Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
File: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json)
Hash identifier: Ik7H592XlDyBhomuKUVu82ZSt4Fn+UPJK8t0+yrPOkI=
Subject key identifier: 87:B3:00:BA:61:7B:FC:90:45:92:B6:90:CE:BE:F9:E2:B6:6B:9B:65
Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
Certificate issuer: /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Certificate serial: 019CAA58A5FF0801CFA2AAC6B6F8C6320AF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
Manifest number: 1756
Signing time: Sun 01 Mar 2026 17:01:02 +0000
Manifest this update: Sun 01 Mar 2026 17:01:02 +0000
Manifest next update: Mon 02 Mar 2026 17:01:02 +0000
Files and hashes: 1: 11UHbWWyzf12DKqEVtlPbvmvLDo.roa (hash: Dg6T6ROSIHh46iUOhkgkZyjyj5P7h4/p+TTyu04jv1k=)
2: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: vvfbgmcEn1rNeSxH8eeOjD5bA9yFRDie3wc1dU/TUK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:a5:ff:08:01:cf:a2:aa:c6:b6:f8:c6:32:0a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63
Validity
Not Before: Mar 1 17:01:02 2026 GMT
Not After : Mar 2 17:01:02 2026 GMT
Subject: CN=87b300ba617bfc904592b690cebef9e2b66b9b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d2:23:f6:96:94:6e:c4:2f:23:4e:25:11:f2:
a2:95:c7:9f:86:fa:c0:a4:d7:3e:f3:7f:eb:58:61:
6c:ad:dd:ce:3b:c0:7e:df:0c:2c:ad:ea:9a:9e:10:
e2:6a:68:80:1a:2f:89:76:6e:47:77:66:4f:5f:41:
0a:e0:02:38:11:3f:bd:e4:6c:6e:e8:4c:b2:3a:95:
17:92:f8:36:08:ba:f3:82:a1:70:07:5e:42:29:77:
7d:c6:e8:9f:3c:37:b9:34:1c:9a:a2:7c:fd:30:be:
d0:ea:f5:09:20:a8:0a:ad:08:88:dd:db:43:a9:96:
05:3d:f9:19:f2:3c:c8:47:b0:bb:08:27:c8:85:8b:
0a:54:b9:32:1a:71:be:f7:49:de:fb:8e:0d:a0:29:
d8:a9:e3:8e:ad:dc:19:33:77:cf:53:4b:26:a7:f8:
d7:67:ed:13:45:db:e9:ee:0a:82:af:be:75:aa:67:
32:59:71:42:18:fa:da:ce:74:15:ac:d2:3b:d0:3f:
31:33:1f:89:c1:e1:75:2b:9e:72:b1:28:56:07:1c:
b8:a4:db:fc:41:51:53:e7:69:d7:ff:58:74:66:63:
c2:e4:ed:ec:2d:2f:a6:81:c3:0d:7e:10:f5:7c:78:
fa:4c:4a:64:bc:97:be:7e:57:8c:4a:76:7e:09:52:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B3:00:BA:61:7B:FC:90:45:92:B6:90:CE:BE:F9:E2:B6:6B:9B:65
X509v3 Authority Key Identifier:
keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:2f:41:98:cc:ab:34:60:9d:02:57:df:2b:f0:aa:dd:32:68:
51:12:ec:44:c1:3d:ab:61:d4:2e:54:8f:29:8d:a8:fe:cb:9d:
f2:b3:03:74:2a:49:e5:d6:dd:f7:9e:6a:f3:52:de:6d:b9:15:
b8:7c:d7:5e:09:45:03:19:a3:8f:da:89:61:69:0d:88:a7:b4:
7b:54:42:44:88:d2:c1:8b:df:51:3b:4d:a8:f4:3f:17:1a:08:
b3:a4:45:0b:4a:13:63:59:6a:e0:6b:89:8e:e7:79:68:4a:86:
c3:19:af:7b:84:c3:71:d0:37:55:ad:29:2a:7b:3a:67:17:38:
2d:3c:f1:dd:3c:46:9b:6a:2f:68:9b:ac:62:c6:7a:5a:56:c9:
f5:2e:59:dd:61:73:10:71:16:a2:70:f5:af:da:51:67:63:d9:
a7:36:c8:8c:0c:4f:03:27:b8:63:5f:a1:88:68:b0:9f:5b:ff:
96:d8:57:d1:bd:cf:23:3f:93:e2:7b:20:8d:1c:0b:b1:c1:ba:
ce:bc:11:c9:12:0e:a1:a5:69:5e:19:ba:70:c5:ff:da:e3:5f:
4a:15:87:7f:07:3e:4e:be:d1:9e:e2:e0:38:09:ba:23:80:1e:
37:db:b2:92:38:e4:8f:ac:5d:ef:0f:d1:67:49:de:d0:30:ba:
1a:f4:62:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:56:09 2026 by rpki-client