Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: KzAlIAnPoVfyUiE3XbY8Gjx/SjKiptfi5x4aaruS1XM=
Subject key identifier: 9E:2F:14:36:8C:12:A4:20:A0:28:51:9A:36:F1:49:46:8C:5C:50:66
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 019E29CC5D22F34777CD403D67ECD9453CE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0FB3
Signing time: Fri 15 May 2026 04:01:59 +0000
Manifest this update: Fri 15 May 2026 04:01:59 +0000
Manifest next update: Sat 16 May 2026 04:01:59 +0000
Files and hashes: 1: w3WwugLLFUcrItCxeJKoofI3afc.roa (hash: EnJ2zpdE5VsVYk/C8ci9QDlsMzJ01oLKtWbpS2SqvN8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: AZJERYShbnNqTRF6XAnyHeqvOKUfTe4C0Qmkq9s6abs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:cc:5d:22:f3:47:77:cd:40:3d:67:ec:d9:45:3c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: May 15 04:01:59 2026 GMT
Not After : May 16 04:01:59 2026 GMT
Subject: CN=9e2f14368c12a420a028519a36f149468c5c5066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:80:45:55:60:cf:8d:84:3b:ee:d9:34:99:d6:
08:0b:06:1b:1e:b7:b9:74:ec:61:ef:ea:be:ae:ca:
bf:c4:f9:72:53:9c:ba:c0:d2:35:de:c1:04:98:74:
16:18:da:dc:87:64:90:32:bd:41:3f:a3:5f:b9:f4:
68:e5:b0:b7:a5:65:cb:cf:b5:c8:30:60:08:16:ad:
31:3e:e5:e5:e8:41:d2:5c:55:b4:3f:0d:80:2c:bb:
63:00:04:ad:2a:36:4d:57:08:2c:06:f3:50:73:e4:
6e:68:ad:ea:f5:c8:22:0e:1d:d6:4f:5a:5c:76:4d:
1d:f9:37:68:40:10:10:f4:24:c5:06:88:e2:5e:13:
98:2d:a3:9f:84:ff:cd:e1:11:2a:24:ac:a3:5c:c3:
5e:7b:78:96:95:92:67:89:cf:4c:98:b5:39:b7:8d:
9e:d7:0c:f4:c7:5b:88:1e:a1:db:97:31:b6:f1:97:
d2:6a:cf:a8:60:81:91:6c:b0:04:ee:aa:fe:9f:36:
b3:01:8a:a5:2e:2c:fc:00:7c:7e:68:ff:fd:41:96:
2f:9c:88:c1:71:e0:f7:1a:04:35:b2:c9:92:ee:ca:
3e:48:fd:14:3f:06:ab:c5:c1:22:1c:80:16:43:b4:
ee:96:43:2e:63:74:22:9b:e8:69:ec:00:2b:f4:d4:
e3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:2F:14:36:8C:12:A4:20:A0:28:51:9A:36:F1:49:46:8C:5C:50:66
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c0:41:76:81:9b:96:62:31:ad:aa:1c:3d:f2:c0:39:6c:08:
43:e6:5c:1e:b8:e7:32:77:42:74:31:fc:3c:e7:a0:69:8a:00:
c2:ac:01:07:b5:6c:fa:05:a9:26:32:2e:2a:09:11:54:a2:73:
61:63:e5:df:25:10:a2:6a:f0:34:b0:ce:88:ba:19:77:43:5e:
09:ed:4f:9a:9b:ff:52:19:79:80:90:1d:54:a6:c2:50:39:fe:
4b:d0:4e:a9:01:88:5a:4e:87:c3:fb:71:dc:63:44:a9:c3:d3:
c3:ee:20:a8:b7:37:9c:2b:6d:5a:9a:de:e0:c9:ac:7f:9f:d8:
20:8a:1a:29:1a:dd:8b:c4:0d:74:88:5d:69:db:07:59:4d:cf:
22:aa:22:ba:0a:3b:ec:e8:83:7e:64:10:07:18:79:5d:96:35:
26:9f:52:40:e5:a1:f6:8c:35:08:57:dd:99:76:28:1e:24:e0:
9d:fe:b6:3e:50:4c:3a:85:16:9e:49:08:33:27:32:f9:8c:6b:
3c:d2:07:81:44:77:ff:25:14:45:5e:e5:f8:46:a9:09:70:28:
e3:45:12:43:e5:7e:95:ce:58:02:18:c4:d6:d6:b1:6d:c2:1b:
c8:44:61:d8:cb:67:9a:9c:60:a1:ef:f8:de:27:cb:f5:9c:be:
6e:00:b0:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 11:58:05 2026 by rpki-client