Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft
File: ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft (raw, json)
Hash identifier: M1RrnKKbicLKOpp/WNummUBWxwnPrWcK7e1Ryob32Tc=
Subject key identifier: 3F:B1:2C:16:05:87:AA:94:B3:C3:32:89:13:DD:7B:98:50:14:56:75
Authority key identifier: 66:94:F5:B0:FA:B5:FE:D2:DF:95:35:E2:A9:C0:29:F1:87:D5:54:04
Certificate issuer: /CN=6694f5b0fab5fed2df9535e2a9c029f187d55404
Certificate serial: 019D382E8CE331D9F28E2851C4C9E844C525
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft
Manifest number: 09AF
Signing time: Sun 29 Mar 2026 06:01:07 +0000
Manifest this update: Sun 29 Mar 2026 06:01:07 +0000
Manifest next update: Mon 30 Mar 2026 06:01:07 +0000
Files and hashes: 1: PKBAlxhxjbQl3V5bDnuBzljib9Q.roa (hash: eWzoIIDioxxQX7PyiTO6rBCtAXhu7H8TtLvFoqesiBg=)
2: ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl (hash: lgTAIAjIL+G5QvdokvbVEnLxVqpjknE2wCDlEaH0WBw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:8c:e3:31:d9:f2:8e:28:51:c4:c9:e8:44:c5:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6694f5b0fab5fed2df9535e2a9c029f187d55404
Validity
Not Before: Mar 29 06:01:07 2026 GMT
Not After : Mar 30 06:01:07 2026 GMT
Subject: CN=3fb12c160587aa94b3c3328913dd7b9850145675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:97:6c:17:fb:31:9c:4b:22:fc:86:8c:5a:c5:
b4:49:8d:1b:b1:f4:b4:1c:cc:29:bf:d5:13:91:f2:
59:7c:a3:fc:0d:f4:84:bb:12:b1:86:db:c1:0b:7b:
e4:6c:6d:e8:9f:c5:c6:43:40:b1:a7:a2:3c:50:b3:
bb:06:5f:23:57:4e:70:6e:e9:d6:90:a7:b2:d4:ae:
70:89:57:bf:e6:dd:4d:8b:7e:c8:31:66:8f:f0:13:
d6:d2:63:cc:8c:0c:16:38:af:ae:a1:dd:4c:15:3c:
1a:0a:eb:dc:79:9b:a9:26:03:13:94:cb:28:9b:89:
f0:e4:61:3b:46:50:1c:8b:80:f3:4c:ba:32:27:6e:
73:4f:3b:04:e7:5f:00:5e:63:82:90:a6:2c:2f:8c:
a8:37:90:f2:5c:63:15:a5:be:d8:59:48:a3:69:ee:
16:97:01:57:4e:27:81:6e:6d:42:6e:45:fd:70:90:
4f:0c:0c:23:25:5d:3b:87:ef:70:5f:65:cc:9f:09:
7d:1a:ed:91:15:f2:fd:34:80:25:9d:4d:ba:cc:6c:
9f:3d:29:0c:4b:52:02:fe:7b:18:e8:d4:6d:3a:18:
fd:32:d4:4c:a2:4f:0f:25:e0:3c:1a:1d:01:96:64:
c4:29:b3:12:2c:88:3a:b0:bb:bb:6c:ba:e1:b1:9c:
67:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B1:2C:16:05:87:AA:94:B3:C3:32:89:13:DD:7B:98:50:14:56:75
X509v3 Authority Key Identifier:
keyid:66:94:F5:B0:FA:B5:FE:D2:DF:95:35:E2:A9:C0:29:F1:87:D5:54:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:c7:7d:4f:8a:c2:ec:6d:fe:1e:f5:d4:05:0e:12:89:ad:3f:
9a:31:33:4a:0a:ff:33:c7:a4:57:2a:66:7c:2d:14:74:eb:89:
43:c7:c7:20:a3:d1:e3:44:46:16:a1:d5:23:ff:20:4b:38:c2:
e0:eb:e6:16:52:16:23:9a:37:34:d8:6c:8f:1e:4b:91:c5:3f:
61:64:9f:64:29:a8:67:a3:91:7a:e3:8e:f0:81:e5:93:b9:5d:
88:2d:8f:4d:cb:c9:90:ba:bc:79:91:2e:8a:e7:da:fa:cb:0f:
ed:00:62:b5:10:2a:7c:2e:a4:0d:c6:90:fa:14:a9:b5:eb:6c:
c3:00:67:49:77:2c:b7:b6:57:30:ce:b8:d9:3b:cf:36:03:f8:
07:37:16:c8:e0:e5:31:3a:32:fd:72:45:bb:20:f1:bd:23:7d:
0a:d9:c6:1a:cb:00:eb:b0:4b:3a:af:31:2e:f2:4f:9a:cd:16:
ce:b5:fd:b9:cb:3e:7d:1c:96:7e:59:b6:c8:77:e2:1b:45:b5:
1d:c0:65:0b:7f:ad:91:a9:df:72:cf:6d:26:45:b9:34:55:83:
1a:8e:94:86:b2:82:b8:82:66:5c:d2:c3:22:8c:47:99:b0:87:
8e:89:f9:c1:bb:c2:e9:3d:64:2d:e2:e1:61:86:be:82:5f:d6:
d2:df:35:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:56 2026 by rpki-client