Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
File: ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft (raw, json)
Hash identifier: jzRdY7bE29kA2yO8m3FEUAywaiBpAFRpo3TvtVwQEGU=
Subject key identifier: D1:AB:B8:AF:3B:65:C9:CD:0D:33:4B:F7:8E:E0:AC:4F:BB:CB:41:55
Authority key identifier: 66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
Certificate issuer: /CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Certificate serial: 019CE1EB9EC668D4911989302AF8156C63B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
Manifest number: 0EB0
Signing time: Thu 12 Mar 2026 12:00:41 +0000
Manifest this update: Thu 12 Mar 2026 12:00:41 +0000
Manifest next update: Fri 13 Mar 2026 12:00:41 +0000
Files and hashes: 1: ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl (hash: 8SqP6yn8AVEyvQm+HQK3+1JQDHgah0E3bELz+azEG8M=)
2: lL_8oe9yDIiLRfrdt08QXqwSDgI.roa (hash: mGmiDsommMvkvURrhIoo2stvYxOoFvSbhP9bGr4bphU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 12:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e1:eb:9e:c6:68:d4:91:19:89:30:2a:f8:15:6c:63:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c
Validity
Not Before: Mar 12 12:00:41 2026 GMT
Not After : Mar 13 12:00:41 2026 GMT
Subject: CN=d1abb8af3b65c9cd0d334bf78ee0ac4fbbcb4155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7e:75:b5:86:b5:62:99:59:3d:32:a9:56:e3:
5d:2a:57:a0:55:9d:4b:0d:e6:43:26:63:c4:05:30:
f7:17:b1:b8:95:3b:a5:48:fd:fe:fe:12:be:eb:fb:
85:74:d0:85:36:3f:6e:fb:9f:65:2d:73:53:da:04:
ce:7b:d5:b4:dd:e7:41:d2:ed:f4:cd:70:5f:7c:33:
bf:27:bd:6c:88:f1:d6:fc:db:38:55:89:5f:c9:04:
a0:0c:fe:05:47:75:01:43:4d:2d:52:b1:4e:22:26:
3e:c0:1a:92:0f:72:f0:ae:94:ff:ce:f1:4e:90:f8:
ec:ae:42:a3:4b:d6:63:1b:eb:fa:78:97:31:f6:ba:
2b:68:84:9f:ec:62:1b:94:70:c4:00:df:8d:fb:42:
9d:6e:20:45:b8:f5:7a:48:e1:64:80:b3:55:07:1d:
49:39:11:a2:10:f2:86:7c:a1:c7:e9:7d:e9:55:88:
53:d1:d8:d7:50:eb:49:32:b8:91:da:62:fb:fb:76:
ff:2e:bd:75:d9:1e:44:79:6c:a5:61:7b:73:f7:ad:
1f:83:2e:18:63:30:93:42:70:2a:f0:43:5b:4d:14:
28:ac:d7:02:ae:21:20:7f:cd:35:0d:17:59:6d:ca:
2f:36:3d:4f:5c:38:b8:a1:95:82:16:92:74:07:07:
90:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AB:B8:AF:3B:65:C9:CD:0D:33:4B:F7:8E:E0:AC:4F:BB:CB:41:55
X509v3 Authority Key Identifier:
keyid:66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e6:86:60:e9:f2:27:5b:90:ea:11:63:da:db:24:d3:3c:ad:
b3:bb:c1:bb:e5:f2:18:ac:5c:7d:fa:38:3f:53:87:ae:b7:fb:
8c:61:41:9f:f2:aa:c4:fe:7a:77:04:9d:28:f8:7d:71:3c:53:
d3:3b:a9:e2:24:73:09:f7:61:44:92:af:51:58:c9:63:c2:53:
70:47:dd:c1:40:e0:2c:a6:72:f9:10:37:af:25:a9:eb:8f:7c:
88:35:9d:12:2d:b1:99:1f:88:71:f1:e5:51:74:c8:85:6c:65:
f3:13:75:b0:0d:7c:5c:6d:10:b1:fc:c7:2b:bb:1b:b7:ca:1b:
ff:79:85:95:ff:4f:71:2f:b3:15:86:56:19:af:a1:e3:ad:fd:
52:55:25:a0:77:2d:5c:08:62:ee:2d:a6:25:cc:5b:5c:4e:df:
b1:5a:6f:19:d5:82:5d:a8:99:bb:4a:e1:e2:9f:80:47:80:5b:
85:72:45:0d:2a:3e:32:fe:c2:a1:87:5f:e6:bf:8d:31:e1:0c:
d9:5a:48:60:b7:6f:66:1e:3b:38:81:15:03:17:32:89:66:37:
ca:6f:a3:41:36:c0:b1:38:e6:3f:be:e5:52:d2:3a:e1:c5:3b:
c2:19:dd:b0:2e:ab:cc:b9:24:49:71:1c:a2:5d:66:1d:83:6e:
64:3c:2e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 17:09:53 2026 by rpki-client