Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: xOVrJNazxd+FamH+QyLjHE1QnAO1+hSrbEMcA0Nw5S0=
Subject key identifier: B3:8D:99:44:82:86:AF:EC:16:18:C4:B2:73:7A:B6:31:2C:DD:15:3E
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 019D9BF594FB9CFA8C107C851B599C7A19B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0FA7
Signing time: Fri 17 Apr 2026 15:00:55 +0000
Manifest this update: Fri 17 Apr 2026 15:00:55 +0000
Manifest next update: Sat 18 Apr 2026 15:00:55 +0000
Files and hashes: 1: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: 6EFa0NJVXRwDfTid+NmIsWyB3LUKuU2rJ2btbHXO2Xc=)
2: kO3ikc55etvofjUz54lkxBw2Zts.roa (hash: FQtm/UjIvg0izBKVwcfTdDDZlcQWbE25eid7tWcMESM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:94:fb:9c:fa:8c:10:7c:85:1b:59:9c:7a:19:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Apr 17 15:00:55 2026 GMT
Not After : Apr 18 15:00:55 2026 GMT
Subject: CN=b38d99448286afec1618c4b2737ab6312cdd153e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0d:c9:a1:24:49:32:18:78:26:3f:eb:39:67:
30:0d:7f:ce:7d:cf:7b:6b:f6:62:3d:9b:2d:85:74:
f4:7a:86:74:a0:e8:71:75:ae:f8:a7:09:80:7e:b3:
57:c2:95:21:ba:2a:c6:f8:fa:6a:d1:ba:5e:0b:47:
d9:88:c1:1c:0e:8f:2a:a2:d7:aa:7e:cf:f2:a6:e6:
42:54:73:10:72:1c:ad:a0:3b:03:87:1b:14:73:d1:
00:ef:1a:b5:be:40:6e:4b:45:ce:1f:5e:cd:c4:d3:
09:c0:6f:42:d6:69:e8:92:a9:3f:d0:80:da:3e:bd:
a3:9b:5b:e4:f6:cb:37:66:fc:dc:b4:97:70:97:55:
33:86:7f:b1:7b:f7:7d:b2:6e:d3:39:96:01:c5:4d:
c9:42:2a:b9:5c:ac:ae:75:4d:d0:dc:ee:75:a6:60:
97:02:2e:ca:cc:f5:4f:8f:11:cd:c6:30:9a:f7:b7:
bd:ff:84:43:a6:eb:a5:18:ef:8e:06:a7:ee:f7:42:
bb:b5:c9:c0:19:c1:0d:2c:67:c9:50:80:6d:59:2a:
9b:9a:3f:79:d1:a2:3f:0e:53:62:8c:52:78:aa:c0:
a4:23:64:52:9a:74:fb:c5:87:6a:4f:29:9c:71:b6:
2a:0f:4d:73:44:e0:16:04:c1:d5:50:05:8f:12:0c:
88:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:8D:99:44:82:86:AF:EC:16:18:C4:B2:73:7A:B6:31:2C:DD:15:3E
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:11:2c:1c:a0:5f:98:b4:1f:81:fd:90:0e:44:24:35:ce:a0:
be:5a:04:7f:fa:48:7f:6a:33:b7:6e:6c:e3:0d:30:38:ad:e6:
80:80:8f:a0:a6:13:39:2b:54:2e:1c:e2:57:0d:df:32:77:2e:
d9:4d:b6:5a:7d:06:3d:f8:91:2e:f6:6d:e1:3b:cf:a8:8c:fc:
03:fb:b4:a9:58:37:94:fd:14:fc:ad:4b:45:bc:28:69:13:62:
c6:ce:f0:2b:67:b9:67:06:a4:99:b5:47:30:6e:80:e8:43:b0:
ee:91:28:13:fa:cb:0a:f5:73:34:62:39:35:b9:4b:f8:a6:b7:
35:f5:35:24:eb:b3:80:ec:63:e7:89:b0:b5:da:f8:c3:4e:8e:
b6:9c:7f:e4:75:5a:d3:74:33:7c:da:f8:9e:0e:5f:04:66:7c:
19:01:91:4b:a1:42:f7:54:e1:df:ea:52:be:10:3a:be:42:8c:
4f:b4:6e:8a:01:a5:68:41:f7:41:84:ee:a9:5b:65:cb:5a:bd:
da:dd:60:59:8a:a1:17:68:d9:0f:00:3d:42:8c:80:14:24:84:
7a:e2:a1:df:6c:b3:89:bd:e2:ea:28:46:27:95:1f:99:7b:0a:
71:65:36:40:7f:1d:29:00:ff:f4:e2:34:3e:da:e1:33:f8:5f:
80:de:9d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:41:02 2026 by rpki-client