Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json)
Hash identifier: x+UWXlOMHpWEGN5Fh4I+sb5OSoMDIrS2AW/iRxSzPY4=
Subject key identifier: A0:BE:2D:CE:05:8B:FF:63:F1:DB:8C:DD:95:B9:4D:2F:B4:0F:C1:1C
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 019DD019D57755F4E772D3B6716E4A058E69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
Manifest number: 0FC2
Signing time: Mon 27 Apr 2026 18:00:47 +0000
Manifest this update: Mon 27 Apr 2026 18:00:47 +0000
Manifest next update: Tue 28 Apr 2026 18:00:47 +0000
Files and hashes: 1: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: cDHvfBKJcm48Z8SmZ3i5oR+lzRCgE9CTVBo2XOQEGsM=)
2: kO3ikc55etvofjUz54lkxBw2Zts.roa (hash: FQtm/UjIvg0izBKVwcfTdDDZlcQWbE25eid7tWcMESM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:19:d5:77:55:f4:e7:72:d3:b6:71:6e:4a:05:8e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Apr 27 18:00:47 2026 GMT
Not After : Apr 28 18:00:47 2026 GMT
Subject: CN=a0be2dce058bff63f1db8cdd95b94d2fb40fc11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b4:25:df:d9:5d:e9:ad:3b:1c:89:bc:14:e1:
cf:aa:23:13:8e:e1:2e:8f:ab:75:e8:16:cb:4e:9f:
5b:38:1a:31:e4:a5:74:70:56:f2:ac:83:6b:48:d3:
cc:35:cc:97:bb:38:08:9a:46:3c:58:b6:b0:fe:22:
04:0c:bb:54:b3:91:cb:7f:63:34:81:6f:56:44:d1:
9a:41:e8:05:e5:cc:c3:df:36:11:f2:da:dd:7f:5e:
af:ad:2b:fd:2d:02:cf:22:c4:95:e4:50:c1:80:84:
06:44:21:49:4e:c5:e3:f0:f1:f3:e4:dc:68:c1:e2:
86:0e:ca:56:e2:65:a9:83:7e:54:e8:09:12:c3:de:
13:a0:72:4c:99:42:0f:2d:4b:da:ed:95:66:59:5d:
3a:60:4a:16:e4:44:48:3a:24:25:cd:7b:61:7d:74:
56:9e:1d:ed:a9:57:84:13:b9:ed:0b:47:2c:ad:41:
4d:57:c3:75:89:dc:58:87:e7:2a:89:ec:3c:49:7b:
43:50:8a:c5:02:70:c0:04:b8:c7:40:16:29:a4:a5:
98:db:53:05:c7:d6:de:4a:4e:77:4f:7a:c5:ce:d7:
bb:3d:82:0d:28:1c:d3:b4:7b:e5:46:9e:7b:10:16:
bc:4a:17:57:3b:f0:48:40:23:52:4b:ea:8c:09:d4:
af:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:BE:2D:CE:05:8B:FF:63:F1:DB:8C:DD:95:B9:4D:2F:B4:0F:C1:1C
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:0f:6b:90:ba:a4:1f:35:d2:9f:97:1a:32:0f:23:23:56:5c:
4c:81:78:b9:b8:2a:c9:ad:02:57:6d:f7:d8:e2:76:f8:3b:2d:
a6:07:e3:e5:5e:89:49:0a:c7:b3:8c:44:f8:55:0a:ce:a7:58:
4d:c8:1e:4f:19:22:6f:16:9e:38:46:70:ee:e6:dc:90:99:d0:
34:88:f0:b1:63:93:2f:69:9b:27:34:07:08:d4:2e:a6:f0:94:
99:3f:48:05:1d:d8:c9:37:87:9e:6e:67:95:ac:ed:69:fc:0d:
7d:b7:d8:4e:b9:71:91:e6:ce:3f:29:ed:1e:34:3a:81:95:de:
8d:d5:54:b8:f8:f8:7e:53:1f:ce:9e:15:ff:ad:3b:63:df:35:
6d:68:a9:f0:9c:af:f5:d0:ad:e9:cf:fd:f7:74:dd:cc:62:8d:
d7:fc:a7:b5:cb:06:62:12:33:f2:13:72:c2:ec:ec:90:57:2d:
16:60:a5:2e:41:cd:a3:46:ea:55:70:41:71:b7:97:63:9e:b7:
b2:80:b0:29:09:a8:a4:0b:60:21:76:0a:35:4a:d7:18:d0:24:
90:57:c2:3f:d5:04:8a:20:24:43:7e:d4:c0:13:bd:e4:5f:67:
31:eb:01:cf:2a:ff:8b:80:8c:b4:f1:30:d8:5c:10:46:12:54:
d3:70:56:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 22:31:09 2026 by rpki-client