Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
File: Zhao67AREZsvaVMn-xblH4hwRHk.mft (raw, json)
Hash identifier: XEvY/721IvhX3BocYCw8thRI1JMhmieENSL0tC4IlBA=
Subject key identifier: E0:1A:C4:FD:2C:8F:6E:E7:0A:55:57:D3:FB:26:C2:A6:BA:33:FB:BE
Authority key identifier: 66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
Certificate issuer: /CN=6616a8ebb011119b2f695327fb16e51f88704479
Certificate serial: 019E29CC7698BE3FF4F79E0E923C42568DFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
Manifest number: 03C8
Signing time: Fri 15 May 2026 04:02:06 +0000
Manifest this update: Fri 15 May 2026 04:02:06 +0000
Manifest next update: Sat 16 May 2026 04:02:06 +0000
Files and hashes: 1: 0owzz-yAwZGI1zbtpD_4a_vchXc.asa (hash: uEee6eXF8F1K0rvUsnDtxWWj1AUGW3rXYuMBFxhYtPg=)
2: Zhao67AREZsvaVMn-xblH4hwRHk.crl (hash: iGQHfI85Avj52zgDD5YUHz/J0U9hrRS0jbke8v49Cmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:cc:76:98:be:3f:f4:f7:9e:0e:92:3c:42:56:8d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6616a8ebb011119b2f695327fb16e51f88704479
Validity
Not Before: May 15 04:02:06 2026 GMT
Not After : May 16 04:02:06 2026 GMT
Subject: CN=e01ac4fd2c8f6ee70a5557d3fb26c2a6ba33fbbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:59:69:e6:4a:36:bc:35:7f:9c:1e:5a:a0:b9:
84:c4:6b:6e:43:5c:89:33:2a:e1:2a:20:5e:2a:b0:
90:f4:61:c8:5f:84:61:98:01:4e:e4:a7:d4:fd:ec:
aa:b8:77:cb:08:1f:d6:08:c5:1c:01:f9:ba:aa:15:
05:47:96:c0:1d:d1:95:8f:be:bf:52:46:f7:5d:20:
10:a0:bb:be:34:8b:9a:f7:e1:76:0e:0c:ce:16:8c:
38:22:26:82:72:e7:f9:86:35:ea:0d:00:5a:3c:80:
4b:8d:ef:72:26:ce:99:5e:f6:e4:2a:2c:3e:a6:04:
da:17:fc:e1:db:be:d7:5b:8c:31:bd:3a:98:84:c4:
d9:78:25:8d:8b:66:51:1a:fb:48:2d:48:55:3c:28:
6f:e1:a0:c2:b7:76:79:7d:7c:9f:69:79:b1:01:a0:
25:58:f3:80:0f:9b:6b:e1:e7:ae:a0:53:2e:ba:8f:
da:2a:57:69:ca:de:ef:e6:e9:2c:fa:57:e6:44:42:
a3:13:04:8e:eb:93:e7:23:e5:ae:a8:49:4b:25:8b:
7e:f8:61:e1:27:a1:c7:15:84:0a:f1:0f:3a:98:77:
36:30:d7:f7:b8:d5:ff:7c:1b:1e:4c:88:cd:b4:b3:
6b:8c:b8:3c:41:90:91:f0:05:fb:67:3a:0f:1e:62:
d9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1A:C4:FD:2C:8F:6E:E7:0A:55:57:D3:FB:26:C2:A6:BA:33:FB:BE
X509v3 Authority Key Identifier:
keyid:66:16:A8:EB:B0:11:11:9B:2F:69:53:27:FB:16:E5:1F:88:70:44:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zhao67AREZsvaVMn-xblH4hwRHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/dcf4a2-c374-4573-940a-ed3d27055020/1/Zhao67AREZsvaVMn-xblH4hwRHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:a6:1b:41:68:a5:3f:36:4d:ab:95:87:f4:a7:7d:42:45:99:
f3:28:c9:40:6c:03:96:a7:b5:b0:36:76:2a:31:e6:22:cb:33:
80:da:cb:44:d3:64:9f:ee:07:47:6b:68:91:f7:b0:de:52:6c:
ca:ef:e5:9c:e8:61:dc:e7:17:93:33:f7:0d:4e:13:43:1f:ba:
64:5b:6e:76:88:4c:54:5a:60:fa:7b:ee:e8:74:a9:0a:8d:cf:
7f:87:10:af:54:8a:07:5f:32:c0:39:43:09:21:63:67:7e:3d:
b3:df:85:40:97:1a:03:ca:4e:1e:9b:41:bb:ab:f4:e5:92:60:
1a:3c:cb:34:c9:8a:b1:0a:a2:d3:69:81:a8:f1:be:4d:c2:ea:
e8:c8:d1:59:f7:7c:65:2f:3c:a7:b7:cc:61:0b:8c:98:8d:c7:
df:27:a4:9c:28:aa:81:e0:1e:86:1d:bd:46:f8:2a:c0:f9:6d:
e6:e4:2b:38:f4:ba:66:01:8f:1c:68:79:f5:b4:ca:17:62:5b:
93:69:f6:97:9a:dd:7a:a3:c1:d0:28:64:49:ea:8e:b0:79:25:
41:34:df:6a:7e:ae:26:68:ef:22:d0:59:05:d8:ab:72:df:ac:
bb:49:f2:c9:65:3c:5e:0f:a0:31:60:22:e0:68:cc:2e:e5:fa:
fe:89:3a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:16:12 2026 by rpki-client