Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: BnNQrQVovbm1v4+sBtbv4rW5fntXgZiaw0Rma2dxwuE=
Subject key identifier: FD:0E:EB:58:E8:E3:4B:E6:6C:92:51:44:4E:3C:CA:15:9F:9E:00:72
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 019CAC475487C04C4544D3AF5961E8FE30A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 17DA
Signing time: Mon 02 Mar 2026 02:01:21 +0000
Manifest this update: Mon 02 Mar 2026 02:01:21 +0000
Manifest next update: Tue 03 Mar 2026 02:01:21 +0000
Files and hashes: 1: kJTuRCvouXJMaVDF0pdJUxYymkE.roa (hash: u4BkMutspCjtHl2p10ecFJYI7igX5XDffjXXKmzdde8=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: +IgpxKMAvo2d8QHfr2BpuFzQFYwPQY6C9OfFYylQvJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 02:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:54:87:c0:4c:45:44:d3:af:59:61:e8:fe:30:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Mar 2 02:01:21 2026 GMT
Not After : Mar 3 02:01:21 2026 GMT
Subject: CN=fd0eeb58e8e34be66c9251444e3cca159f9e0072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:db:42:5b:0a:89:50:18:a8:a2:cb:12:a7:c4:
ad:61:d7:47:f2:0e:e4:6c:80:56:d5:00:83:94:99:
10:df:67:a2:90:dd:4c:73:ba:96:7a:a2:78:0f:47:
e0:99:ae:5f:5c:d4:83:7a:74:31:41:ac:cf:af:1b:
fd:02:7e:72:06:30:43:9e:b8:f9:b4:fa:c3:67:1e:
82:da:ec:ca:a2:7d:9a:d0:ad:32:69:f7:06:94:4f:
ff:94:c4:3a:05:82:f0:f2:6d:7a:52:66:5c:e3:53:
76:4e:22:d8:b2:8e:53:d2:db:c1:f4:29:04:a9:24:
3f:e4:99:a4:be:94:32:85:ee:25:4d:52:6d:65:29:
3d:1b:48:bc:d7:9f:ba:63:19:5a:50:e2:65:c6:82:
8b:c1:f0:91:13:54:b9:30:be:b3:bf:02:63:e6:fa:
e0:cc:1f:dd:c2:da:7f:ea:17:fe:06:50:0e:53:cb:
25:9d:27:c6:30:2d:58:41:45:4e:98:35:3d:57:22:
ee:31:72:1d:99:11:1a:fa:97:2a:1c:17:91:62:d8:
f8:ca:10:ee:c5:42:b5:29:04:74:7a:58:5d:69:b5:
bd:50:3d:77:fb:3d:7b:4c:17:9c:20:00:d4:e0:b4:
03:96:a5:07:75:cb:48:ce:c2:21:0e:61:2e:0d:f3:
7b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:0E:EB:58:E8:E3:4B:E6:6C:92:51:44:4E:3C:CA:15:9F:9E:00:72
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:5d:b2:2e:8c:97:1d:f9:05:e2:43:d8:9d:b4:89:0e:ec:84:
e6:b7:23:9e:6c:76:37:3a:5a:13:40:52:58:c8:0f:63:cd:a0:
f8:c9:26:48:96:2e:aa:e5:f6:42:bb:80:c8:7b:1f:a9:6c:55:
13:6d:20:00:22:43:1d:ad:e5:32:d0:0d:a2:8f:18:23:48:34:
0b:eb:c9:2b:e2:13:3f:c0:c7:ad:5b:a6:68:7f:01:04:cf:99:
cd:c5:d5:0b:e1:62:c0:26:f1:da:40:9d:04:26:ef:70:7d:ae:
2a:f6:bd:ee:4d:26:c6:3b:b9:05:0d:d0:07:73:54:98:24:3e:
b2:1e:de:10:8b:18:e4:fa:87:c3:64:1e:2e:13:c8:bb:dd:24:
a3:94:01:4f:1b:f3:e5:44:b4:5f:44:4f:11:d5:a5:7f:72:ff:
bb:58:81:69:54:de:a0:f7:aa:40:21:01:7a:a4:99:59:34:df:
d5:8d:e9:5d:d7:69:e6:e7:f4:dc:d5:68:64:e6:20:da:54:67:
47:c2:7e:f0:8a:97:6f:0e:72:a6:b7:70:b7:01:13:82:19:ab:
76:60:2e:2f:1d:04:b0:96:30:f7:15:84:01:be:dc:44:e2:1a:
d3:9f:33:6f:c6:d1:40:2b:39:86:9e:e4:f2:23:f9:40:63:42:
51:7c:34:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:41:47 2026 by rpki-client