Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
File: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft (raw, json)
Hash identifier: WeZ1RojYOru003c1MQfj38EwgUhOCBqaXj+qOEasNDA=
Subject key identifier: 1D:63:11:37:B1:37:F1:FC:78:51:73:46:DD:D5:2B:94:FA:74:BD:37
Authority key identifier: CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
Certificate issuer: /CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Certificate serial: 019D38D32A47F73BA904DB58B516701A2DDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
Manifest number: 128B
Signing time: Sun 29 Mar 2026 09:00:56 +0000
Manifest this update: Sun 29 Mar 2026 09:00:56 +0000
Manifest next update: Mon 30 Mar 2026 09:00:56 +0000
Files and hashes: 1: 0fMGliU2DY90o-COL7gfsd6xbVw.roa (hash: pyD2slLDpEMFdPN9pfMsq689iSsZ/8LJ4vMycIuRMpg=)
2: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl (hash: JEn1P5SM9bB8ZzSBqtcsdfrxwtQXpVye8hqI/vh0HWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:2a:47:f7:3b:a9:04:db:58:b5:16:70:1a:2d:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Validity
Not Before: Mar 29 09:00:56 2026 GMT
Not After : Mar 30 09:00:56 2026 GMT
Subject: CN=1d631137b137f1fc78517346ddd52b94fa74bd37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6b:b8:a0:37:e8:ea:81:07:18:6d:95:c8:1b:
33:f8:cf:77:de:12:93:76:ad:71:aa:08:f3:f8:ba:
39:98:b7:60:86:c1:3d:d5:1c:32:24:70:f9:bb:b8:
f1:dc:34:81:e2:58:9d:78:b3:95:75:5e:86:ce:d7:
e9:11:4f:8c:97:c8:7a:a7:83:c2:5a:80:ee:55:33:
8e:c1:9a:f2:25:a7:37:07:32:72:ce:8f:05:48:e4:
47:41:b1:e2:91:b7:53:fa:8a:45:5f:1e:7d:4b:c9:
77:19:85:d7:2e:6d:d1:d9:b0:3a:45:e1:7f:90:a8:
f2:75:3d:cf:23:f0:89:d2:25:0d:c9:89:53:07:48:
41:78:87:3c:1b:61:0a:d8:89:e8:a5:f1:4e:bf:5e:
c0:e3:bb:35:2a:0f:89:fa:07:92:52:f1:88:02:89:
43:c7:9b:e3:69:11:5f:38:d9:4a:64:1e:cf:6d:12:
f9:de:b3:34:22:71:07:5d:fc:90:30:ed:cc:dc:fa:
e9:ee:01:a3:41:15:53:36:99:92:41:9e:e6:82:5d:
24:39:96:a1:0f:88:0b:0c:4a:8d:27:4a:a7:77:fd:
ef:24:8c:0c:c3:18:0d:69:f8:29:51:44:db:90:f0:
00:17:ed:d6:10:31:cf:d5:ed:30:4a:a8:69:35:cb:
07:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:63:11:37:B1:37:F1:FC:78:51:73:46:DD:D5:2B:94:FA:74:BD:37
X509v3 Authority Key Identifier:
keyid:CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:8f:94:f2:8b:3c:62:df:1b:06:b7:be:4f:42:70:85:f6:15:
25:ca:fe:75:28:25:b4:c7:86:6a:a9:8f:c9:ff:27:93:19:dd:
e4:10:b1:81:98:fd:10:3a:0d:de:4b:4b:f8:11:06:71:e8:a1:
69:8e:0a:5d:cc:a0:05:5d:31:04:79:d8:45:47:e8:8f:92:47:
b5:0e:17:8d:bf:0b:21:db:f6:bc:e5:d6:81:7b:31:fe:9d:4e:
73:be:93:c7:99:5b:ed:99:a7:41:8e:d6:04:27:6e:6c:e2:96:
16:3a:62:02:55:8f:ba:29:51:bb:4e:64:0e:62:00:5c:3d:db:
0f:46:da:21:47:ae:79:06:a7:27:7e:8a:22:53:26:00:f1:96:
ed:07:4d:83:c7:60:49:09:06:29:cb:47:53:a8:fd:50:cc:67:
25:4c:e2:61:ac:8e:df:ec:7e:5a:31:be:f5:11:ff:d9:5b:36:
22:d2:d1:d6:9a:0e:05:b0:00:31:ce:54:18:fe:6a:b2:7a:75:
4c:9f:25:45:50:c6:df:7a:bc:17:2b:46:a3:57:8a:7d:e1:3e:
93:5b:a7:d8:92:b9:7f:99:9c:34:58:1d:2c:3b:08:3a:b5:9d:
1b:26:bc:04:60:46:f0:39:a6:95:2f:89:19:c7:0d:fc:fb:e0:
c4:82:c1:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040ypH9zupBNtYtRZwGi3cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlMWY1OWFlMzQ1NDgxMzI4OTJmY2M4OWIxNTk1ZjliMDM2
MDE5OGQwHhcNMjYwMzI5MDkwMDU2WhcNMjYwMzMwMDkwMDU2WjAzMTEwLwYDVQQD
EygxZDYzMTEzN2IxMzdmMWZjNzg1MTczNDZkZGQ1MmI5NGZhNzRiZDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGu4oDfo6oEHGG2VyBsz+M933hKT
dq1xqgjz+Lo5mLdghsE91RwyJHD5u7jx3DSB4lideLOVdV6GztfpEU+Ml8h6p4PC
WoDuVTOOwZryJac3BzJyzo8FSORHQbHikbdT+opFXx59S8l3GYXXLm3R2bA6ReF/
kKjydT3PI/CJ0iUNyYlTB0hBeIc8G2EK2InopfFOv17A47s1Kg+J+geSUvGIAolD
x5vjaRFfONlKZB7PbRL53rM0InEHXfyQMO3M3Prp7gGjQRVTNpmSQZ7mgl0kOZah
D4gLDEqNJ0qnd/3vJIwMwxgNafgpUUTbkPAAF+3WEDHP1e0wSqhpNcsHDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB1jETexN/H8eFFzRt3VK5T6dL03MB8GA1UdIwQY
MBaAFM4fWa40VIEyiS/MibFZX5sDYBmNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemg5WnJqUlVnVEtKTDh5SnNWbGZtd05nR1kwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni80ZmEyZDgtZDcxZC00OWIxLThlYjAt
YTM1ODlkYTE2Yzg1LzEvemg5WnJqUlVnVEtKTDh5SnNWbGZtd05nR1kwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni80ZmEyZDgtZDcxZC00OWIxLThlYjAtYTM1ODlkYTE2Yzg1
LzEvemg5WnJqUlVnVEtKTDh5SnNWbGZtd05nR1kwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArI+U8os8
Yt8bBre+T0JwhfYVJcr+dSgltMeGaqmPyf8nkxnd5BCxgZj9EDoN3ktL+BEGceih
aY4KXcygBV0xBHnYRUfoj5JHtQ4Xjb8LIdv2vOXWgXsx/p1Oc76Tx5lb7ZmnQY7W
BCdubOKWFjpiAlWPuilRu05kDmIAXD3bD0baIUeueQanJ36KIlMmAPGW7QdNg8dg
SQkGKctHU6j9UMxnJUziYayO3+x+WjG+9RH/2Vs2ItLR1poOBbAAMc5UGP5qsnp1
TJ8lRVDG33q8FytGo1eKfeE+k1un2JK5f5mcNFgdLDsIOrWdGya8BGBG8DmmlS+J
GccN/PvgxILB0A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:37 2026 by rpki-client