Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
File: ZAD5U62_21K3iBX-z8DozeCXYsM.mft (raw, json)
Hash identifier: Is+mYmGWAe6/yInppXpSh7HNm2RerDOYrvgP3NjSZgk=
Subject key identifier: 1F:2F:7B:8B:6B:73:5D:60:B3:43:27:6A:24:61:D1:BB:37:77:32:29
Authority key identifier: 64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
Certificate issuer: /CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Certificate serial: 019D341A40C6CC0769C66E3FB7E079B95DAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
Manifest number: 137C
Signing time: Sat 28 Mar 2026 11:00:28 +0000
Manifest this update: Sat 28 Mar 2026 11:00:28 +0000
Manifest next update: Sun 29 Mar 2026 11:00:28 +0000
Files and hashes: 1: 0K2GHqkNtHFH0tB9nWXJ94AFGAw.roa (hash: 5NSYWTgnAdKm8Hqko31XGdj55Gsj1FCzKYaW0vszh0w=)
2: ZAD5U62_21K3iBX-z8DozeCXYsM.crl (hash: uiEdTkv7mDZIwca5j0TbS9UdJfhEyMame710va0FHNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:1a:40:c6:cc:07:69:c6:6e:3f:b7:e0:79:b9:5d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6400f953adbfdb52b78815fecfc0e8cde09762c3
Validity
Not Before: Mar 28 11:00:28 2026 GMT
Not After : Mar 29 11:00:28 2026 GMT
Subject: CN=1f2f7b8b6b735d60b343276a2461d1bb37773229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:57:9b:e5:e8:cf:2a:01:fb:60:67:31:f3:7a:
2d:65:04:f3:da:13:1c:5b:20:4a:54:b9:4e:f6:fa:
d5:3a:60:f3:32:08:e5:a8:b9:0d:49:16:d3:f3:a3:
c4:1a:17:f1:96:23:56:8f:df:44:6d:3d:f7:67:90:
6d:75:41:7c:35:da:24:d4:e6:8e:72:cf:c1:41:5f:
94:91:03:c2:6a:8a:cc:78:ab:61:57:7f:e4:37:29:
8b:73:5c:c7:83:e4:4e:6c:0d:6d:fb:92:20:17:ae:
db:1c:e6:7f:6d:6d:25:26:56:90:16:61:ab:67:c8:
37:43:8a:87:f3:5f:f1:77:d0:2a:99:3c:3e:76:dd:
a5:9c:19:5a:dc:28:a2:33:c8:c7:95:c4:11:37:04:
cb:c0:73:62:08:a7:38:f0:32:c8:c0:97:9c:2d:b5:
4f:46:38:62:49:21:c6:47:0d:db:26:4f:f8:d4:80:
63:f8:2b:cd:6a:46:a9:14:54:41:91:3e:09:19:b5:
44:3c:35:e7:a5:6e:28:02:c7:a3:ea:95:e8:a4:60:
a4:c1:13:69:20:27:9f:b1:cb:e1:89:86:35:dc:ad:
a1:cd:95:3e:41:0b:19:f8:e5:34:9e:da:9a:06:0a:
74:d8:9f:17:71:1d:05:cc:55:ca:b8:a3:e0:0e:61:
72:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:2F:7B:8B:6B:73:5D:60:B3:43:27:6A:24:61:D1:BB:37:77:32:29
X509v3 Authority Key Identifier:
keyid:64:00:F9:53:AD:BF:DB:52:B7:88:15:FE:CF:C0:E8:CD:E0:97:62:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAD5U62_21K3iBX-z8DozeCXYsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/8308ff-fec8-48cb-9485-563c10dec80d/1/ZAD5U62_21K3iBX-z8DozeCXYsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:aa:83:d3:39:c0:79:de:af:f4:2b:ea:48:ff:b7:37:a6:8d:
46:14:db:65:1d:1d:a8:cf:83:6b:5b:89:e5:7c:c6:35:68:4f:
19:1c:38:94:68:e8:00:44:18:9d:23:df:89:34:79:af:0a:3d:
57:6c:d2:b7:f5:bf:e5:3a:38:63:98:51:f5:fc:36:23:4c:01:
7d:39:c0:f3:14:98:a4:85:1a:6c:7d:d0:a7:26:45:1f:6b:ab:
4a:4b:45:43:8d:bf:c2:4a:fb:94:ba:86:fe:a5:01:aa:14:20:
2c:42:18:b3:6e:a2:e0:3b:23:2b:22:52:ce:e8:3a:8e:85:dd:
eb:82:9b:79:cb:bb:86:e4:4e:c1:bc:13:59:3c:37:2a:f2:3d:
3f:3f:56:b9:59:84:0e:a1:c6:0c:3c:39:ba:22:49:ea:c6:73:
17:3f:14:0e:8f:00:a9:d1:e4:49:1e:52:f3:03:f7:a1:33:a7:
30:35:8e:a0:5c:94:cb:9c:a3:5b:27:c2:5d:2f:e4:2e:83:55:
46:8f:b6:17:01:7c:3b:56:51:ef:f2:38:3d:38:55:34:5d:1e:
42:3b:ea:42:3c:33:00:e9:56:72:2a:e0:3d:a6:10:ee:b8:64:
5b:fb:ac:e2:b1:ab:b4:c6:60:5a:38:f7:45:35:6c:0b:67:76:
96:cb:83:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:29 2026 by rpki-client