Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: BTuouQIR8ZyYL/6AkBxhM8PcNA3a4Z1651xjtPI2S8I=
Subject key identifier: E1:6B:83:BC:37:19:63:D7:C8:40:67:09:E3:C9:89:A3:E0:05:92:22
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 019D28F30EA08A02CE43ACEE783DB06DEE17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 1136
Signing time: Thu 26 Mar 2026 07:01:50 +0000
Manifest this update: Thu 26 Mar 2026 07:01:50 +0000
Manifest next update: Fri 27 Mar 2026 07:01:50 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: hTOwHjTIYOOvdQLxKwT9Qn9qMykduTwiTvxm8hbxjn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f3:0e:a0:8a:02:ce:43:ac:ee:78:3d:b0:6d:ee:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Mar 26 07:01:50 2026 GMT
Not After : Mar 27 07:01:50 2026 GMT
Subject: CN=e16b83bc371963d7c8406709e3c989a3e0059222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e7:1b:08:36:8c:34:af:ab:28:78:cf:3d:66:
2f:91:c9:76:29:22:dc:f7:99:df:52:56:08:f1:20:
13:8b:c9:18:ce:0a:45:49:ea:39:21:25:55:70:80:
10:44:de:c9:f3:4c:d4:2e:07:f3:31:df:1a:41:02:
1c:39:63:c7:74:31:36:9a:dc:28:4b:c2:ee:b9:61:
34:14:68:dd:a4:d8:78:c7:18:4e:f8:16:fd:8d:50:
28:4b:c1:18:ec:57:e9:c8:c9:50:35:7c:21:17:a6:
31:29:a7:c5:73:b2:77:97:ec:66:98:89:8b:bd:98:
47:64:12:6a:20:5d:12:74:1d:16:5f:00:72:9a:fc:
7c:3d:00:6f:fe:27:9a:8e:1c:12:cc:d6:9e:0b:8c:
74:cd:1a:25:14:c2:40:f1:b2:b7:3e:55:1d:69:bd:
64:09:fc:96:4b:4e:e2:60:d7:d8:61:50:35:05:4d:
97:2d:f0:5d:25:4f:b1:f8:b6:05:b7:86:47:80:66:
5d:50:01:76:45:96:12:d9:69:54:28:66:19:d0:b5:
19:bd:a6:e0:2f:65:b3:8f:3c:56:29:36:3b:7b:1c:
ad:29:45:df:d1:56:b1:9f:63:6b:58:9f:8a:cc:15:
b7:df:7e:d5:b6:03:06:35:b3:42:26:7b:18:a4:54:
03:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:6B:83:BC:37:19:63:D7:C8:40:67:09:E3:C9:89:A3:E0:05:92:22
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:97:90:54:63:1e:f6:af:55:2f:03:b5:19:c9:7b:2e:cf:a5:
bf:ca:e0:f0:a2:8c:22:77:15:41:24:80:3f:db:9a:46:0a:da:
87:38:44:96:ed:2e:91:f9:d2:88:bb:de:2c:ab:fb:30:df:5c:
ab:68:85:1f:2a:44:05:13:bb:a1:72:18:3e:a8:aa:82:03:7b:
96:32:b6:01:e0:54:35:77:74:57:b0:bc:f3:e2:50:1f:bc:65:
45:d5:bb:0e:0d:e6:cc:88:00:1d:6d:cc:53:10:95:80:ad:52:
b9:1c:c7:d7:30:c3:c6:6b:ff:aa:9a:7e:4f:90:17:18:b1:8c:
a7:5a:b5:f6:ad:78:61:12:43:a2:d4:c3:03:1f:8f:a2:a7:ac:
0b:10:27:74:8b:20:77:4c:6c:93:d6:70:0d:87:bf:52:26:42:
18:83:a0:96:0a:51:0f:53:49:04:7b:35:f9:ed:14:91:80:7a:
7f:f7:84:3f:9e:cc:fe:78:8b:9c:19:28:50:e8:18:b3:99:5a:
0b:99:45:58:6b:a3:81:be:a2:dd:01:92:64:ca:d9:af:2c:74:
c9:a9:d8:7b:99:f1:41:0f:2f:3a:f5:3d:4f:46:cd:90:a8:ff:
f5:f1:8c:77:76:11:12:55:92:f1:52:38:84:37:be:03:bd:66:
9b:c9:1d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:42:37 2026 by rpki-client