Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
File: pzh53iWUz91MnkIlVWKBsgjZRhQ.mft (raw, json)
Hash identifier: 4kqfdhDq/WMBkFhhNKhH1a5diqifDjc2jLeb+T36zQE=
Subject key identifier: 1C:22:C5:60:57:0E:BB:BA:3E:FF:DD:56:4E:69:9C:F8:C7:C3:3A:35
Authority key identifier: A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
Certificate issuer: /CN=a73879de2594cfdd4c9e4225556281b208d94614
Certificate serial: 019D27DF819E5AF502D82C2DFE2A2E89B1B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
Manifest number: 0B43
Signing time: Thu 26 Mar 2026 02:00:52 +0000
Manifest this update: Thu 26 Mar 2026 02:00:52 +0000
Manifest next update: Fri 27 Mar 2026 02:00:52 +0000
Files and hashes: 1: FLcD5GM3w38Bkf6-ofdUUggipDY.roa (hash: j629CGaUVrsk4spu3DmpUrCgmxrvYlncEchc9Bf2lnA=)
2: pzh53iWUz91MnkIlVWKBsgjZRhQ.crl (hash: 51oLwJzkjulejxDgWZkonYit2xgJ6W9qWakbRHzLpAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:81:9e:5a:f5:02:d8:2c:2d:fe:2a:2e:89:b1:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73879de2594cfdd4c9e4225556281b208d94614
Validity
Not Before: Mar 26 02:00:52 2026 GMT
Not After : Mar 27 02:00:52 2026 GMT
Subject: CN=1c22c560570ebbba3effdd564e699cf8c7c33a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d6:d2:66:e5:2f:ca:32:a3:40:96:a8:46:01:
1f:63:17:e2:1d:60:87:04:fa:40:a7:21:3d:69:e7:
e9:01:d2:bd:a7:e7:f8:f3:d5:43:65:4b:a7:66:e8:
b9:1f:21:da:24:e9:c9:18:59:1b:e7:42:1b:f0:7a:
e9:5c:24:1b:48:23:91:25:76:02:f4:b2:13:eb:d1:
ab:b2:a3:71:21:ee:e2:05:1d:ae:96:1c:ad:e7:9e:
ad:a3:9a:7a:2d:6c:71:31:db:03:c4:49:cb:5e:50:
ff:5a:8e:72:3b:14:7b:a0:c3:0f:03:8f:dc:fb:41:
e7:19:4d:89:87:34:87:9d:7c:8d:e1:b8:7f:4d:84:
25:7b:10:77:f6:7e:4b:42:58:9a:d6:02:70:5f:60:
56:56:b6:89:a1:e2:10:49:a8:e2:e2:96:03:56:96:
e7:ba:f3:c2:3d:ba:65:22:a8:88:e0:ed:f0:8c:f5:
9f:0a:c2:9e:de:e4:d3:de:86:14:ea:0a:45:5e:b1:
38:b0:a8:cf:b3:b1:99:d1:86:a0:75:75:bc:8f:c4:
14:b5:38:47:d6:52:dd:64:53:7d:4d:f4:31:05:93:
c9:39:54:99:e9:0f:47:e8:90:0e:17:a0:88:d4:73:
f2:bd:a3:9f:ab:6c:4f:79:e5:25:78:d7:f9:ba:97:
74:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:22:C5:60:57:0E:BB:BA:3E:FF:DD:56:4E:69:9C:F8:C7:C3:3A:35
X509v3 Authority Key Identifier:
keyid:A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:b0:a5:5c:28:5d:db:7e:6c:71:45:d6:2b:60:e5:35:6e:de:
a9:92:cb:e3:57:81:a3:21:b2:9c:19:0d:a8:ef:5d:3b:e8:34:
df:28:06:cc:f3:61:76:5c:1c:84:66:34:5b:33:7e:dc:08:53:
d1:97:af:1e:96:30:f9:44:71:50:08:b5:84:9e:62:d9:d8:92:
4e:f8:56:67:9e:9d:c4:f2:f3:6e:af:8c:d9:a4:0c:e5:66:fe:
03:eb:56:5e:46:02:69:60:1f:f5:72:bb:c9:87:f9:0f:29:ae:
a0:65:2a:d2:22:19:ed:14:64:1a:a8:2b:f4:2a:6e:e0:6a:6c:
0c:49:7a:f0:02:dc:c2:aa:c8:d7:23:55:f9:fa:71:27:80:a5:
f1:df:0d:1d:33:69:e5:ca:b0:e7:61:80:d5:7e:9b:81:45:39:
91:d2:78:a1:34:9c:2f:91:a6:59:d9:9c:f0:f3:44:63:2c:27:
51:eb:bb:70:62:27:39:f1:c8:8c:ec:78:01:1c:cb:9c:fe:4f:
42:c0:3a:08:e7:8b:81:63:ae:21:a7:a6:73:e4:b2:75:f8:d8:
6c:79:fe:ef:f3:ca:4d:94:36:0f:a0:79:c8:e2:a3:db:f6:06:
4b:44:26:62:07:7e:60:9a:36:60:86:e3:21:8e:b2:59:35:8c:
4b:e0:77:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:47:12 2026 by rpki-client