Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
File: Zr5SEJO7idx2JQsif39_umbiKNg.mft (raw, json)
Hash identifier: ZEssVCod81I1gGgtjLHU50iIxPzE7plpt8LDTTmv8JU=
Subject key identifier: FA:17:73:6C:3B:5F:8F:01:B8:5E:74:20:D9:9E:F5:34:FC:54:EF:D5
Authority key identifier: 66:BE:52:10:93:BB:89:DC:76:25:0B:22:7F:7F:7F:BA:66:E2:28:D8
Certificate issuer: /CN=66be521093bb89dc76250b227f7f7fba66e228d8
Certificate serial: 019D26286FCCFD52FC85CA1B56C02794DE2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
Manifest number: 03DA
Signing time: Wed 25 Mar 2026 18:01:17 +0000
Manifest this update: Wed 25 Mar 2026 18:01:17 +0000
Manifest next update: Thu 26 Mar 2026 18:01:17 +0000
Files and hashes: 1: Zr5SEJO7idx2JQsif39_umbiKNg.crl (hash: 8WM1n0XHIUPOzGvNnncpoY1DWlhbA6qP0OORdpDbdiM=)
2: eOakI4G8JM7XP_WeyacD-lnn8nA.asa (hash: SHwTEaqS42gFEWW/397M3iRBTtAtnQFb6kUhgERgL+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:6f:cc:fd:52:fc:85:ca:1b:56:c0:27:94:de:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66be521093bb89dc76250b227f7f7fba66e228d8
Validity
Not Before: Mar 25 18:01:17 2026 GMT
Not After : Mar 26 18:01:17 2026 GMT
Subject: CN=fa17736c3b5f8f01b85e7420d99ef534fc54efd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:28:4c:bd:98:80:8c:15:8b:a5:ae:16:2a:7d:
23:18:a4:b4:2b:28:28:69:d0:0c:f5:33:6d:3b:40:
2d:34:c6:e9:03:28:56:5c:db:b6:6c:6b:89:cb:d1:
c0:cf:a7:f2:e9:9f:2a:2c:6c:c0:e3:e9:16:bd:79:
44:b3:05:53:d3:a9:06:39:e1:36:53:6a:de:1d:11:
9a:a0:5d:6c:61:0e:8a:21:86:23:ee:4e:d9:9f:ac:
d1:26:1b:52:d3:0c:c5:38:3d:89:7d:27:de:2e:f5:
58:0a:44:0f:62:a5:89:d6:18:43:1a:14:3c:85:80:
77:21:0b:50:cf:99:13:41:a6:40:a6:b0:e1:fe:d1:
b6:78:05:75:38:08:e1:ea:8a:8e:f0:35:5d:89:23:
75:25:55:e8:8c:99:14:f5:06:64:cf:9f:5d:3a:bd:
4e:c8:b3:36:8b:79:eb:e1:1b:8c:9d:e1:aa:a9:b0:
3f:01:c1:03:09:79:a1:0c:55:32:b9:0c:b5:ff:dd:
94:a9:1b:98:1e:f8:fa:20:7a:d9:a9:f8:75:50:72:
c7:8c:20:36:ba:dc:9e:0e:9f:a0:4a:2c:8b:40:f2:
e0:b0:e1:56:c0:37:e8:ca:64:d4:19:b5:ff:38:19:
eb:59:a3:ab:7e:89:58:de:66:03:f0:cc:06:e1:b6:
59:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:17:73:6C:3B:5F:8F:01:B8:5E:74:20:D9:9E:F5:34:FC:54:EF:D5
X509v3 Authority Key Identifier:
keyid:66:BE:52:10:93:BB:89:DC:76:25:0B:22:7F:7F:7F:BA:66:E2:28:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:81:d2:cd:81:94:cd:91:c9:31:7a:df:ae:1e:16:dd:df:e2:
