Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
File: ZLMdzWu1MIApxCcyMFFPcmsbhro.mft (raw, json)
Hash identifier: 0VXtOx974UPrHXPVTCgu4oNsMF5s11oxE/vlgMuwAb4=
Subject key identifier: 7A:B8:AB:A9:0D:C9:1E:AB:C9:2F:61:66:15:6F:DE:EC:B4:E0:CD:91
Authority key identifier: 64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
Certificate issuer: /CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Certificate serial: 019D37524155F76EFC89507E2DB5D255036A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
Manifest number: 17A5
Signing time: Sun 29 Mar 2026 02:00:30 +0000
Manifest this update: Sun 29 Mar 2026 02:00:30 +0000
Manifest next update: Mon 30 Mar 2026 02:00:30 +0000
Files and hashes: 1: ZLMdzWu1MIApxCcyMFFPcmsbhro.crl (hash: gJDUSBcZliL1swpHI9JVrJrF4kKbN7u8YMrmy/sBSuM=)
2: kdynGbVCfrX7taXPDAQYXxgdJOc.roa (hash: LcVr7TXvsztqYmXz4cnlZ4MErzCnE6APP7PbSjuF4fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:41:55:f7:6e:fc:89:50:7e:2d:b5:d2:55:03:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64b31dcd6bb5308029c4273230514f726b1b86ba
Validity
Not Before: Mar 29 02:00:30 2026 GMT
Not After : Mar 30 02:00:30 2026 GMT
Subject: CN=7ab8aba90dc91eabc92f6166156fdeecb4e0cd91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:2f:01:11:e5:64:fe:88:df:97:b3:4e:92:19:
6b:f3:6b:36:36:0f:a5:3e:59:46:72:17:86:c2:62:
1c:31:85:38:59:e5:7e:0f:a9:ca:63:f7:2b:75:5b:
2d:90:01:e5:36:00:1c:69:85:e6:3f:8b:4f:46:c4:
7d:37:36:67:ea:5e:e3:33:7c:82:f2:f3:46:e8:78:
23:92:de:1d:9a:d1:85:fd:5c:20:ee:47:77:79:62:
c3:e7:0c:a1:a1:9f:07:68:fc:58:4f:30:c6:bb:b0:
c5:2d:97:fa:71:31:31:c3:dc:18:23:57:dc:1c:19:
da:eb:4b:1a:ae:90:43:03:49:4f:3b:ef:8b:07:0f:
1b:69:f9:47:dd:7d:7e:c0:26:b4:88:5b:74:7d:c5:
63:b0:04:b7:a5:55:23:08:32:81:be:b9:d9:e6:67:
6f:d8:a5:bd:0c:38:74:97:29:89:7a:ce:e3:93:73:
45:8d:ee:2c:57:85:f5:69:08:09:f8:c2:e0:04:4c:
bd:71:cf:df:e2:6e:9b:25:43:7b:26:cf:cb:b4:ca:
8d:b1:4a:b1:91:90:8d:cd:34:24:b6:9b:96:06:d7:
c1:5a:b3:d6:ee:a7:a8:df:cf:df:fd:04:2e:5b:13:
bb:b5:10:05:85:89:b2:4f:7f:fe:98:39:ec:49:a1:
43:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B8:AB:A9:0D:C9:1E:AB:C9:2F:61:66:15:6F:DE:EC:B4:E0:CD:91
X509v3 Authority Key Identifier:
keyid:64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
de:6b:49:1c:77:db:c1:38:39:82:5b:4d:51:83:8e:d3:b4:01:
11:24:14:9b:6d:68:46:f9:2e:91:94:1b:d0:34:e1:43:45:9b:
c0:62:5d:eb:3f:de:f3:91:3f:23:0e:9c:1e:95:e4:3f:62:a7:
da:a4:6d:1e:7c:e5:10:fe:dc:53:88:e1:db:dd:76:8a:aa:ff:
25:53:d6:db:9d:2c:f2:55:76:ac:35:bf:08:df:e3:c5:71:28:
7d:da:ac:1e:89:c3:d6:50:4c:8e:1a:4a:c6:33:4f:3b:9c:d9:
b7:c6:f7:3d:80:38:76:5f:36:43:0e:8c:16:b2:3a:08:d1:4b:
0d:33:6b:39:82:63:e2:82:c3:ca:a1:95:3c:61:5d:09:7e:43:
6e:f8:26:69:e2:bd:2c:2f:53:bf:19:08:23:2a:1c:44:d8:37:
61:05:ab:7a:a7:2d:0b:a3:d1:f6:bd:31:fb:cd:2e:ba:20:e3:
28:09:c2:09:f3:ba:8a:32:1e:c7:2e:7b:c9:5c:71:6b:92:34:
23:77:17:cd:a0:3d:f8:98:5f:9c:2f:33:40:60:43:56:f1:c5:
12:b1:d4:f2:39:74:bc:75:1c:58:17:ba:2e:59:7f:b0:f5:7f:
3a:3a:7d:b5:c8:5c:04:be:cd:4b:33:64:98:a5:d5:0d:77:a4:
26:2d:be:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:37 2026 by rpki-client