Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
File: ZhPZyFZESnCW46hQjK4wf968DNQ.mft (raw, json)
Hash identifier: Hy5+gsdVVb3KTT5U44ARySkaRkv55aB8Wz5A2t807I8=
Subject key identifier: E8:E7:A6:BA:9D:CF:36:79:B8:5A:E6:0A:E8:65:8E:CF:A8:1C:07:2B
Authority key identifier: 66:13:D9:C8:56:44:4A:70:96:E3:A8:50:8C:AE:30:7F:DE:BC:0C:D4
Certificate issuer: /CN=6613d9c856444a7096e3a8508cae307fdebc0cd4
Certificate serial: 019CAB6AC44A5E778E7F643B85FF0D243F6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 22:00:26 +0000
Manifest this update: Sun 01 Mar 2026 22:00:26 +0000
Manifest next update: Mon 02 Mar 2026 22:00:26 +0000
Files and hashes: 1: RsnrJKwmL8cQaNh398zcQEeUvVY.roa (hash: LNyFYXYZiYI7HKKoks5EZWi0DK28Q+wkZrR9sNh6HOA=)
2: ZhPZyFZESnCW46hQjK4wf968DNQ.crl (hash: uSZq5D1asLp8+J2nSMH6Q6uuQV237ifmejQVH5iqzeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:c4:4a:5e:77:8e:7f:64:3b:85:ff:0d:24:3f:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6613d9c856444a7096e3a8508cae307fdebc0cd4
Validity
Not Before: Mar 1 22:00:26 2026 GMT
Not After : Mar 2 22:00:26 2026 GMT
Subject: CN=e8e7a6ba9dcf3679b85ae60ae8658ecfa81c072b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e3:68:af:89:c1:a4:b8:6d:6b:ef:bc:1c:70:
dd:22:49:70:21:a4:31:0d:6b:7a:16:c5:99:5b:92:
cc:06:09:30:3e:26:70:88:1d:88:2b:1e:cf:c5:a3:
c6:4f:28:38:de:f1:e3:09:a5:2f:02:c1:01:f8:ee:
e1:0c:55:b5:cc:6c:7b:8b:5a:6b:91:b7:f8:85:ef:
53:45:53:6b:a3:b9:23:fd:bd:8f:2c:a0:7b:e9:15:
76:70:64:57:2c:de:10:b8:72:f0:49:d1:5d:21:89:
7c:e8:dc:49:12:fa:96:88:af:68:90:af:cc:ec:1d:
ee:48:80:0c:48:57:90:f7:71:df:7b:e6:c1:f1:fe:
7a:16:72:cb:df:18:13:0c:99:a0:9b:a7:38:88:14:
b8:40:9e:88:f7:ae:85:bf:e1:2a:3c:fd:10:a4:0b:
62:b5:c5:d7:0a:de:9f:70:d1:85:e6:90:ff:08:32:
87:d6:bf:9f:1f:c4:8e:f9:67:be:2a:53:5d:58:d8:
1c:1a:3b:5d:7e:3a:3f:34:de:95:49:72:d0:5d:45:
13:fe:a9:2f:4f:98:ef:32:4e:ec:43:69:e4:16:f5:
e9:18:65:e4:ab:ce:04:0f:9c:74:98:2b:3b:a1:c8:
62:33:09:06:f4:fa:87:2f:56:5f:d2:15:d7:8f:84:
87:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E7:A6:BA:9D:CF:36:79:B8:5A:E6:0A:E8:65:8E:CF:A8:1C:07:2B
X509v3 Authority Key Identifier:
keyid:66:13:D9:C8:56:44:4A:70:96:E3:A8:50:8C:AE:30:7F:DE:BC:0C:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:8a:c9:4b:1e:69:ce:db:5d:6f:9f:df:d9:50:ac:7e:06:43:
d3:84:ad:f5:bc:78:eb:bb:f7:0b:e5:9a:82:65:47:a9:0a:16:
b7:aa:65:1c:7a:f3:8b:34:1a:f6:a6:d5:83:c0:35:06:64:2d:
7b:92:c6:fb:b2:e5:bd:55:d6:91:8c:e3:c3:8e:10:c9:86:c5:
53:e8:1d:6a:00:b7:6d:fb:0a:36:d4:03:30:8f:8a:e4:2b:57:
ac:de:4a:2a:b4:be:9e:85:2b:10:20:50:b2:18:19:76:33:10:
8f:38:b2:57:38:5f:2d:67:1f:90:4e:04:6c:55:5e:e3:e6:88:
06:f4:c2:a3:b8:70:54:73:0c:70:e6:a4:d1:1f:a7:a9:36:0b:
c1:5e:cf:6e:de:54:06:9e:8f:f7:1d:22:b2:8a:90:79:7d:59:
42:71:37:25:78:e8:5c:43:ac:91:f0:fd:55:00:0a:22:f0:02:
f9:7b:71:ea:a7:48:25:17:04:b4:d9:5d:96:d8:a6:a8:25:ac:
0b:13:c3:2e:85:01:0f:96:6b:37:23:9b:47:60:06:b2:1d:45:
c1:eb:49:cf:c0:34:33:34:93:67:03:fa:76:97:fe:00:14:2b:
0c:02:c3:ec:73:3b:d7:67:98:62:8a:37:46:95:bb:7e:4d:00:
71:6e:90:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:26:48 2026 by rpki-client