Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: 52TyNHEM7aezG4I3EYAndUuFd7w2zG0EmNbaWffX6a8=
Subject key identifier: 61:9E:07:4E:6A:C6:F3:8A:AA:69:8A:0F:FC:39:67:24:73:51:91:22
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 019D273ACFEDE7135E3246AFB65257BA5DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 14B9
Signing time: Wed 25 Mar 2026 23:00:58 +0000
Manifest this update: Wed 25 Mar 2026 23:00:58 +0000
Manifest next update: Thu 26 Mar 2026 23:00:58 +0000
Files and hashes: 1: EsvahZdQZVhluZsLSr98J_sMDK4.roa (hash: DNS5SQ17LOTRnwWYUw1eb+IWwNLBZu1qV/4r+8SuduY=)
2: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: BeylvSaDvQ5CtlFsB+7yn0Z1G4I0Jh+X0ChtaN7Rpx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:cf:ed:e7:13:5e:32:46:af:b6:52:57:ba:5d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Mar 25 23:00:58 2026 GMT
Not After : Mar 26 23:00:58 2026 GMT
Subject: CN=619e074e6ac6f38aaa698a0ffc39672473519122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3b:7e:bc:7e:c7:11:4f:94:16:91:eb:c9:d0:
bf:77:4f:fc:2f:50:3e:8d:b3:79:5d:a6:d8:7f:9e:
94:7b:12:f7:95:2c:39:9f:78:52:32:72:c7:de:cb:
ab:d7:a6:0e:4f:06:df:b5:a6:14:32:96:8b:8f:d5:
89:ba:79:00:f3:5b:5a:f1:a6:cb:cf:a8:de:66:4a:
34:72:69:7f:46:cb:06:ac:19:8f:2e:f1:3d:28:bd:
72:f4:14:2e:5e:64:27:62:6b:10:21:72:ce:9f:91:
29:34:27:62:39:0a:e0:12:08:24:13:7c:e2:12:77:
99:8b:5d:24:3c:d9:52:3a:5e:13:d6:95:53:f3:8b:
23:c9:a2:b5:a2:41:e5:de:88:0b:13:87:94:0f:83:
ce:a3:99:56:3b:b4:40:41:e8:d5:d5:f8:fb:45:e9:
7f:82:9a:01:4c:ac:cb:d7:cf:85:1f:34:56:ac:9c:
ee:2b:7c:e3:a9:e4:3d:0a:5e:0b:aa:d1:7e:47:b0:
d1:28:29:88:32:46:7b:88:64:a6:f6:67:0d:54:40:
d3:4b:24:21:28:a6:1b:0c:54:44:3c:81:eb:16:03:
ff:31:15:13:50:79:08:c1:d0:f6:41:f9:3a:f0:ea:
a5:dc:64:5e:b1:ee:3d:a8:ec:91:12:5d:b5:06:f0:
a2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9E:07:4E:6A:C6:F3:8A:AA:69:8A:0F:FC:39:67:24:73:51:91:22
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:30:2f:3a:a3:a5:e1:52:a4:47:10:92:95:ab:ab:0d:86:a8:
66:a0:e7:15:89:c0:d6:73:19:c1:ac:26:52:8d:2d:e7:f0:ef:
61:b7:3c:1f:22:ac:0f:f3:db:65:d3:fd:e0:aa:4e:6f:f2:58:
d4:4d:c8:40:03:75:f2:4c:3e:be:13:48:5c:e9:99:c4:b9:4f:
1d:c8:02:f3:21:e9:41:8b:49:92:8f:3e:77:c7:29:0a:5c:1f:
4d:55:a6:6d:48:51:6e:a8:5b:d9:30:56:be:e7:aa:3d:e3:c5:
44:ef:c0:48:aa:c8:2d:f0:3c:c6:e0:52:23:98:d0:37:15:a2:
78:7d:40:dd:e0:ce:69:1b:ec:a6:97:40:08:4c:16:0c:e3:6c:
3e:ee:da:62:bf:8e:27:0d:b0:dd:1a:84:ed:aa:c1:d9:36:94:
94:b6:70:be:b2:1b:96:07:cb:eb:58:e1:16:c2:14:45:53:86:
67:a7:26:23:fc:46:74:3a:5f:75:27:a9:a2:4c:87:85:9e:b0:
a0:65:67:aa:e3:0d:b5:19:53:3e:31:e6:69:d1:6e:3a:8e:5f:
99:17:5f:f4:80:c0:4d:60:34:c4:a0:8d:a3:99:81:70:3e:12:
82:82:83:f8:21:38:a0:8a:ae:c7:e8:a9:a9:e3:f1:87:bf:05:
07:ca:9f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:06:33 2026 by rpki-client