Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
File: ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft (raw, json)
Hash identifier: NKYnB+7JWNm/020TvbsD4A5gTsYa8p8rLfhCplZbH9o=
Subject key identifier: 00:8B:8A:D8:1B:DB:FE:B0:E1:A8:50:FF:A9:4E:6F:C7:59:D6:09:4D
Authority key identifier: 65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
Certificate issuer: /CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Certificate serial: 019CAD22D2957EB9206C29FB6CEB7E34F2D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 06:01:06 +0000
Manifest this update: Mon 02 Mar 2026 06:01:06 +0000
Manifest next update: Tue 03 Mar 2026 06:01:06 +0000
Files and hashes: 1: ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl (hash: D6B2s8qnMFZo68szuXqPzQk78T5xiyvIjlN3bRkqAvM=)
2: j_HPqzEYCSbmN4xFIqdJBXQFYPM.roa (hash: yoT1DifOeGVrHGJeSH6umh8rSky2R54pK6MzOeEXpKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:d2:95:7e:b9:20:6c:29:fb:6c:eb:7e:34:f2:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65ab485af923d1b46c5a321fc7a3f856c04fb6fc
Validity
Not Before: Mar 2 06:01:06 2026 GMT
Not After : Mar 3 06:01:06 2026 GMT
Subject: CN=008b8ad81bdbfeb0e1a850ffa94e6fc759d6094d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:40:fd:a3:ab:2e:b4:a2:07:29:ed:73:3d:dc:
4c:9c:16:ff:b8:52:67:48:c7:0d:17:e8:71:8c:40:
f1:80:23:a6:b4:9f:93:f6:47:11:f7:b4:fe:42:1f:
74:7a:aa:81:23:9d:90:ce:2f:4a:78:ba:25:5b:4c:
42:0d:97:d5:53:90:66:13:a0:2d:55:69:05:c8:19:
fc:9e:b6:b7:79:48:f2:b2:dc:a6:c6:7f:dc:25:bf:
94:ec:0b:63:1f:a9:58:35:36:1a:bb:1b:f5:f1:5c:
0a:b7:31:28:86:e3:ef:fc:c2:d9:29:8f:50:fc:d1:
2b:0e:dd:56:fd:ef:c9:18:40:34:f2:f3:35:b4:bf:
a3:75:12:b5:30:0b:61:be:71:c0:1b:15:92:98:7a:
23:24:43:07:54:49:90:ff:bf:0b:54:e5:4e:ab:83:
db:34:34:a4:a9:1e:48:0a:13:31:a2:af:c6:6c:b1:
12:e0:ff:e4:74:87:a5:9d:a3:bf:86:14:99:46:c7:
62:3e:8f:6b:4e:df:5d:11:a3:a1:e9:82:ec:b4:24:
a1:cf:7e:45:c0:37:51:ea:15:65:3c:fe:9e:68:c5:
78:d0:e6:b1:e8:91:4a:99:88:4e:08:d0:a3:a8:e9:
44:d3:24:44:00:82:ff:49:5b:9f:e6:64:19:68:71:
52:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8B:8A:D8:1B:DB:FE:B0:E1:A8:50:FF:A9:4E:6F:C7:59:D6:09:4D
X509v3 Authority Key Identifier:
keyid:65:AB:48:5A:F9:23:D1:B4:6C:5A:32:1F:C7:A3:F8:56:C0:4F:B6:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZatIWvkj0bRsWjIfx6P4VsBPtvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/164d8d-41ac-4522-bb25-898634942285/1/ZatIWvkj0bRsWjIfx6P4VsBPtvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:56:48:a2:de:e0:b8:a5:00:77:9e:f9:29:bb:65:e6:ea:87:
21:da:5a:3e:0e:92:10:5d:f9:34:2a:4d:91:25:75:24:96:a6:
20:07:ff:61:15:61:3c:3a:20:b1:37:cf:cb:0f:de:71:20:b5:
a3:9e:47:cd:24:78:a9:91:3e:41:f8:c2:b0:db:8b:0c:37:f1:
7f:65:37:df:52:a7:de:17:08:55:06:a1:1f:c0:73:ad:76:1d:
4f:2d:df:1a:51:1b:83:66:fa:8f:4b:ba:ea:7a:6e:e7:28:2f:
2c:ba:2d:71:12:82:4f:c5:31:cb:83:86:14:8f:c9:db:49:c0:
d0:d6:cc:3a:d4:5a:80:83:4f:70:a2:06:58:93:83:99:69:f4:
b8:5b:93:c6:5d:cc:d2:2b:46:bc:63:32:91:cd:db:86:64:af:
46:55:6d:f9:9f:75:d9:63:f0:af:5c:ce:4f:b1:e2:99:ed:35:
6b:f8:af:bb:ec:8b:ee:2f:db:85:f9:f0:89:5a:ad:53:5e:ca:
cf:0d:76:3c:dc:f2:b2:66:04:40:ed:b6:c5:ce:b4:7f:62:45:
40:33:f8:46:33:b2:73:7e:95:37:56:e2:98:5b:2d:32:40:db:
16:58:24:79:b0:fb:47:c5:56:e3:2c:9b:e8:9c:c9:44:fa:e6:
c1:3a:97:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:43:57 2026 by rpki-client