Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
File: zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft (raw, json)
Hash identifier: RduIZj12rfatfu84iPQnfi6+fdMlFq+fF+FwPqQOEZY=
Subject key identifier: 8D:6D:75:80:7C:4F:3F:7E:38:66:0C:A1:BF:CB:54:52:76:53:9E:63
Authority key identifier: CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
Certificate issuer: /CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Certificate serial: 019CC373CC0B4E9AE854BED661F9AD989230
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
Manifest number: 11D1
Signing time: Fri 06 Mar 2026 14:01:11 +0000
Manifest this update: Fri 06 Mar 2026 14:01:11 +0000
Manifest next update: Sat 07 Mar 2026 14:01:11 +0000
Files and hashes: 1: a0kN2gfK01wMuqhoW-MZjPAbstc.roa (hash: mmiujuewrIIcuNRFw3juwDDGpDhJAvUuobcjAggyfUE=)
2: zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl (hash: rF8hhCTnZqjSFSlqwB/GKa0vAfLBZhqJEVve20HNbGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c3:73:cc:0b:4e:9a:e8:54:be:d6:61:f9:ad:98:92:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e
Validity
Not Before: Mar 6 14:01:11 2026 GMT
Not After : Mar 7 14:01:11 2026 GMT
Subject: CN=8d6d75807c4f3f7e38660ca1bfcb545276539e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f8:6e:36:ee:92:d0:7a:70:4d:17:0f:cb:7b:
f3:5b:e8:17:e0:99:34:e9:dc:00:85:2f:49:94:31:
ff:fb:41:bc:71:de:9d:ba:b4:1b:bf:bd:ec:eb:03:
51:e2:09:e4:33:66:74:7e:f1:81:6d:f6:00:a0:32:
4b:01:9f:38:1f:77:58:e2:99:d2:16:15:08:c7:fa:
15:44:61:ae:87:c6:86:60:c1:b0:91:db:74:5c:79:
fd:1a:31:e0:58:7b:5c:e9:fa:d6:37:a0:85:55:67:
e6:58:a2:b9:ee:6a:1e:99:f7:b5:09:7c:77:c8:b3:
fd:ad:b1:98:fd:7c:ae:7f:37:a6:37:5c:e8:61:13:
40:d3:8b:c2:10:a0:a4:68:7a:4a:b3:01:b2:a5:fa:
f4:b7:d8:c6:1c:50:4a:1e:4a:43:8e:86:3b:cf:12:
8e:cb:50:c9:0c:fc:fd:7e:fa:ec:e1:3b:d7:01:f3:
b8:0a:10:24:38:0a:f7:ef:49:7a:0b:f8:f4:eb:3b:
64:75:16:cc:ec:2b:8f:19:90:f0:86:a0:62:17:3f:
9a:ba:2d:35:59:5a:c5:37:37:d6:48:40:8c:c6:d7:
8a:10:64:76:2d:7a:4c:ae:81:8e:39:02:4c:cd:89:
49:74:c2:78:a5:73:cd:70:b6:99:f8:e8:fd:f3:d3:
0f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:6D:75:80:7C:4F:3F:7E:38:66:0C:A1:BF:CB:54:52:76:53:9E:63
X509v3 Authority Key Identifier:
keyid:CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:a1:39:66:95:44:9a:c0:9d:1b:7c:a0:f5:50:eb:03:b5:8c:
ff:42:6f:58:16:40:4c:5c:6a:b9:f3:b2:f8:6e:de:f8:07:81:
36:fd:25:a2:e6:2a:6e:86:cc:7c:7d:a9:af:6b:62:df:b3:9e:
a4:d1:54:e0:2d:19:ec:83:08:8b:d0:dd:87:d5:36:dd:83:a2:
b8:6e:db:45:2a:27:8b:4a:43:91:87:6c:cc:b9:e3:fa:69:1a:
42:5c:fc:26:f9:88:37:c9:ae:6c:6c:af:03:d6:95:41:6c:aa:
0f:41:94:b8:b4:ee:40:08:e6:18:fb:af:d9:e3:82:8c:1a:2b:
c8:c0:a2:ed:af:24:57:60:be:aa:fc:d6:6c:0a:2c:df:b1:0e:
27:ed:bc:88:e6:0b:03:64:1e:ca:2b:3a:49:9f:9a:8b:a9:0b:
63:85:e9:28:6a:88:c9:4b:aa:b2:ae:b8:2b:f0:aa:42:80:74:
21:ee:69:e8:49:d5:17:27:e0:5b:59:f6:b0:1b:d9:04:b7:40:
04:06:14:62:5f:16:2e:f3:3e:9b:2c:21:f8:a4:3f:08:b3:8e:
03:8d:7e:da:56:7b:31:52:37:02:c2:c7:bf:41:9d:59:ab:67:
43:0b:6d:e8:0e:86:f5:51:74:18:00:df:32:8c:d5:9c:0e:f0:
39:eb:8b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 20:21:51 2026 by rpki-client