Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: TPCflqim6s6cwWZlr23aW2Wmr1YXQbDqm0HspTyCZKE=
Subject key identifier: 40:3B:A5:D7:E0:00:97:17:E7:8A:38:55:E6:D1:A4:09:1A:1D:6E:98
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 019EB80F40CD122D9B8D28070A1AB7B50B9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 1040
Signing time: Thu 11 Jun 2026 19:01:07 +0000
Manifest this update: Thu 11 Jun 2026 19:01:07 +0000
Manifest next update: Fri 12 Jun 2026 19:01:07 +0000
Files and hashes: 1: Nh6TGiZWo0EOxhMqHLoTd_RYjgw.roa (hash: jvTmWCCcSLAGtI/9GquGJ7vRIPsivGfTGeyKsvphVGk=)
2: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: bn14IHmlt6gTToRZZsvA8RZIUN1nvAdZR7Fi10f9DQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0f:40:cd:12:2d:9b:8d:28:07:0a:1a:b7:b5:0b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Jun 11 19:01:07 2026 GMT
Not After : Jun 12 19:01:07 2026 GMT
Subject: CN=403ba5d7e0009717e78a3855e6d1a4091a1d6e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:88:e2:e7:ad:3f:7d:2a:04:68:63:e1:75:f6:
f7:ff:f8:90:30:d0:be:30:f8:2f:1f:20:0f:c1:6b:
06:ba:1d:ec:33:62:8c:5b:5a:3b:fa:f7:9f:c8:ca:
df:c3:8f:bc:1e:c5:f6:e9:ad:6c:55:89:89:99:4f:
46:91:5a:72:72:94:99:2a:03:09:36:98:c7:c7:3e:
34:d5:65:41:e4:34:b3:5d:bc:61:89:a8:68:f0:8e:
c8:1e:9c:64:83:a0:5c:f6:6e:e6:76:63:ab:9c:b1:
37:e3:8a:5c:2f:34:8b:f1:cb:94:0f:21:56:42:7d:
0d:b2:44:0a:54:c3:6d:98:30:a1:d0:e2:9b:4d:c4:
e0:bb:10:ff:e2:69:f0:61:9c:cb:dc:9f:58:a9:3e:
08:bf:e5:be:fc:31:df:fc:59:a5:09:92:df:0a:d7:
42:d6:b1:20:61:91:77:3d:e2:34:41:72:b8:c0:62:
30:e6:71:bf:b8:c8:fa:9a:ec:15:3a:cf:d1:c4:bf:
ae:12:f4:b4:c3:1a:d3:62:62:7d:cc:d3:76:88:e6:
eb:e9:e4:fa:e9:22:68:b4:11:aa:b7:21:49:df:32:
99:1e:fe:28:e3:76:09:91:48:9e:94:98:30:a7:95:
f9:94:2b:17:1a:d3:94:4a:9e:08:47:f7:18:37:26:
f6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:3B:A5:D7:E0:00:97:17:E7:8A:38:55:E6:D1:A4:09:1A:1D:6E:98
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:19:fd:e0:87:f3:d3:81:29:87:9b:87:35:b2:c9:85:10:6e:
0c:4f:70:b8:09:83:48:c7:5b:83:0a:d8:11:48:fb:d2:85:c8:
11:ef:9a:ab:4f:6b:13:4a:89:a5:c8:e3:b8:d5:9a:48:8a:a9:
33:06:6f:9f:42:0f:22:82:a2:15:f6:f6:ea:09:e7:84:e0:3e:
21:f9:44:a6:02:22:6e:8a:a7:86:df:ac:db:14:e7:0d:79:06:
45:7a:ce:96:7c:da:16:d1:b4:40:6b:6d:c7:7b:83:39:2e:a5:
cf:16:4c:5a:21:aa:fd:91:58:88:52:9e:d6:2d:6d:e4:09:77:
1a:16:70:37:03:53:82:64:3e:99:05:61:9d:01:e4:d5:f7:0c:
68:bb:5c:7d:65:26:da:43:36:16:3d:5d:04:f1:3f:16:77:48:
66:c2:d1:4f:71:6f:7f:e7:e1:ca:66:b0:40:28:ec:c7:e0:8f:
af:49:cd:06:df:19:97:7e:ef:28:a7:7a:68:93:40:d8:7f:e2:
d8:eb:f1:e4:91:d9:a1:b2:9d:97:04:24:48:6f:ef:e2:0e:01:
bf:58:a8:56:10:14:6b:f3:a1:f0:72:a0:57:cc:27:33:67:05:
2c:29:73:65:dd:3f:9e:f5:de:16:42:b1:cc:15:98:0c:ed:a8:
a6:18:ce:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:53:42 2026 by rpki-client