Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
File: ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft (raw, json)
Hash identifier: RI8Gdrv3tGxaX4OUpMyds6eGBED3Dt3GRvAneoU+4vc=
Subject key identifier: 1E:C4:8C:E2:33:B3:66:93:C1:72:B2:E7:E4:DC:08:90:C5:95:F8:B0
Authority key identifier: 65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
Certificate issuer: /CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Certificate serial: 019E205A767380240ABC88719CF79C64D698
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
Manifest number: 03BD
Signing time: Wed 13 May 2026 08:00:59 +0000
Manifest this update: Wed 13 May 2026 08:00:59 +0000
Manifest next update: Thu 14 May 2026 08:00:59 +0000
Files and hashes: 1: OpiyEA7jLNoth377L3JQZRW22EA.asa (hash: r8ONgzWitytpplKZRKdun1LH8tmOWmyteR7//LNHOZ8=)
2: TBDRW3pZmuh3LqJB0SgJxwzZcn8.asa (hash: hzhoB7Z5vY10r4VrziTI+hp0NwmrNuDhAq362RHDbhc=)
3: ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl (hash: q1COejIpsximfKgRqlcNE9axu09JwA0r/JI1DAAGlSA=)
4: m0PF4BK3O9Y2-d_izx7bC-pV_Es.asa (hash: D09pxW5zPXOvJqHki3xg8YhkV/MNoANsgzWxuDtJUNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:76:73:80:24:0a:bc:88:71:9c:f7:9c:64:d6:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Validity
Not Before: May 13 08:00:59 2026 GMT
Not After : May 14 08:00:59 2026 GMT
Subject: CN=1ec48ce233b36693c172b2e7e4dc0890c595f8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:41:ad:53:30:92:b6:bc:9c:93:5d:99:ac:b1:
70:81:4d:39:65:35:9c:88:bc:13:13:d3:0b:94:fb:
6e:b1:b0:56:12:e1:b2:fb:66:ef:93:92:96:13:2f:
df:44:a4:7e:80:a1:fa:c4:fc:21:fc:d2:ee:78:29:
34:c8:ba:44:9b:7c:26:85:ee:ff:67:4b:a7:59:8b:
28:ab:7b:c4:56:c1:2f:4a:ea:b6:7f:eb:3c:a4:1e:
6d:4f:25:63:bd:0b:cc:3e:7d:c4:f5:2a:8d:89:39:
d4:27:69:cb:89:a7:4c:12:ee:41:59:b5:62:8f:47:
f1:18:39:2e:2b:4d:50:ff:80:c3:0e:29:82:8b:f7:
b4:6c:7f:10:51:ba:1e:bd:44:2f:48:d0:4a:90:fe:
83:de:26:49:6f:f9:40:88:e9:7c:ab:9c:54:90:e0:
a8:4a:28:5c:dd:36:98:ef:75:4c:7b:a2:97:cc:a9:
89:e5:47:aa:cf:29:4f:81:82:d2:03:c7:2d:ce:b0:
e1:83:c6:d1:20:2d:fe:c3:7f:70:23:13:b8:c8:7c:
a7:36:83:c6:8b:63:eb:94:f2:74:c7:89:6a:77:8c:
d6:65:87:18:43:c3:f1:9c:8e:c6:02:5e:c6:af:70:
12:3c:94:63:02:75:4b:0f:3e:9a:cd:8a:31:c4:fb:
a6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C4:8C:E2:33:B3:66:93:C1:72:B2:E7:E4:DC:08:90:C5:95:F8:B0
X509v3 Authority Key Identifier:
keyid:65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:18:b1:74:9a:ef:e1:84:92:18:09:56:21:40:8b:61:10:e6:
25:75:a0:81:77:65:9c:7b:90:1c:dc:34:d2:32:5d:71:af:37:
d5:b4:f0:87:b3:ab:0d:25:a5:a2:95:29:1e:30:cf:b9:40:6a:
3e:cd:b4:b7:d5:52:c7:4a:f7:47:d9:5a:38:64:ac:7d:48:36:
47:73:1f:87:dc:fd:04:63:be:80:f3:81:98:3c:14:57:8f:f6:
e8:3c:d0:9e:58:c1:50:87:66:f7:3f:54:c0:6a:36:99:64:9b:
e3:97:02:ee:8e:10:c4:f8:a1:45:35:15:69:59:b2:f5:45:98:
f8:d3:c2:66:ce:7f:ef:4a:ed:f8:ab:9b:f9:f7:c3:97:42:55:
6a:91:74:72:f5:c5:7b:81:d9:9b:cf:48:8b:0e:cd:fd:83:c7:
4e:ed:a7:e3:40:e1:0a:10:76:91:e0:16:b1:04:73:41:80:e2:
09:ab:72:4e:4e:1d:8c:e0:98:16:d8:f5:99:0f:54:71:86:fe:
5b:48:91:21:45:ca:e0:4c:fc:aa:88:ad:6e:0b:da:27:d1:94:
00:b3:96:4e:27:a0:3e:fb:44:23:bb:bd:d1:2c:4b:78:c6:08:
22:23:a2:13:85:9f:f4:a4:59:f7:4f:94:4d:b5:27:e9:03:46:
7c:47:0d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:49:34 2026 by rpki-client