Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
File: ZhBOT32fONjiKi0yvgGQMZMMGkc.mft (raw, json)
Hash identifier: R8D6NnoZ0NR5l1H/MqhFzUSYasfhtnQrUS6FdZUcf7U=
Subject key identifier: BC:1F:6A:69:3A:FC:10:BF:A4:19:13:16:9A:76:FA:1E:8A:F1:1A:DA
Authority key identifier: 66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
Certificate issuer: /CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Certificate serial: 019D39408104F34D5F851F5555F091A1A391
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 11:00:21 +0000
Manifest this update: Sun 29 Mar 2026 11:00:21 +0000
Manifest next update: Mon 30 Mar 2026 11:00:21 +0000
Files and hashes: 1: 5UJy-FglB36m_WVGPhQjUeDpJcA.roa (hash: jbNzffXqgNznaRTGjwlBv00PamtPBMfxq/7d1gTuI2I=)
2: ZhBOT32fONjiKi0yvgGQMZMMGkc.crl (hash: D2DIPzn/MdG8pTHHtcx1Z3/dAyA+Dj/NPEUZ3HCqerk=)
3: e1ImFgRyhdMOKFgAB5kl9XY5Nfc.roa (hash: nTHeDeSEMp4wiPOugAgAjRRaTG5Sm3T4L+dSsNdSPbM=)
4: jsanitEq0EQzEoP-koTj7RMMQyI.roa (hash: CH0iu1++iAldc7IvIKXIHNPTTc8uHt4Xf+q2a+oCLdQ=)
5: xaFYB9Z2Erc-fREk_pDSJqz_vjU.roa (hash: PD/YbANQupr5zYAFp72kktOtRa9bbOhTbu5miLL+NIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:81:04:f3:4d:5f:85:1f:55:55:f0:91:a1:a3:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66104e4f7d9f38d8e22a2d32be019031930c1a47
Validity
Not Before: Mar 29 11:00:21 2026 GMT
Not After : Mar 30 11:00:21 2026 GMT
Subject: CN=bc1f6a693afc10bfa41913169a76fa1e8af11ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a3:7e:54:d7:8d:0e:c3:f2:8c:8d:a9:cb:91:
84:16:9d:fb:a5:c5:90:a6:9e:87:0b:26:db:5f:1a:
96:c3:00:2f:b8:15:05:42:52:7c:a6:19:39:66:eb:
86:ec:8d:7c:cc:8a:0c:3c:58:ae:2f:7d:8a:f7:e6:
62:5a:32:00:fe:57:f8:b3:46:be:63:95:2a:4d:2f:
8d:9e:dc:dc:70:0f:96:ab:e6:ec:56:05:30:a9:91:
0c:39:27:4a:e1:0a:26:39:f7:ed:c8:54:c4:26:2d:
bf:f4:c6:c5:9a:49:70:19:5d:e3:5e:83:b7:59:a3:
40:d9:b8:10:54:a3:b8:9d:cd:87:a8:7f:bb:09:ab:
8f:89:2d:89:31:c8:24:b5:ee:62:c6:1b:c5:08:17:
c3:4a:8d:50:2b:a2:83:b8:8c:13:eb:f1:dd:4e:bd:
5c:f6:27:26:ae:50:6e:40:ec:80:0e:03:97:9d:d3:
f7:fa:09:09:04:41:10:57:6e:7d:64:9d:43:eb:14:
1d:06:0f:ae:92:ac:e3:d8:97:fe:22:a7:39:40:3c:
bb:fd:c5:3f:40:43:c1:d7:76:48:2b:e7:7d:b5:bd:
d1:4f:7c:8a:87:6e:64:95:b4:e4:c6:be:34:11:4e:
ab:f0:6e:17:cb:91:69:64:e0:dd:86:7a:dd:e0:08:
25:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1F:6A:69:3A:FC:10:BF:A4:19:13:16:9A:76:FA:1E:8A:F1:1A:DA
X509v3 Authority Key Identifier:
keyid:66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:a9:48:8b:79:32:a8:1b:c7:22:37:23:cc:a3:47:65:62:fa:
1f:02:fe:73:8d:60:b1:d3:38:8e:fd:f8:af:5a:18:c3:58:9f:
9c:e6:a9:d6:41:97:5e:c6:dd:db:95:8b:d9:bd:d8:e6:fc:e9:
b4:36:b8:a8:17:8b:92:2f:ed:d5:2a:fc:fe:12:d1:68:71:b6:
d1:43:9c:11:1d:60:59:cf:bd:c0:74:09:2f:cf:f7:ee:70:b7:
de:56:60:41:c5:08:7b:26:02:9b:b4:03:02:17:09:0b:b9:f9:
90:25:02:d9:1e:b6:62:8c:1b:04:36:ed:cb:45:7a:d6:b3:a1:
d3:fe:07:4c:66:e5:5f:34:19:8c:99:21:c2:30:cd:01:c3:c8:
25:2c:3d:76:e4:e0:f6:50:d4:51:ee:3d:6b:02:09:52:71:08:
79:01:1e:35:b1:3f:ec:e4:7b:ee:b7:dc:2a:ca:e1:62:dc:90:
8f:ee:ad:82:74:50:54:5a:40:5f:c8:37:1b:49:d2:54:aa:bb:
1a:02:18:e8:1a:ef:29:3b:c0:d8:6c:64:ca:38:18:54:b9:76:
aa:d9:c1:9c:fa:88:a7:f9:01:7e:6c:88:3b:03:09:3a:83:6a:
1a:aa:55:03:94:36:af:e9:d2:e8:f8:17:79:d6:1d:ab:7b:85:
7a:ae:c1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:02:00 2026 by rpki-client