Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: 8Hs1Q3AEXMMpASxdcKi3dwW9FYdWStkkZBqbg3KvSws=
Subject key identifier: A9:7F:AB:69:55:DA:81:BC:06:3B:42:24:AA:D7:59:55:AC:E8:AE:71
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 019CAC7DCB126ECF72F20FDD99F8BA84141F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0F2B
Signing time: Mon 02 Mar 2026 03:00:50 +0000
Manifest this update: Mon 02 Mar 2026 03:00:50 +0000
Manifest next update: Tue 03 Mar 2026 03:00:50 +0000
Files and hashes: 1: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: 3bZDlx6N9NinK7zo0CPDCe2QL4gwsb9DgQK/MjxW4Ik=)
2: kO3ikc55etvofjUz54lkxBw2Zts.roa (hash: FQtm/UjIvg0izBKVwcfTdDDZlcQWbE25eid7tWcMESM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 03:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:cb:12:6e:cf:72:f2:0f:dd:99:f8:ba:84:14:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Mar 2 03:00:50 2026 GMT
Not After : Mar 3 03:00:50 2026 GMT
Subject: CN=a97fab6955da81bc063b4224aad75955ace8ae71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:23:d9:33:b5:9e:91:51:d5:03:2f:2b:f3:86:
b8:8b:1e:e8:db:72:47:92:b9:ea:5f:12:bb:8d:67:
f8:97:7a:80:12:c3:1d:25:c4:9e:02:4c:fa:1d:20:
0d:98:51:49:6d:b2:70:c6:a2:5d:f9:57:75:26:c2:
a3:bc:49:8e:c8:1b:b9:91:33:4b:c9:e1:0c:6e:c0:
a8:fa:2a:a9:af:b1:d7:0c:27:90:68:e2:68:8b:87:
4c:cc:49:6c:f7:9e:77:98:70:5e:b0:db:46:3a:64:
19:15:79:72:f0:20:b2:2f:1e:b7:bd:00:65:ce:f2:
53:d0:68:b2:5e:61:6c:15:d0:5d:9f:e0:7e:71:bd:
1f:d1:6d:0a:dd:a7:4d:79:3e:8c:e1:b8:8f:5d:da:
07:99:25:6b:61:14:62:18:6d:8d:de:ea:64:a4:03:
03:15:86:e5:66:01:63:6c:8c:ac:8f:a4:22:55:7c:
40:8e:de:1b:ba:03:3d:1f:5a:f1:a7:c8:29:7b:72:
20:6e:94:f8:87:76:02:3e:82:8d:c3:cb:41:8e:88:
08:4a:ca:52:90:86:ac:ee:8d:85:10:5c:3b:15:68:
1b:f8:19:52:93:5c:6d:40:a5:53:50:5d:3b:83:35:
23:de:e3:df:ff:28:14:30:91:f4:54:08:62:71:e6:
30:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:7F:AB:69:55:DA:81:BC:06:3B:42:24:AA:D7:59:55:AC:E8:AE:71
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:04:ae:38:00:22:02:15:d3:09:cc:fb:86:52:eb:e9:a9:5f:
cc:0a:6e:f2:8c:50:5b:99:40:21:7d:86:45:6d:88:2c:b2:81:
89:6c:d1:b7:99:c3:d3:14:28:83:c0:c2:2e:0d:27:57:8f:b3:
ec:46:3e:4a:5c:00:6a:94:9a:82:a1:91:01:45:d4:1a:03:73:
51:57:a5:33:22:a2:1f:e5:c3:04:85:9d:7c:5c:2b:f6:6d:c7:
07:96:82:49:70:02:c9:9c:14:8c:04:ba:39:f4:30:8a:18:ed:
d5:96:03:21:40:a7:63:79:03:a5:ed:64:b7:8f:29:6e:26:ee:
c4:e0:9b:ad:29:bd:c5:2b:95:0b:ac:e7:8f:36:c8:64:01:36:
1d:1a:a0:b5:91:a8:b3:78:71:20:c1:4a:08:49:5b:e6:bb:15:
2b:25:d4:70:36:e9:35:e1:58:b4:9e:2b:41:6d:4a:5c:c3:33:
ba:d9:5c:7f:af:d6:6e:a7:7f:c0:94:91:0b:f1:8f:d7:be:1f:
b7:08:34:a4:6f:2c:7e:6b:1c:dd:7d:f8:96:18:57:b3:60:4d:
5b:00:9f:b6:c1:11:44:a6:d0:ec:23:ad:ff:60:84:68:04:c2:
4a:6c:09:7b:12:e0:e8:0c:14:9a:d3:1b:a2:de:a2:96:00:8c:
c6:d0:df:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:20:15 2026 by rpki-client