Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: T1W/RbtsBl0CRrNx89DsjfbU+4Qdb+dvtdKvZGdW95A=
Subject key identifier: CB:88:10:3F:C0:78:BB:37:A6:93:01:6A:E1:99:6A:53:2A:97:26:F0
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 019D273AE712D22AB3906068F74358C4B4C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 0834
Signing time: Wed 25 Mar 2026 23:01:04 +0000
Manifest this update: Wed 25 Mar 2026 23:01:04 +0000
Manifest next update: Thu 26 Mar 2026 23:01:04 +0000
Files and hashes: 1: uDy0uboGuQ8F6QOEny3tapvn0PQ.roa (hash: 3MCli/TbeRr8V0MnXhO1yofF6LpNILL0P0q1Ula5Od8=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: 9w5hlSaFL/EIZaOY6xVeSzS8NVSzwqUdIxKx5OPCsX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:e7:12:d2:2a:b3:90:60:68:f7:43:58:c4:b4:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: Mar 25 23:01:04 2026 GMT
Not After : Mar 26 23:01:04 2026 GMT
Subject: CN=cb88103fc078bb37a693016ae1996a532a9726f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8f:9b:8b:25:cb:f3:4d:28:06:41:fa:bb:42:
9a:bb:6f:90:ce:d7:ec:04:81:45:4a:44:3c:1c:ae:
f7:e0:7a:f6:50:ba:5c:3b:41:ef:b9:3a:d4:6d:87:
d8:b6:ad:f0:ec:c0:fc:37:45:c7:98:6a:6c:83:c9:
79:da:13:7f:41:4a:b7:b9:2f:b7:ef:d3:4f:21:cd:
f2:83:54:8c:b7:13:1d:2e:76:10:89:4b:9e:55:92:
98:00:86:dd:9f:09:7c:aa:36:ad:44:08:1a:32:9a:
c9:28:fc:fd:ac:dc:37:c8:e3:3d:85:32:86:fd:8d:
93:17:31:4f:8e:a9:23:9d:d8:bc:ed:49:fb:a8:86:
91:6b:e5:4f:ce:27:a4:18:69:fc:11:64:bb:7d:03:
fb:da:2b:1f:cc:6d:3e:ea:ec:e3:fe:8b:d6:ad:4b:
63:65:c2:71:3f:00:e9:38:fe:95:60:8c:18:74:0d:
a1:56:78:3c:b5:ea:69:46:a6:c4:91:18:36:13:11:
cd:40:9b:49:88:0d:1f:1f:e1:85:82:87:c0:55:65:
ae:a9:e3:c5:97:27:4c:6e:09:ca:ac:20:a3:0c:db:
2b:a2:aa:86:93:57:4b:9f:65:95:db:71:65:a8:b2:
e2:61:4a:5a:fc:d9:6d:8b:8c:81:e8:3f:aa:a8:82:
0f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:88:10:3F:C0:78:BB:37:A6:93:01:6A:E1:99:6A:53:2A:97:26:F0
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:68:89:f7:4d:18:4a:f4:87:be:cb:8b:c8:75:5a:0b:18:06:
bc:ef:e4:31:1b:4a:e6:e8:a8:f3:cb:92:c2:53:31:22:63:2c:
02:5a:92:2e:97:f5:bb:1f:f9:0d:82:8e:10:aa:66:e1:f4:ea:
02:69:0b:89:37:82:aa:d2:e4:61:74:3f:a5:80:06:20:d0:2c:
ec:d6:ea:c0:e3:ea:9d:53:52:88:da:79:1d:d5:30:97:aa:78:
94:0f:82:85:30:9c:b2:76:b5:d1:55:06:1c:08:97:aa:2f:29:
f1:e5:24:c3:ec:dc:7f:af:e8:6f:21:37:7a:6f:ae:94:ae:a7:
69:e9:13:09:f2:07:8e:f2:59:04:ec:5e:4f:69:23:ad:51:15:
88:cb:29:38:1b:31:bf:15:8b:5c:39:5a:77:48:f5:68:56:cf:
b4:0c:6c:32:93:34:f6:dd:ce:1f:bd:f9:fb:f2:d0:1c:40:f9:
ae:cb:43:06:9c:fd:4b:3b:79:2f:88:9a:cc:f3:57:4f:48:fb:
07:76:f2:be:52:f9:1a:b3:cb:37:dc:92:14:db:0c:00:7b:53:
d8:80:ab:3f:d1:c0:64:7c:f5:9c:12:a6:e2:81:a5:08:fb:a6:
f5:0e:6d:c0:d5:5d:86:a6:bd:17:e4:4d:9c:56:4e:f0:56:cf:
f4:64:09:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:21:07 2026 by rpki-client