Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
File: ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft (raw, json)
Hash identifier: jLn2HtYuwFCpzLrDBuDw5tzmIl94VIgijHBch0CP5SQ=
Subject key identifier: A5:E3:F7:7B:1E:96:A6:22:25:C1:10:0E:40:F9:E1:47:3C:24:9E:03
Authority key identifier: 65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
Certificate issuer: /CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Certificate serial: 019F0A07439DF32379345C22761188386FCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
Manifest number: 0436
Signing time: Sat 27 Jun 2026 17:01:15 +0000
Manifest this update: Sat 27 Jun 2026 17:01:15 +0000
Manifest next update: Sun 28 Jun 2026 17:01:15 +0000
Files and hashes: 1: OpiyEA7jLNoth377L3JQZRW22EA.asa (hash: r8ONgzWitytpplKZRKdun1LH8tmOWmyteR7//LNHOZ8=)
2: TBDRW3pZmuh3LqJB0SgJxwzZcn8.asa (hash: hzhoB7Z5vY10r4VrziTI+hp0NwmrNuDhAq362RHDbhc=)
3: ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl (hash: 8784SYWyhmMIXvKJ4aoBBzARxYg/dq+i7SJg/K5SVTs=)
4: m0PF4BK3O9Y2-d_izx7bC-pV_Es.asa (hash: D09pxW5zPXOvJqHki3xg8YhkV/MNoANsgzWxuDtJUNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0a:07:43:9d:f3:23:79:34:5c:22:76:11:88:38:6f:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Validity
Not Before: Jun 27 17:01:15 2026 GMT
Not After : Jun 28 17:01:15 2026 GMT
Subject: CN=a5e3f77b1e96a62225c1100e40f9e1473c249e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:89:7f:0c:85:5e:35:05:da:70:66:8d:ba:0f:
8c:d0:3b:9c:7e:cd:f8:4e:1e:87:74:d1:4d:5d:e4:
bc:d3:c8:04:64:57:6f:01:0a:66:0d:26:e3:e5:8b:
c9:c7:2b:d0:9f:b2:41:12:7f:1b:c9:9d:48:8e:5c:
92:f8:b7:da:66:cf:ed:39:2f:97:fe:7e:62:b0:62:
0e:98:32:f1:03:b8:de:f2:54:0d:24:f7:ae:ed:82:
f5:67:85:7f:ee:63:06:fb:ef:3f:ed:10:47:62:d4:
1d:df:d0:97:bb:01:45:93:1c:31:f3:3d:1c:98:cc:
16:9a:27:d0:c2:e7:8e:cc:ed:3b:84:da:68:ce:3f:
4b:54:bf:f0:0c:7f:ef:7e:31:fc:31:21:ad:15:51:
27:fb:26:0d:76:68:6b:a1:4c:35:82:0e:b4:36:f8:
5d:00:7c:97:4b:20:59:a2:8d:ea:8b:36:86:1c:17:
85:92:96:20:3b:26:55:c2:d7:c8:f9:bd:38:4c:2c:
9e:9c:38:34:7f:e0:ba:f8:82:0c:34:36:e1:e3:29:
5d:a7:39:78:a9:86:3d:8a:a1:c8:dc:0b:f6:ad:ac:
79:9d:24:0e:ce:ba:c5:18:15:d5:79:8c:a2:db:1d:
0d:e4:21:95:3f:05:32:95:55:d1:d2:6b:f6:be:ad:
67:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E3:F7:7B:1E:96:A6:22:25:C1:10:0E:40:F9:E1:47:3C:24:9E:03
X509v3 Authority Key Identifier:
keyid:65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:7f:28:60:4c:a8:4b:c3:c0:14:9c:4b:2e:fd:d6:f6:b2:9c:
d6:d3:ed:f2:7e:73:6b:18:55:f0:bd:28:70:3a:f4:8c:24:9d:
bb:9e:f9:69:ed:de:d8:cf:62:46:34:ea:24:13:38:5f:1f:2c:
a9:9d:ad:24:1f:0b:51:72:44:b4:95:9d:25:19:4b:62:af:cc:
cb:fb:e4:9d:53:6a:d3:2e:13:d8:d3:04:12:55:27:f2:0c:0e:
21:13:65:b4:75:d8:f5:51:fc:03:a6:3d:8e:71:a4:c7:3a:54:
1b:d3:88:90:66:7b:14:f1:e7:5d:e6:56:34:f8:0d:03:56:16:
78:8b:a5:d9:fb:bd:70:89:91:4b:72:b0:31:98:05:45:2a:8f:
61:43:e4:20:b4:78:2d:33:2a:dc:a2:db:a0:51:ac:ab:48:6f:
9b:f8:9d:ce:e8:af:7f:d2:f0:51:a3:95:65:90:9f:e4:1e:58:
13:a8:54:14:45:e0:24:82:af:b2:3e:15:5f:8b:bc:e2:a6:f5:
f2:d1:04:a1:bf:98:5d:aa:97:bd:aa:7a:0e:6c:18:93:8b:e5:
65:ab:36:ee:a0:60:ca:a6:7b:cb:db:2b:e2:1d:aa:48:d6:a1:
cc:e6:0e:0a:89:8a:04:8b:3b:6a:45:2b:4e:32:7b:e9:c1:f9:
b5:bd:9a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 23:56:40 2026 by rpki-client