Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft
File: zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft (raw, json)
Hash identifier: 40RZjbrSvcgFqf3D37oABQm8ASLUrvb4hVFqNCQQKLg=
Subject key identifier: 8C:CD:40:C0:6A:83:3F:BE:BD:20:F6:3D:7F:75:0E:E1:FC:4A:ED:8A
Authority key identifier: CD:A0:54:47:4F:AF:D9:0B:0E:A4:7C:55:76:5B:BE:6F:37:63:75:31
Certificate issuer: /CN=cda054474fafd90b0ea47c55765bbe6f37637531
Certificate serial: 019D2A722B4B81A77A6B9D9C801E4C02EE9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaBUR0-v2QsOpHxVdlu-bzdjdTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft
Manifest number: 033C
Signing time: Thu 26 Mar 2026 14:00:18 +0000
Manifest this update: Thu 26 Mar 2026 14:00:18 +0000
Manifest next update: Fri 27 Mar 2026 14:00:18 +0000
Files and hashes: 1: zaBUR0-v2QsOpHxVdlu-bzdjdTE.crl (hash: IUasLkw2NbWrKJsLYXcF6e0a7WP3c0Kv8MlCkc+ml94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zaBUR0-v2QsOpHxVdlu-bzdjdTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:2b:4b:81:a7:7a:6b:9d:9c:80:1e:4c:02:ee:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cda054474fafd90b0ea47c55765bbe6f37637531
Validity
Not Before: Mar 26 14:00:18 2026 GMT
Not After : Mar 27 14:00:18 2026 GMT
Subject: CN=8ccd40c06a833fbebd20f63d7f750ee1fc4aed8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9e:8a:50:89:d7:01:ea:65:ab:77:d5:23:89:
f3:21:38:96:7f:16:b8:d1:d9:49:84:50:33:60:c9:
9d:cd:af:84:f1:9d:9f:4d:76:f0:4c:49:70:1d:61:
6f:ef:ca:49:50:ee:10:5b:16:5b:02:ad:96:8f:ed:
59:37:ec:24:57:34:6c:2f:1f:ee:54:29:b2:bf:e9:
bc:3e:4f:77:94:94:ee:c5:97:69:7e:37:47:19:3e:
f7:7b:20:ff:cd:7f:ad:6c:c3:07:48:5b:8e:ba:ba:
18:55:b1:7d:9b:3a:9c:8f:b8:d3:03:72:8f:51:a9:
8c:28:10:7f:cc:29:fa:ec:9c:42:7f:f3:2d:87:6d:
58:35:26:f7:05:4b:d9:6a:e0:d9:4a:1a:c8:d5:6f:
a8:02:b7:18:ca:52:ac:ec:2a:be:39:e7:32:11:c5:
59:5a:5c:64:d1:69:58:82:da:fa:4f:3d:3c:0b:9d:
6d:7e:09:eb:77:5c:30:e9:94:bc:11:aa:78:27:62:
9b:4c:00:f7:ee:62:48:a5:f9:18:b4:43:60:1e:9a:
12:5a:12:8c:71:3a:f5:8f:33:a3:84:14:03:90:3a:
a4:f2:41:1e:d0:af:f8:d8:04:c6:d2:c2:1c:0f:0d:
9e:44:5c:da:cf:3e:da:24:9b:85:d8:2b:6d:6d:2c:
26:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CD:40:C0:6A:83:3F:BE:BD:20:F6:3D:7F:75:0E:E1:FC:4A:ED:8A
X509v3 Authority Key Identifier:
keyid:CD:A0:54:47:4F:AF:D9:0B:0E:A4:7C:55:76:5B:BE:6F:37:63:75:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaBUR0-v2QsOpHxVdlu-bzdjdTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:a6:1b:7e:b9:49:4d:71:47:fa:06:93:11:88:ae:53:e4:2e:
4d:d7:d5:5b:e1:e3:dc:da:aa:dc:ae:31:a8:94:96:cd:66:74:
da:7f:43:d0:42:7d:17:1d:11:e4:20:40:43:e3:66:ab:36:9b:
80:b3:6a:1b:dc:1d:b1:66:d3:51:a6:70:96:47:98:22:cc:d0:
d3:36:38:7f:d6:45:f1:e5:50:40:bc:1a:ef:1b:67:2b:53:b6:
c2:a6:e1:ad:13:4c:c9:dc:d6:81:6c:62:8c:65:06:2f:dd:39:
15:bd:9a:55:fc:42:f4:b4:78:5e:16:e8:33:97:70:db:96:24:
fb:c1:74:84:07:6d:d0:16:00:83:80:92:eb:15:bf:b0:9c:35:
ad:f8:e3:80:b1:47:88:23:06:24:a0:8e:8e:45:fe:26:5f:7a:
66:66:6b:42:5c:c5:bd:86:9d:6d:c4:63:0f:ff:1c:8e:c6:d8:
35:be:c8:57:a8:cf:a7:2b:6c:c3:fb:c4:df:8d:db:37:ee:2a:
2d:01:50:db:83:a1:76:dc:a0:74:1d:3a:50:88:77:41:08:93:
08:bc:b7:6e:62:aa:1f:ea:94:4e:f9:98:e8:3c:1c:7b:ab:82:
b5:0a:8b:85:89:8d:ff:b2:f4:76:b1:89:79:11:54:7a:54:19:
27:3f:3c:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:54:16 2026 by rpki-client