Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
File: Zhao67AREZsvaVMn-xblH4hwRHk.mft (raw, json)
Hash identifier: lnBd1crIevydvMmmviFPmjZVVQ8MzxxMcLzQYAGosXw=
Subject key identifier: 8B:84:3A:98:5D:60:CE:27:BD:C1:0D:00:AA:DE:31:2F:90:1B:0D:B4
Authority key identifier: 66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
Certificate issuer: /CN=6616a8ebb011119b2f695327fb16e51f88704479
Certificate serial: 019D3909AC5FC9138F914219CD6CC067B732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
Manifest number: 034B
Signing time: Sun 29 Mar 2026 10:00:28 +0000
Manifest this update: Sun 29 Mar 2026 10:00:28 +0000
Manifest next update: Mon 30 Mar 2026 10:00:28 +0000
Files and hashes: 1: Zhao67AREZsvaVMn-xblH4hwRHk.crl (hash: tsBzYtrnpe5UyjuVsU3mc1Rz02umcIY6oVIQoSwmYB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:ac:5f:c9:13:8f:91:42:19:cd:6c:c0:67:b7:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6616a8ebb011119b2f695327fb16e51f88704479
Validity
Not Before: Mar 29 10:00:28 2026 GMT
Not After : Mar 30 10:00:28 2026 GMT
Subject: CN=8b843a985d60ce27bdc10d00aade312f901b0db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:25:df:28:e2:1e:6e:0a:78:3f:c7:c6:50:eb:
af:9c:f5:d5:ef:36:1b:60:e2:f8:96:c6:af:6d:46:
d6:e7:27:d5:87:46:3f:80:e4:19:86:44:ac:3d:17:
b5:d8:e4:53:6f:d0:d3:8b:ca:fd:1b:2f:ce:3f:43:
60:69:d3:43:85:7a:14:c3:73:fb:bf:dc:cf:e1:d5:
5d:b9:6b:d9:64:01:80:09:2a:0d:e3:f9:7a:b3:3d:
ec:f7:74:90:3d:3d:97:a3:f4:00:d1:d8:64:84:a2:
e7:0e:26:35:c2:e4:97:c7:3c:5f:23:98:7a:d6:78:
4f:b9:db:26:46:83:9d:b6:ed:1e:6a:1b:8d:f2:3e:
95:15:8a:20:08:40:aa:72:83:27:49:dc:6f:ab:a1:
fd:87:29:33:13:43:8c:e8:fa:47:6a:13:08:0f:50:
2e:3e:62:4e:72:11:f4:1c:b1:96:ec:c9:a4:e8:56:
fc:12:d2:dc:f0:71:d9:1b:ec:38:3b:ee:56:89:88:
c5:f1:27:96:14:ac:3b:00:3a:05:f0:cb:23:f6:58:
f0:d3:04:e8:68:2b:e8:25:b5:e6:f2:3b:0a:cc:8b:
35:ca:04:bc:79:0e:d0:79:b4:7a:cd:10:0a:c9:e6:
0f:b2:08:d2:83:bb:13:c2:e0:7e:6b:17:65:2c:30:
26:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:84:3A:98:5D:60:CE:27:BD:C1:0D:00:AA:DE:31:2F:90:1B:0D:B4
X509v3 Authority Key Identifier:
keyid:66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:aa:28:21:61:bb:3d:a5:5d:1b:c2:ed:f9:30:25:b5:63:d6:
5c:9b:10:f3:6d:cf:94:4b:2d:40:f7:de:91:59:18:58:7c:8f:
c1:d8:a2:e5:36:38:0c:4b:4f:62:87:41:b8:3c:f9:0f:ed:8b:
