Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json)
Hash identifier: Fxsa4io2k2uAIGWEmkHPIwulvKjlOmJASQCBYNNRHn4=
Subject key identifier: E8:C7:24:64:AE:A6:D2:FF:1E:C2:A0:58:0B:C5:62:BD:14:7A:25:19
Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196
Certificate serial: 019D3866281ECFD838771B9D249E82126904
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
Manifest number: 0F36
Signing time: Sun 29 Mar 2026 07:01:52 +0000
Manifest this update: Sun 29 Mar 2026 07:01:52 +0000
Manifest next update: Mon 30 Mar 2026 07:01:52 +0000
Files and hashes: 1: w3WwugLLFUcrItCxeJKoofI3afc.roa (hash: EnJ2zpdE5VsVYk/C8ci9QDlsMzJ01oLKtWbpS2SqvN8=)
2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: qa0VS9Vej3x7pOz57rqbTuj6r5Ar3xyPwSC6wrVaSLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:28:1e:cf:d8:38:77:1b:9d:24:9e:82:12:69:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196
Validity
Not Before: Mar 29 07:01:52 2026 GMT
Not After : Mar 30 07:01:52 2026 GMT
Subject: CN=e8c72464aea6d2ff1ec2a0580bc562bd147a2519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7a:6d:f5:db:a2:12:3a:34:77:7e:c4:85:09:
87:a7:06:a6:f9:9b:ac:b5:fa:4b:2e:37:73:c1:fd:
c5:96:82:26:e5:48:a0:b0:ce:4e:cb:7e:63:42:5e:
6e:2e:07:a9:6c:b7:e3:47:78:c4:b4:86:c1:56:36:
5e:40:5a:62:43:50:c2:61:85:d2:59:b5:55:fa:cf:
86:3d:a9:0d:4c:6e:77:46:07:bc:cd:7c:ba:ef:5a:
0c:18:22:bb:5f:a0:00:2b:73:e2:a0:4c:eb:03:bf:
6d:08:1a:9a:1c:d7:f6:55:35:d6:67:52:1b:5e:11:
6d:dd:9f:8d:36:3c:79:ea:e9:6d:f3:de:d5:1f:81:
61:f4:3e:ca:25:53:32:30:02:1d:5d:c7:c5:f7:18:
3c:c6:95:94:13:ae:af:a8:33:a8:64:67:dc:81:52:
71:e9:9a:fe:e6:ab:db:38:25:ef:ed:61:db:2c:06:
d0:6b:77:aa:d7:79:ad:58:ff:40:be:1f:56:c0:4a:
9a:23:45:e0:1a:72:59:3d:a4:bd:0b:29:5b:0c:5e:
e8:c4:e5:21:c0:1d:1f:f0:7e:29:b4:2f:c9:84:0e:
d4:91:64:5a:e1:83:72:a4:19:9c:25:3c:13:5c:ce:
5e:ef:7c:89:51:1a:eb:fd:b4:98:3f:bc:51:66:f1:
1e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:C7:24:64:AE:A6:D2:FF:1E:C2:A0:58:0B:C5:62:BD:14:7A:25:19
X509v3 Authority Key Identifier:
keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:14:f2:d3:24:a2:0f:ce:3c:43:89:1e:6e:a6:92:b6:6a:a6:
6a:5e:7e:d7:dc:d9:08:b2:96:0a:11:62:8b:98:6a:79:a7:ac:
60:f9:bf:99:06:66:ae:c6:11:eb:c8:00:7d:7f:4d:0f:18:5b:
91:43:5a:a0:de:ae:89:0e:82:16:b8:cd:f4:e5:a2:6c:83:39:
03:bb:d8:d7:b9:f8:b7:40:52:23:91:da:a4:e0:6d:45:0e:9f:
91:a3:84:1f:17:8f:a6:38:fc:a6:eb:53:96:ee:03:d4:c3:6f:
24:69:7d:eb:10:38:dd:e3:88:d2:43:7d:2a:61:d7:4f:98:ca:
fd:df:be:42:d6:c1:35:11:78:3c:93:5b:75:58:b8:39:da:f0:
27:d2:79:46:b0:5c:66:3a:bb:96:8f:90:38:04:fc:36:08:89:
1f:b2:a8:8b:e1:f1:c6:f0:2a:24:0b:6f:af:11:0e:5c:5f:d0:
7f:af:2b:fc:08:c8:35:7b:36:b1:d4:33:3c:6f:23:c8:c0:87:
10:37:37:7e:b8:a0:3a:15:17:04:58:37:6b:3a:aa:ed:80:87:
49:86:4a:54:ef:be:ad:d0:4f:14:ab:64:62:07:df:9d:6c:0c:
20:3f:2d:4f:6e:14:42:df:07:b5:f6:67:4a:9b:4c:5a:12:01:
5b:3b:3d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:13:12 2026 by rpki-client