Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: KxNwirm+LIqRXUFCAFYQYQy4vyEGcNMcU1fq3+Riy10=
Subject key identifier: C0:8D:21:E1:E3:BC:53:20:65:CA:E7:1F:BC:72:32:1B:41:DC:28:16
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 019F1378A7093A10C2DE77ED0427D0B34A73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 102C
Signing time: Mon 29 Jun 2026 13:01:41 +0000
Manifest this update: Mon 29 Jun 2026 13:01:41 +0000
Manifest next update: Tue 30 Jun 2026 13:01:41 +0000
Files and hashes: 1: w3WwugLLFUcrItCxeJKoofI3afc.roa (hash: EnJ2zpdE5VsVYk/C8ci9QDlsMzJ01oLKtWbpS2SqvN8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: ItU4x/OPcG5ZhXOHXnlM0RtF+nUKeAMmiU4KkDgXrGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 13:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:78:a7:09:3a:10:c2:de:77:ed:04:27:d0:b3:4a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Jun 29 13:01:41 2026 GMT
Not After : Jun 30 13:01:41 2026 GMT
Subject: CN=c08d21e1e3bc532065cae71fbc72321b41dc2816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:80:7c:57:45:4e:e7:f6:ec:0f:e6:f6:ea:42:
84:25:b3:ae:f4:98:8a:41:49:5d:5d:83:09:40:1e:
50:d0:46:c0:cc:36:e0:07:54:87:f7:12:12:c1:05:
08:47:cb:d0:04:06:5a:7b:3b:ad:f0:5a:4e:a9:aa:
67:9b:5d:82:0d:31:e0:c7:c3:4d:5e:e9:99:68:f6:
7d:59:fd:6e:4a:14:a0:3e:1f:c3:72:b5:15:13:98:
c0:63:c5:ef:06:cf:90:7c:fb:1a:a2:18:3a:b1:1d:
1c:fb:63:08:ba:d8:4d:c3:5a:77:c0:9f:90:37:4c:
1c:29:47:50:7e:47:32:6e:5e:a7:dc:e2:29:06:12:
18:21:5b:0d:bc:fa:36:30:22:ca:f4:e6:ec:0a:a8:
1a:fa:c9:4d:b1:2c:15:85:d7:e0:69:d6:7f:20:6e:
d5:6b:04:c4:2b:61:76:21:73:fa:76:b7:60:c8:e7:
20:c2:ef:ac:b6:d4:2b:5e:7a:35:53:07:12:07:58:
34:de:b5:8e:bb:e8:55:47:ea:08:ed:fc:af:1f:c6:
7a:e7:48:20:53:dd:a1:b5:00:52:75:78:40:d5:a6:
c6:1e:7a:f1:87:6e:82:cd:a6:bd:aa:46:98:96:c4:
93:3f:ba:f3:12:f2:df:f6:ea:c2:7c:d4:54:22:5b:
5f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:8D:21:E1:E3:BC:53:20:65:CA:E7:1F:BC:72:32:1B:41:DC:28:16
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:4a:84:eb:0f:d5:13:37:19:6a:a4:a1:7c:ef:cb:ea:33:0d:
15:8e:9d:93:53:30:98:dd:72:4d:eb:54:73:41:08:08:66:dd:
c7:5b:90:d0:8d:01:33:df:2e:db:4a:d1:69:aa:17:29:78:3a:
43:51:b4:92:c5:4a:83:79:f8:08:18:b8:95:e2:a2:5e:a1:2c:
9e:38:77:5d:37:c0:e9:dd:1f:66:8a:6a:3b:47:0a:01:20:33:
3f:d0:55:19:6a:82:99:74:fb:3f:28:41:ab:13:af:60:61:ca:
05:74:f9:ba:6d:3f:9c:9e:8e:0e:53:8d:e1:6f:26:57:f9:01:
6a:39:3a:27:f3:d4:47:cb:b3:de:58:94:8b:f5:55:86:23:9b:
80:da:14:c2:37:33:27:e7:e4:c7:2c:64:b3:af:8e:05:3f:f2:
4e:3e:31:34:b7:60:f5:99:d0:64:75:1e:2d:3f:42:e9:da:44:
94:12:3c:f5:c0:c1:a0:0b:41:c2:c2:6e:d3:a1:57:cc:aa:c0:
47:6a:74:c0:af:c3:39:83:e4:22:62:42:ed:78:78:b5:a1:20:
b7:e7:5a:52:f9:bb:a2:d3:51:3e:f9:de:67:9f:27:bb:21:93:
df:51:44:a5:84:ee:cb:be:cf:15:8d:c9:7e:23:a0:3d:a9:7c:
3e:a5:d1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:47:43 2026 by rpki-client