Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: jhmPF1AaefGP0ZHUF2oRo55p14OI1Au0ynYxLNyR1EI=
Subject key identifier: DF:63:41:56:EE:F0:2A:4F:36:53:6B:3D:92:DB:D0:89:AB:39:1B:01
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 019CE4B5E2D06CA507533B674CC8B4E7ED32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0F4E
Signing time: Fri 13 Mar 2026 01:00:51 +0000
Manifest this update: Fri 13 Mar 2026 01:00:51 +0000
Manifest next update: Sat 14 Mar 2026 01:00:51 +0000
Files and hashes: 1: Nh6TGiZWo0EOxhMqHLoTd_RYjgw.roa (hash: jvTmWCCcSLAGtI/9GquGJ7vRIPsivGfTGeyKsvphVGk=)
2: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: Kwnn8IjV1V4vYVyDuKfdthcWZ28fZIAoQVZ8UH8wOBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 01:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:b5:e2:d0:6c:a5:07:53:3b:67:4c:c8:b4:e7:ed:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Mar 13 01:00:51 2026 GMT
Not After : Mar 14 01:00:51 2026 GMT
Subject: CN=df634156eef02a4f36536b3d92dbd089ab391b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ee:49:ac:b6:6a:0e:92:60:d4:59:4e:14:7e:
4f:26:9e:9d:21:62:fd:90:86:9f:5d:7b:8a:0a:02:
b1:8f:88:84:be:b3:30:73:69:c8:87:08:c5:b7:08:
2a:a3:e5:fe:c6:fa:89:bf:18:26:08:1c:86:95:81:
4b:b9:33:95:13:cf:f7:0e:87:b5:08:bd:98:f8:22:
e2:0f:a7:02:1e:45:45:56:3c:c1:37:5c:2f:0d:8d:
8a:8d:90:9d:c0:d7:cb:45:f9:3f:7d:f7:00:f2:1b:
7a:4c:23:5b:fe:be:22:13:02:5e:34:f3:d6:66:00:
68:41:23:5e:2d:53:6d:ed:34:28:b3:9a:2f:b9:65:
e7:93:19:06:d8:bf:86:6c:1b:41:35:4a:11:cf:2c:
63:6d:c5:48:c9:98:16:fa:08:a9:d4:0e:0f:ee:2a:
08:2f:a3:e6:1e:59:9d:b2:b2:09:93:94:af:ad:2e:
0a:fd:aa:7f:5b:01:4f:59:b3:ed:e2:4f:45:21:13:
79:29:bb:64:e2:7d:ae:66:4b:e7:da:3c:dc:f0:a2:
1c:6a:58:9c:95:11:a2:5b:72:99:95:a8:b6:68:7f:
8c:d8:c0:30:2a:c0:77:f6:51:9d:dd:c7:e6:ad:b6:
7c:64:e2:1f:38:c6:de:c8:53:0a:41:bc:07:0e:dc:
fb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:63:41:56:EE:F0:2A:4F:36:53:6B:3D:92:DB:D0:89:AB:39:1B:01
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:94:6a:ab:99:84:90:09:b5:54:68:88:c9:a3:ee:7e:6c:6a:
fd:ce:da:97:9c:97:f5:ec:3b:7d:0f:fc:3a:f6:1a:09:9a:a4:
f0:9a:26:c7:d6:1c:25:b5:66:57:16:8f:af:41:23:ea:15:9e:
10:73:e6:9b:e1:d7:81:9a:f2:5f:27:1d:d7:24:20:e2:7d:67:
45:b9:ca:3d:9e:66:53:e5:ea:b1:7e:cf:42:e3:cb:96:a3:b3:
1e:9e:76:1c:6a:15:58:e1:1e:44:ed:ee:98:62:b5:34:f9:88:
f4:46:72:0a:72:de:1c:3d:89:4d:c7:f7:02:df:b1:9d:b1:9c:
b3:fa:29:6a:06:2b:ec:f4:c3:a0:f8:3d:04:d9:42:d4:3b:3c:
9e:02:9f:1d:72:f3:f4:d6:47:95:ad:cc:4b:52:ff:ac:4d:65:
9c:ed:ce:79:d1:a0:07:02:ad:7b:02:42:24:c3:8c:a6:f8:2f:
08:a5:40:35:d7:63:67:38:cf:96:0e:71:0c:29:c0:9b:67:82:
c3:b3:49:58:4f:81:04:9e:3e:70:e5:8e:09:a5:81:c8:51:8b:
2b:db:d2:0d:3e:7b:20:a7:df:0c:a5:1e:a4:f2:c7:a3:7b:73:
2d:7e:9f:41:14:21:9f:49:25:ea:6b:00:d4:b5:a4:8b:cc:a6:
0d:db:bc:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 12:01:27 2026 by rpki-client