9f:d9:68:b0:0e:4d:38:67:3d:53:06:e8:10:0a:83:23:50:9b:
ab:df:01:a8:45:e8:6f:06:21:8c:c1:c5:66:d2:e6:03:fd:24:
f8:d4:85:fa:bb:14:3d:f3:6d:38:22:49:a9:e4:86:ac:f8:2d:
29:d6:9d:78:94:ea:ec:85:15:b9:4b:e3:75:a6:5e:d3:e6:58:
f5:22:5b:67:2d:4d:c1:a9:41:7b:aa:6d:90:d4:84:30:b0:1a:
40:be:d1:7c:af:8c:3a:a9:5c:f7:fa:8d:9a:bb:40:e1:8e:df:
cc:d9:e2:b5:72:24:64:41:f5:51:86:d7:05:ad:05:6a:f4:6d:
9a:28:22:6b:a0:f0:6b:cf:15:85:fb:19:a8:98:e1:6e:e2:88:
b4:7b:46:a8:dd:eb:16:92:b9:a2:0e:8e:e2:04:a5:0a:93:9e:
2e:73:60:e2:19:d3:bd:20:d8:23:3a:51:41:fc:eb:dd:1b:e7:
13:dc:81:d2:3e:c5:f9:a0:97:c8:2f:81:30:6e:18:f2:71:41:
78:b7:9e:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CaxfyROPkUIZzWzAZ7cyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2MTZhOGViYjAxMTExOWIyZjY5NTMyN2ZiMTZlNTFmODg3
MDQ0NzkwHhcNMjYwMzI5MTAwMDI4WhcNMjYwMzMwMTAwMDI4WjAzMTEwLwYDVQQD
Eyg4Yjg0M2E5ODVkNjBjZTI3YmRjMTBkMDBhYWRlMzEyZjkwMWIwZGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6SXfKOIebgp4P8fGUOuvnPXV7zYb
YOL4lsavbUbW5yfVh0Y/gOQZhkSsPRe12ORTb9DTi8r9Gy/OP0NgadNDhXoUw3P7
v9zP4dVduWvZZAGACSoN4/l6sz3s93SQPT2Xo/QA0dhkhKLnDiY1wuSXxzxfI5h6
1nhPudsmRoOdtu0eahuN8j6VFYogCECqcoMnSdxvq6H9hykzE0OM6PpHahMID1Au
PmJOchH0HLGW7Mmk6Fb8EtLc8HHZG+w4O+5WiYjF8SeWFKw7ADoF8Msj9ljw0wTo
aCvoJbXm8jsKzIs1ygS8eQ7QebR6zRAKyeYPsgjSg7sTwuB+axdlLDAmiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIuEOphdYM4nvcENAKreMS+QGw20MB8GA1UdIwQY
MBaAFGYWqOuwERGbL2lTJ/sW5R+IcER5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmhhbzY3QVJFWnN2YVZNbi14YmxINGh3UkhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9kY2Y0YTItYzM3NC00NTczLTk0MGEt
ZWQzZDI3MDU1MDIwLzEvWmhhbzY3QVJFWnN2YVZNbi14YmxINGh3UkhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9kY2Y0YTItYzM3NC00NTczLTk0MGEtZWQzZDI3MDU1MDIw
LzEvWmhhbzY3QVJFWnN2YVZNbi14YmxINGh3UkhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPqooIWG7
PaVdG8Lt+TAltWPWXJsQ823PlEstQPfekVkYWHyPwdii5TY4DEtPYodBuDz5D+2L
n9losA5NOGc9UwboEAqDI1Cbq98BqEXobwYhjMHFZtLmA/0k+NSF+rsUPfNtOCJJ
qeSGrPgtKdadeJTq7IUVuUvjdaZe0+ZY9SJbZy1NwalBe6ptkNSEMLAaQL7RfK+M
Oqlc9/qNmrtA4Y7fzNnitXIkZEH1UYbXBa0FavRtmigia6Dwa88VhfsZqJjhbuKI
tHtGqN3rFpK5og6O4gSlCpOeLnNg4hnTvSDYIzpRQfzr3RvnE9yB0j7F+aCXyC+B
MG4Y8nFBeLeewA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:23:32 2026 by rpki-client