Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
File: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft (raw, json)
Hash identifier: YLVzRorDRZW/3K8oD85wTbAJ8Bz7YEzf+jNmcUJsGRc=
Subject key identifier: 59:A8:A7:DA:D7:02:17:E1:C9:22:14:BE:5F:3C:04:CA:61:A7:A2:02
Authority key identifier: CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0
Certificate issuer: /CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0
Certificate serial: 019D39779684AFFEBCE2B710C4B4CB96B1D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
Manifest number: 1365
Signing time: Sun 29 Mar 2026 12:00:31 +0000
Manifest this update: Sun 29 Mar 2026 12:00:31 +0000
Manifest next update: Mon 30 Mar 2026 12:00:31 +0000
Files and hashes: 1: kvrpde2NkZn_MY5z8yP0kUJPKB0.roa (hash: nyyXOBMDEJmgos3/uP4abipU5IsMQkBb228KURVxjm8=)
2: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl (hash: I3wflDg5YWX+ANwK5ke6ZAJaSXz2m92I1gB1eAAI0KQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:96:84:af:fe:bc:e2:b7:10:c4:b4:cb:96:b1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0
Validity
Not Before: Mar 29 12:00:31 2026 GMT
Not After : Mar 30 12:00:31 2026 GMT
Subject: CN=59a8a7dad70217e1c92214be5f3c04ca61a7a202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fa:6e:99:96:01:77:71:14:ad:ba:75:8c:0f:
86:41:04:24:bf:21:a7:24:58:80:f9:3c:42:c6:b0:
b7:b4:36:2b:74:eb:5d:f4:4d:50:01:b1:d5:85:29:
48:11:1d:04:5f:81:04:07:2a:18:08:fa:09:60:22:
79:7d:ae:b3:65:55:f3:7a:69:50:f7:03:3d:49:cb:
50:f5:4d:00:2d:6e:7f:69:db:a1:09:be:cc:b4:69:
39:9b:17:7e:a9:71:d9:54:b1:cc:f7:ce:e3:7c:50:
9f:ea:f1:44:47:be:08:f1:ba:73:47:ee:fb:c7:3e:
e4:f4:39:11:fb:99:58:fc:1d:0d:82:cc:31:84:0c:
14:ea:62:8f:bc:01:e7:b5:69:2a:84:77:5d:c4:2d:
16:c5:9e:7c:73:e2:28:d6:81:40:09:e9:2b:11:91:
59:11:83:12:d5:b6:2f:07:36:35:a6:17:b3:7e:51:
55:b9:88:fb:9e:cd:bf:90:24:f5:26:18:1a:02:b6:
07:e2:89:ff:31:ae:a8:2d:87:df:62:2f:c3:b8:2c:
84:3e:f5:4f:5b:2f:28:9f:f6:a9:30:37:8c:23:00:
4c:84:41:5e:7f:e5:08:15:db:dd:42:0f:37:b7:0e:
b9:77:57:56:ba:3c:d8:2d:81:e9:26:44:0b:b4:60:
4a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A8:A7:DA:D7:02:17:E1:C9:22:14:BE:5F:3C:04:CA:61:A7:A2:02
X509v3 Authority Key Identifier:
keyid:CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ea:ec:98:6b:95:b2:50:34:7f:f8:94:56:23:13:68:0b:65:
28:12:be:5e:fd:86:a3:c1:66:1e:fd:26:c1:fc:61:c6:53:cd:
56:18:8b:57:d2:ae:1c:d0:38:4c:f0:6b:8a:74:1a:17:2c:e7:
94:45:dd:8f:de:06:85:48:1d:16:21:6a:f0:ec:9b:89:56:ad:
0e:a5:9c:a9:1e:7a:a9:21:bc:a9:91:fe:d1:97:fe:58:2a:b3:
a3:62:37:ab:7f:eb:4c:8f:ad:22:67:ed:1f:94:2e:c3:ea:09:
79:1f:1d:41:d4:b7:6a:f2:3e:16:11:f1:75:ec:74:6f:1d:18:
54:f5:d7:a4:ef:97:1a:de:eb:11:f7:52:ec:83:5c:da:9e:80:
f4:df:5f:7a:6d:7a:1d:cf:bd:c1:1a:b1:c1:12:5c:f9:f6:a8:
6d:fe:2c:9a:85:fc:60:36:b6:3d:87:2c:e0:59:e4:40:de:33:
f9:1f:6e:ce:66:e1:06:0d:e1:47:40:ca:bf:90:74:07:78:44:
c3:ad:31:d3:f1:4e:af:35:6a:81:a5:b7:22:f5:4d:d1:5d:4e:
9a:7b:96:f5:1a:bd:4f:42:c8:5d:9e:29:0e:6a:18:2f:81:7c:
75:f6:70:ca:5c:0c:b7:bb:69:19:f2:a9:61:be:14:d4:30:3d:
b7:5f:bd:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:34:32 2026 by rpki-client