Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
File: zxNuAf-vhT27Klz8_l0bZ9IMILU.mft (raw, json)
Hash identifier: w39PJxnSsIY2WM5oHnf3WbbvsEQgmT37CybAn9FV/28=
Subject key identifier: 67:83:69:A2:A8:65:5A:82:C1:6B:47:BC:BF:F5:5D:9D:83:E6:0A:25
Authority key identifier: CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
Certificate issuer: /CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Certificate serial: 019D39AE51874F0469B0E19B53DB5FD6DD8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
Manifest number: 131A
Signing time: Sun 29 Mar 2026 13:00:18 +0000
Manifest this update: Sun 29 Mar 2026 13:00:18 +0000
Manifest next update: Mon 30 Mar 2026 13:00:18 +0000
Files and hashes: 1: gCv9GsrB47w68fkCt0zJCC4RJMw.roa (hash: xbOO4Pn1uaeMtiQL/e3JD3h35YCVx46Ur2oVXzJ3jaY=)
2: zxNuAf-vhT27Klz8_l0bZ9IMILU.crl (hash: 8np2L/+5W7nSkHOcWLl7xRtEm3GUuu41QP4evxdm2L8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:51:87:4f:04:69:b0:e1:9b:53:db:5f:d6:dd:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Validity
Not Before: Mar 29 13:00:18 2026 GMT
Not After : Mar 30 13:00:18 2026 GMT
Subject: CN=678369a2a8655a82c16b47bcbff55d9d83e60a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:95:1e:48:6a:af:53:48:2e:25:2b:bb:ad:fe:
8e:09:b9:21:72:d2:ac:b1:a5:43:51:6d:b4:11:d9:
e2:45:75:1f:35:7f:71:b5:8e:f9:68:31:94:97:90:
79:e4:81:1b:1a:e9:3e:eb:dd:98:e8:cb:93:2b:98:
ad:df:94:6c:f2:52:54:8d:7f:99:48:b2:c0:0d:96:
ba:e1:67:bc:41:f2:26:c2:c6:cd:06:ed:7e:13:e1:
b4:1b:cf:23:5e:93:97:c4:18:60:db:a6:f5:2b:34:
8a:72:89:69:d1:c4:05:7e:ef:73:fe:14:60:72:a8:
5e:1a:93:87:da:15:35:ce:2f:64:af:d7:31:4b:af:
50:69:15:d3:b1:fd:57:e4:cc:14:a1:3e:53:cb:0d:
36:00:11:b3:ac:c0:a2:57:1e:0b:18:e2:b4:ea:57:
69:6c:b8:aa:ba:8e:28:79:a6:78:ac:fc:22:18:75:
17:f2:b3:5e:d4:e4:16:a1:9a:71:d7:4f:f1:aa:3e:
14:bb:78:72:5d:f1:dd:ec:e6:ba:34:3f:69:16:f7:
48:ee:ab:1a:97:72:8a:e2:84:f3:1a:e6:c3:08:d0:
f5:52:df:ef:f9:0b:de:e5:61:05:f0:e4:fb:9f:46:
4d:83:7b:c3:40:18:0f:5b:8f:74:19:41:b0:bf:40:
fc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:83:69:A2:A8:65:5A:82:C1:6B:47:BC:BF:F5:5D:9D:83:E6:0A:25
X509v3 Authority Key Identifier:
keyid:CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:45:d7:62:38:c3:5e:5c:93:c8:96:b6:d6:bc:4e:b2:0d:aa:
1b:67:be:e6:77:73:03:af:91:86:58:8e:e3:63:f7:32:cb:b8:
a5:3c:e5:d2:b8:c0:89:00:e3:24:b0:de:52:2b:38:56:74:00:
8d:3a:92:ef:13:1d:94:7c:6f:04:ec:40:93:47:59:2f:c4:e2:
1b:aa:84:4f:82:6b:63:e4:73:b2:fb:b6:d8:bd:1d:77:06:bd:
61:a7:53:3e:45:23:cb:ab:ca:87:9b:1d:26:b6:bb:94:16:de:
94:05:21:53:76:33:24:28:5f:93:95:5e:45:c3:92:e5:39:f4:
da:21:b9:82:ee:43:19:db:75:e6:3e:e4:15:04:f9:c7:2a:fd:
be:55:cc:8d:46:3e:37:67:2b:84:7b:fc:9b:5a:48:fd:e3:83:
16:be:81:25:0b:1d:43:46:50:10:cc:60:8c:b5:ba:13:51:06:
60:a9:20:d5:58:ca:fb:67:67:ff:78:f0:6b:06:20:5e:18:79:
32:f3:a4:d4:94:70:b2:bb:b5:8c:7f:8c:94:ec:77:96:fe:5a:
9b:9a:e6:f6:3a:e4:37:40:61:74:be:7a:1a:63:be:57:fd:e5:
68:2e:21:77:82:69:62:b1:bf:ee:91:fb:86:58:77:91:5c:08:
9e:75:63:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:22:00 2026 by rpki-client