Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: B226kTRhpgZE0V4ECIEy3ZKAGa45ONZDUtrkphshWaE=
Subject key identifier: AC:A6:04:77:BC:59:B6:C4:FB:31:28:DE:6D:C0:22:C3:AB:6D:6B:8D
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 019CE66D24E9CD496EE838EDDD0380E27E81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0F49
Signing time: Fri 13 Mar 2026 09:00:38 +0000
Manifest this update: Fri 13 Mar 2026 09:00:38 +0000
Manifest next update: Sat 14 Mar 2026 09:00:38 +0000
Files and hashes: 1: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: XCPdOykCzDXWnpClkkno/KtAMRZVIJdKzXvQkQCXnxA=)
2: kO3ikc55etvofjUz54lkxBw2Zts.roa (hash: FQtm/UjIvg0izBKVwcfTdDDZlcQWbE25eid7tWcMESM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:6d:24:e9:cd:49:6e:e8:38:ed:dd:03:80:e2:7e:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Mar 13 09:00:38 2026 GMT
Not After : Mar 14 09:00:38 2026 GMT
Subject: CN=aca60477bc59b6c4fb3128de6dc022c3ab6d6b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e7:3d:04:0a:a4:a8:e6:d3:35:5c:ed:f7:12:
00:4e:09:96:71:40:03:af:cf:f7:b4:63:00:b7:e9:
fc:e7:d0:76:f9:db:74:b7:38:26:1c:ce:9b:54:9d:
e6:6f:ba:56:28:e6:4e:63:7e:8f:9f:96:2d:cb:bb:
a1:ed:f6:dc:73:68:55:9a:38:03:2e:42:8d:a9:ea:
74:e3:0b:ad:e9:70:6e:23:fb:b1:4c:4c:1d:94:24:
5a:88:ec:23:cd:22:39:d6:59:d4:77:23:db:29:d2:
ff:d9:0b:db:a1:3a:ea:f1:ec:55:f4:fe:ab:06:d5:
d8:c4:04:78:e2:d2:4a:c0:78:12:65:55:f4:53:90:
2b:06:14:bb:4f:04:40:22:e1:f7:6f:5e:df:bc:3a:
df:d8:c3:4a:64:d2:a8:2d:8e:37:6a:fa:bc:71:48:
13:3d:86:2c:09:c8:96:a2:07:12:db:a0:7f:3e:37:
44:d8:8f:70:91:06:59:d4:7c:2a:29:75:84:a6:79:
97:1d:4c:6e:1c:a7:76:48:90:e4:9d:b5:fd:01:2b:
86:98:f0:bb:6b:68:5c:20:99:48:5c:52:d8:c4:72:
6a:d1:0b:0a:5c:bf:c1:01:d5:21:ff:2c:02:4a:d7:
68:ea:65:b2:40:f6:95:08:7f:b1:b5:c1:64:41:f3:
45:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A6:04:77:BC:59:B6:C4:FB:31:28:DE:6D:C0:22:C3:AB:6D:6B:8D
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:06:24:1c:28:45:32:b2:0b:75:6c:a8:26:fd:58:de:a3:18:
a4:e1:38:c3:4f:66:a9:46:cb:43:d5:10:4a:3c:4b:aa:42:b4:
cf:77:9a:4f:e8:2f:2c:c4:b5:10:e0:b3:88:7e:64:24:27:36:
7a:fd:fa:58:54:44:ed:d4:ed:62:94:78:33:a4:69:d3:5e:6a:
66:aa:2f:5a:36:1d:e2:59:99:d6:79:38:2f:aa:e3:a9:27:70:
a1:e2:4e:f2:48:89:e3:fb:95:b1:c2:7d:c2:9e:cc:c3:b6:77:
d6:10:0e:be:2d:c0:ec:5f:45:f7:39:e6:7d:90:38:ac:bb:2e:
57:4b:1f:f2:a4:09:e8:0b:fe:fe:98:98:39:10:66:e2:9f:fb:
a0:7f:7e:10:fc:5a:77:03:74:e9:80:29:6b:b4:4d:ea:12:36:
6e:c9:99:70:51:43:a3:3d:40:93:c8:34:33:50:e7:bb:be:69:
5b:05:3c:c8:2e:95:25:55:ca:5f:ae:3c:a3:76:14:f3:a5:9f:
5c:9f:f0:6a:ed:fb:15:7b:ad:4e:78:e6:57:a3:2e:f4:3f:b8:
da:11:9f:ec:64:d5:9e:14:5e:96:52:7b:78:fc:1c:fd:6b:b8:
8b:cb:b5:22:48:bc:45:a4:84:cc:55:21:b8:93:e2:a2:58:43:
e9:2a:6a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 15:13:27 2026 by rpki-client