Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
File: zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft (raw, json)
Hash identifier: J3HZZe5e4b7gvskJTbihFwMZuYI2gxXuSqfkg0m+uAI=
Subject key identifier: 45:3C:8D:DC:2E:D7:91:93:A2:26:9F:66:4D:EE:22:50:19:E7:5D:F4
Authority key identifier: CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E
Certificate issuer: /CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e
Certificate serial: 019D3B2EFFB166AB9BE62CA7A8FA2D4BE58A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
Manifest number: 0651
Signing time: Sun 29 Mar 2026 20:00:28 +0000
Manifest this update: Sun 29 Mar 2026 20:00:28 +0000
Manifest next update: Mon 30 Mar 2026 20:00:28 +0000
Files and hashes: 1: uqno00iVqXEbyw4Jce9I4NCSd6U.roa (hash: LOvolmVlOGfS5/Lu0OZEEESsBkxydv7fTijwns2OR4M=)
2: zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl (hash: 4Rm3+4v6sw5NNJr+QHLFv6Nkzt/X63DrngxhdVEFuiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3b:2e:ff:b1:66:ab:9b:e6:2c:a7:a8:fa:2d:4b:e5:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e
Validity
Not Before: Mar 29 20:00:28 2026 GMT
Not After : Mar 30 20:00:28 2026 GMT
Subject: CN=453c8ddc2ed79193a2269f664dee225019e75df4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:78:0b:26:ac:ed:1c:97:3b:89:44:7c:6a:96:
84:4e:12:77:bb:fd:70:88:8a:8a:67:2c:3f:4a:3c:
1d:e2:e9:11:46:55:73:64:b3:8f:f8:07:fd:90:2a:
60:98:1a:2d:98:f1:94:b2:02:89:37:51:9c:ba:8d:
02:4e:e6:01:13:2a:3f:ad:05:52:14:b9:88:e3:99:
f7:85:08:e5:b6:c7:23:e9:26:d6:f3:00:83:b5:17:
a7:c4:4b:0c:42:77:b7:60:f9:59:a1:21:9a:99:e1:
fe:7e:f7:75:9e:70:57:02:08:a3:86:2f:4f:bd:98:
9b:7c:5d:fa:a4:bf:81:68:28:87:26:dd:1c:d1:cc:
f1:fb:9d:ad:d9:42:b5:4e:00:48:3c:8b:60:80:0d:
97:9b:c3:e2:be:2a:05:82:e3:f4:0e:13:8f:a1:1e:
eb:07:76:bc:78:1b:14:f5:54:01:c5:58:24:62:19:
14:49:b9:f7:86:e5:af:2d:e1:f2:3e:f4:6c:ef:f0:
6f:f3:7c:da:c8:2c:a6:9a:7f:0e:ed:b2:cd:bb:2d:
53:98:59:39:2c:cf:e4:dd:20:3b:52:79:fa:6f:d9:
a4:49:34:d6:28:8a:e3:43:6c:3e:55:39:ae:2b:63:
eb:4d:eb:20:57:3f:5c:77:63:13:f2:e3:97:2a:8b:
50:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3C:8D:DC:2E:D7:91:93:A2:26:9F:66:4D:EE:22:50:19:E7:5D:F4
X509v3 Authority Key Identifier:
keyid:CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:d4:e6:e0:a5:0d:ff:72:49:77:57:c8:b9:4d:e1:03:6f:6e:
b4:19:67:76:95:60:6f:48:14:96:d5:ef:4c:03:35:39:bf:f6:
48:bc:2b:7d:3d:9d:1a:60:55:94:30:a5:86:c0:10:e9:20:c6:
eb:cd:da:73:a6:b4:03:02:88:7d:a1:d2:b7:b6:c3:6c:ce:d4:
f0:f3:e8:51:f1:f1:f3:ff:29:74:56:03:7b:51:90:1f:2a:0f:
d7:c8:20:e6:5a:c6:7a:88:da:61:ef:cc:c1:6e:a2:2c:fb:84:
cb:a6:b5:45:38:3f:cb:9c:78:75:df:4e:8f:c5:5c:7d:ae:eb:
e6:df:2d:0a:ee:45:03:9e:75:99:7e:62:39:1e:88:e5:94:82:
13:77:4e:2e:0f:e2:48:34:80:a9:88:45:89:5d:58:ea:c4:03:
c4:57:6a:fe:eb:9c:1e:40:85:6c:24:67:9b:72:c7:36:98:dc:
a4:d5:4b:57:f0:97:48:99:ce:fe:30:37:8b:ec:d8:95:0b:d9:
7d:de:6e:8d:63:f0:f5:99:52:b2:08:86:ce:94:ad:de:a8:48:
94:36:27:82:68:f8:23:20:a7:b0:ae:d1:11:08:59:d5:01:69:
ff:e0:a9:15:fe:a4:95:47:2c:11:2a:73:96:9b:a7:7a:d8:64:
56:42:12:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:32:23 2026 by rpki-client