Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft
File: ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft (raw, json)
Hash identifier: t0RO4zGWj3CdDh1KZA1X/c1Jyyjro2E6XBCsjytWYIg=
Subject key identifier: 40:D8:AD:40:79:77:ED:A9:28:00:B3:D7:5A:69:8C:76:FF:12:84:7B
Authority key identifier: 66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8
Certificate issuer: /CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8
Certificate serial: 019D37C09CFB204473EB6C0D3F394A600240
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:01:03 +0000
Manifest this update: Sun 29 Mar 2026 04:01:03 +0000
Manifest next update: Mon 30 Mar 2026 04:01:03 +0000
Files and hashes: 1: 502RJFuHYsVVdsk5nlBdFZUnjzA.roa (hash: J6t8qFuhu7mWQDizillanFkdE0VQubG3/+wxJ1PTiNE=)
2: H5WGDRV0Cja1HIG_Gz5Hy5IDN2I.roa (hash: xT+WKT5cnc3Ep9zj5B/hCN7Fut8wkjVPD70bqm1rWyw=)
3: N3w2YmGANLSdSH-pmW22BuKUUBA.roa (hash: uB29W9OdRAZ7PHwh9T8cMIQuzRXrkCYKeRnBEx1cojA=)
4: ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl (hash: vhYAu2gKgnuktPh4kibnZ7qXyCcQZGjPIaT9tg1jkYc=)
5: ehC04eDurG--NxqYOKej5J5_Mkc.roa (hash: awoH3KlHVYA/xFgpcE34EbkUxOAICljJqKoGjg1R2VI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:9c:fb:20:44:73:eb:6c:0d:3f:39:4a:60:02:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8
Validity
Not Before: Mar 29 04:01:03 2026 GMT
Not After : Mar 30 04:01:03 2026 GMT
Subject: CN=40d8ad407977eda92800b3d75a698c76ff12847b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e2:c0:05:02:82:d9:34:e6:cb:a6:9e:a2:5f:
ae:3a:59:2c:24:19:ae:52:be:48:06:6e:50:d0:d0:
16:f5:3f:d8:18:d4:4e:f7:a1:0c:41:ec:89:e5:4e:
84:3b:a2:02:87:fc:7e:d3:09:e8:64:47:bc:6d:61:
cd:b1:17:9c:7f:ae:d6:14:0a:d7:8a:14:7f:67:c5:
66:6a:ff:1e:ea:fa:d5:09:44:50:4d:be:59:09:d5:
6f:be:aa:1d:3d:59:d2:cb:2f:7f:4c:73:93:c3:00:
83:4a:67:ca:b5:16:45:8b:31:cc:ff:5a:97:e6:55:
3c:b2:12:d5:9d:49:57:61:64:c7:1c:fd:18:5e:63:
87:6b:46:82:cc:59:a6:ef:2d:4b:1f:8c:4e:b0:81:
f5:8c:36:39:47:ea:b9:3e:5c:59:13:4b:8a:e9:3f:
5c:16:0c:02:12:23:3e:2f:77:ae:cf:36:99:5b:4d:
a1:2c:f7:ea:1d:6f:9e:bc:a4:3c:d2:06:77:3e:62:
20:85:e0:d8:61:94:31:d2:fb:99:71:36:55:11:3c:
21:d2:de:4f:29:57:cb:81:47:d0:7a:75:3c:61:17:
ec:b7:b1:88:c8:9c:95:d7:77:7d:cd:38:5b:69:45:
9a:e5:3c:f1:bd:54:a3:e5:70:53:15:f4:65:04:bf:
d2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D8:AD:40:79:77:ED:A9:28:00:B3:D7:5A:69:8C:76:FF:12:84:7B
X509v3 Authority Key Identifier:
keyid:66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ee:e7:fd:2d:bf:77:ad:4d:bc:b7:3a:9b:03:d1:95:11:3b:
d9:e1:fb:c6:45:f0:1b:ee:02:b1:f6:2e:03:73:d5:d6:ed:c2:
06:77:bc:2f:dc:9b:6e:f1:16:ae:bf:e4:16:da:ed:98:5f:88:
e4:6d:51:c5:18:d5:2a:ba:06:45:b9:16:a7:00:24:9d:9f:5d:
e1:63:a9:eb:20:77:50:c6:d7:6f:38:34:ab:60:fb:d2:49:27:
69:1f:f8:09:7c:db:1e:97:f3:37:94:ef:85:90:a5:1a:99:0b:
af:75:57:b6:63:9c:b3:83:82:8a:94:08:6f:41:6f:4b:57:94:
83:b7:0a:79:88:87:3a:1d:d6:5e:b0:eb:0d:0b:b5:c1:24:ec:
6b:44:36:94:a9:72:48:97:31:95:46:e3:16:ba:12:d6:76:b8:
9d:fe:e1:5e:25:e2:72:81:22:53:d9:99:c9:8d:92:e7:87:31:
f1:fb:2f:d0:e6:a7:f6:13:7f:35:a1:bb:6b:f7:c5:52:fb:6a:
e2:f4:4b:bb:b7:ec:af:9d:71:a3:71:d0:28:28:a8:7e:3d:a6:
07:72:46:b4:37:67:03:5d:86:7c:69:cc:e5:11:25:4b:61:08:
85:09:23:04:4c:c8:c1:1f:14:52:88:41:06:bd:e0:e3:f1:df:
88:4c:cc:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:39 2026 by rpki-client