9b:3a:d7:2d:
f4:cf:82:e6:a1:95:7a:6c:b4:f3:a5:66:7e:4a:f6:
7f:49:6c:4f:32:0a:ce:52:2a:67:4c:82:c3:88:50:
20:62:ef:d5:fd:2f:2e:9e:bf:07:f9:81:a9:93:80:
0c:17:6e:cd:a8:48:37:87:e2:c5:ad:1e:9c:27:82:
1a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A2:B3:2C:96:2A:48:BA:8A:5A:B2:E2:7A:BB:D7:2B:00:20:A7:F7
X509v3 Authority Key Identifier:
keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:08:fe:32:c1:d6:c0:2e:fe:df:96:80:cc:70:80:d5:99:e4:
e1:36:3c:02:34:c8:99:62:24:36:78:02:1e:f8:4f:c5:e7:ce:
f6:c5:15:ae:8d:9d:34:f2:52:c6:de:51:e1:22:db:56:db:9c:
15:c3:a3:85:13:9a:bf:73:f0:0d:99:81:e5:19:96:22:7b:8d:
4d:bb:f1:1d:4a:85:86:0a:c7:5a:02:be:56:f7:a9:ca:b3:b5:
12:38:dc:6d:73:51:86:94:cb:de:13:04:f4:d4:f1:25:8b:24:
8d:05:e1:ea:b7:12:6a:df:8d:d6:9d:b7:22:cf:60:be:ff:3b:
a6:fd:e7:5c:35:0c:0d:06:e4:c8:f5:8d:da:c8:f6:46:cd:1a:
df:8f:75:ad:60:e5:4a:20:59:d6:4a:ae:eb:c0:82:45:c1:8b:
76:3f:2d:71:68:7e:71:86:57:25:89:61:f3:3c:9d:67:51:4c:
d9:11:11:78:80:23:3d:41:ad:d3:22:4e:5f:35:23:1b:64:41:
20:61:3e:17:6a:c0:7b:d3:16:c3:66:a0:8f:b6:9f:2c:79:ff:
f5:ab:ff:18:ef:66:46:bf:7c:20:99:3f:18:ae:fd:65:7c:a3:
0c:78:22:f6:a4:fe:b1:67:dd:ca:4d:36:2c:60:54:d4:17:77:
c4:a3:23:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:58:32 2026 by rpki-client