Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
File: zE1IcI2lBUlZ5hilguKMFV_vET8.mft (raw, json)
Hash identifier: PqTEppo+5XzVDZl1QSSP0hizlhPfYx12pOwN3wcrPo4=
Subject key identifier: 85:3C:5A:4C:75:1D:53:47:75:4E:99:CF:39:35:89:57:37:C8:80:F3
Authority key identifier: CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
Certificate issuer: /CN=cc4d48708da5054959e618a582e28c155fef113f
Certificate serial: 019CABA2271E2402A65F2F5AF3E11473DE7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
Manifest number: 07A2
Signing time: Sun 01 Mar 2026 23:00:56 +0000
Manifest this update: Sun 01 Mar 2026 23:00:56 +0000
Manifest next update: Mon 02 Mar 2026 23:00:56 +0000
Files and hashes: 1: 46wXiqms5HpiGBoK15ocXo29pM4.roa (hash: oBJWgh+2jPc8gknL0v2rnOXcYX3sL1PfoR3y8FKwdXQ=)
2: zE1IcI2lBUlZ5hilguKMFV_vET8.crl (hash: rkb+M4gc7BugHS5v61Qc7CKoyUyxGVZam4ThnQQPEks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:27:1e:24:02:a6:5f:2f:5a:f3:e1:14:73:de:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4d48708da5054959e618a582e28c155fef113f
Validity
Not Before: Mar 1 23:00:56 2026 GMT
Not After : Mar 2 23:00:56 2026 GMT
Subject: CN=853c5a4c751d5347754e99cf3935895737c880f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c8:56:86:d5:1c:ff:68:78:23:23:3c:f5:6e:
2e:c2:5a:8e:c7:61:af:dd:8d:a3:cf:fb:ed:0a:1e:
19:0b:88:66:06:3d:24:d8:28:d3:02:06:32:5a:f2:
01:d8:a4:0e:9d:3a:b0:86:c2:f4:c7:fc:af:f2:78:
f4:d3:4e:6f:ae:69:e4:aa:d4:ec:35:9b:c6:fb:b8:
53:52:7e:28:53:8a:5f:99:99:4f:c4:0a:24:b5:bd:
40:ad:2e:27:44:d9:80:03:5a:07:c9:47:6d:1e:6e:
7b:38:03:b9:23:8b:99:e0:38:da:80:0a:29:81:03:
7d:4b:d5:e8:92:39:ba:93:f1:8a:22:f5:de:0a:67:
0a:fc:9f:c3:a3:10:97:b8:8c:76:5e:4e:87:ed:bb:
b6:4b:f0:90:77:b3:37:dd:50:ec:5d:60:d3:46:17:
bd:f3:3b:e2:d7:f0:64:0b:90:ec:21:04:7f:28:10:
56:a6:3c:9b:58:f0:96:a9:a6:f6:b6:fd:65:38:79:
01:c1:db:69:f8:c2:8e:07:52:68:2e:6a:e7:42:dd:
94:b6:8c:9f:9e:79:b5:33:5e:04:32:33:86:a8:76:
3a:dd:c9:67:41:22:5c:d8:c6:3e:c2:b1:70:b3:8d:
57:f6:d8:34:b7:20:5e:50:b5:84:03:b5:16:ba:64:
6f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:3C:5A:4C:75:1D:53:47:75:4E:99:CF:39:35:89:57:37:C8:80:F3
X509v3 Authority Key Identifier:
keyid:CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:b0:67:4b:27:b4:2d:1d:c5:fa:48:31:ac:96:a2:82:c9:f2:
d5:fd:9c:19:a0:d1:b7:f8:c1:44:fa:13:f3:90:e2:85:aa:7a:
a9:28:68:15:e8:44:6b:f0:af:70:69:73:fc:0d:8b:d6:2e:0c:
0a:30:09:01:38:05:27:5f:af:b6:b3:05:3b:93:ea:8b:47:47:
be:b9:95:86:bd:64:ea:48:52:6c:67:36:d2:8a:46:e5:07:4e:
3c:5f:1b:7c:0b:30:a3:ed:47:34:ad:82:c4:5a:15:1e:8b:86:
f3:b9:6f:ac:06:2a:28:a2:86:67:c8:39:05:82:95:58:a9:2d:
ed:e2:e3:9a:90:da:ea:92:25:84:50:cd:ae:78:91:e4:b7:9a:
51:cb:d0:37:35:c0:f3:b8:6c:04:24:fd:09:fa:b3:7d:d7:82:
98:27:23:a8:c2:62:50:1d:5e:da:fc:a4:73:cc:52:2e:3c:29:
bf:80:85:d1:91:3d:88:14:be:38:e7:a6:1a:c0:4a:09:90:d4:
49:c3:2a:ba:9e:d3:18:7b:82:69:45:90:4c:50:4c:1c:3c:4e:
ea:cc:96:18:e6:04:8b:a5:de:77:40:ae:30:f0:b5:9a:97:5a:
a3:59:53:40:ca:9a:12:85:55:71:ed:43:e1:c8:0f:22:7c:e1:
e8:e3:3f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:03:51 2026 by rpki-client