6d:cb:5c:99:18:b2:ac:b0:22:a0:2d:92:23:44:bc:0f:b3:24:
ba:ec:16:08:75:64:13:19:93:98:5e:a7:c4:1f:c0:99:61:79:
a9:bd:3b:12:a5:94:5d:9e:57:71:87:07:67:fe:e0:e0:82:6c:
c9:83:d7:c4:78:ff:7a:5c:60:cb:6c:74:2a:fa:89:3f:c9:ee:
73:e9:4f:2f:f2:a5:c9:13:74:5f:9c:12:1c:ea:70:5c:43:00:
4a:d8:14:cd:6a:cc:86:fc:c6:86:9d:46:87:17:84:25:7b:5b:
32:7d:db:0f:3c:bf:ef:52:e9:e3:a9:45:02:b1:a8:30:75:f6:
75:9b:39:9c:b4:65:dc:cf:6f:c5:9f:8c:ec:a5:d6:1c:0d:38:
22:ea:7a:63:b7:51:2d:e7:4a:25:96:20:b1:5b:70:eb:43:b2:
b7:79:34:8a:e5:3b:0e:34:c9:a3:09:bd:b2:d0:7c:da:21:69:
3d:65:75:35:40:b9:56:ea:a2:fc:12:12:2a:0f:77:ac:33:55:
c6:ad:9a:f0:d2:18:83:9d:3f:59:21:f0:93:e4:df:a0:b2:7d:
7c:3c:5b:02:41:71:45:2a:44:60:84:3d:4e:29:9b:16:ac:57:
fb:9e:98:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mKG/M/VL8hcobVsAnlN4tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2YmU1MjEwOTNiYjg5ZGM3NjI1MGIyMjdmN2Y3ZmJhNjZl
MjI4ZDgwHhcNMjYwMzI1MTgwMTE3WhcNMjYwMzI2MTgwMTE3WjAzMTEwLwYDVQQD
EyhmYTE3NzM2YzNiNWY4ZjAxYjg1ZTc0MjBkOTllZjUzNGZjNTRlZmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyhMvZiAjBWLpa4WKn0jGKS0Kygo
adAM9TNtO0AtNMbpAyhWXNu2bGuJy9HAz6fy6Z8qLGzA4+kWvXlEswVT06kGOeE2
U2reHRGaoF1sYQ6KIYYj7k7Zn6zRJhtS0wzFOD2JfSfeLvVYCkQPYqWJ1hhDGhQ8
hYB3IQtQz5kTQaZAprDh/tG2eAV1OAjh6oqO8DVdiSN1JVXojJkU9QZkz59dOr1O
yLM2i3nr4RuMneGqqbA/AcEDCXmhDFUyuQy1/92UqRuYHvj6IHrZqfh1UHLHjCA2
utyeDp+gSiyLQPLgsOFWwDfoymTUGbX/OBnrWaOrfolY3mYD8MwG4bZZzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPoXc2w7X48BuF50INme9TT8VO/VMB8GA1UdIwQY
MBaAFGa+UhCTu4ncdiULIn9/f7pm4ijYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnI1U0VKTzdpZHgySlFzaWYzOV91bWJpS05nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8zMmY5YjMtZGUyYi00MWY1LWE5NDkt
OTAwMzBkMDQwZmY3LzEvWnI1U0VKTzdpZHgySlFzaWYzOV91bWJpS05nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC8zMmY5YjMtZGUyYi00MWY1LWE5NDktOTAwMzBkMDQwZmY3
LzEvWnI1U0VKTzdpZHgySlFzaWYzOV91bWJpS05nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaIHSzYGU
zZHJMXrfrh4W3d/ibctcmRiyrLAioC2SI0S8D7MkuuwWCHVkExmTmF6nxB/AmWF5
qb07EqWUXZ5XcYcHZ/7g4IJsyYPXxHj/elxgy2x0KvqJP8nuc+lPL/KlyRN0X5wS
HOpwXEMAStgUzWrMhvzGhp1GhxeEJXtbMn3bDzy/71Lp46lFArGoMHX2dZs5nLRl
3M9vxZ+M7KXWHA04Iup6Y7dRLedKJZYgsVtw60Oyt3k0iuU7DjTJowm9stB82iFp
PWV1NUC5Vuqi/BISKg93rDNVxq2a8NIYg50/WSHwk+TfoLJ9fDxbAkFxRSpEYIQ9
TimbFqxX+56YMA==
-----END CERTIFICATE-----
Generated at Wed Mar 25 23:56:30 2026 by rpki-client