Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
File: pZDvI7RWydsg0wdCkysBf8VyTlY.mft (raw, json)
Hash identifier: EyK8M3zlwxrZL5a5mRe2EZdm/Lq5CF6qbdHrK5mmvVw=
Subject key identifier: 3C:1E:7E:F1:93:AA:2C:CE:86:30:15:B1:AD:42:ED:D3:5E:C2:13:F5
Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56
Certificate serial: 019D39AF234EF6E8667E7F8CE6110853BE1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
Manifest number: 1045
Signing time: Sun 29 Mar 2026 13:01:12 +0000
Manifest this update: Sun 29 Mar 2026 13:01:12 +0000
Manifest next update: Mon 30 Mar 2026 13:01:12 +0000
Files and hashes: 1: KbhQ6u1VdqVgoC_w__veaIi-7zs.roa (hash: usnYtgKElxMHtJ3gMNxaW5mRcQvldV2GcoR0WqVjLH0=)
2: pZDvI7RWydsg0wdCkysBf8VyTlY.crl (hash: qG3HMIxGnIgYuT91bzdGAG2vLdnKHmGbSH5+DccTSSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:23:4e:f6:e8:66:7e:7f:8c:e6:11:08:53:be:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56
Validity
Not Before: Mar 29 13:01:12 2026 GMT
Not After : Mar 30 13:01:12 2026 GMT
Subject: CN=3c1e7ef193aa2cce863015b1ad42edd35ec213f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5c:6d:7d:06:d9:f3:13:bf:77:c1:e2:87:9c:
6f:77:85:83:7d:20:18:a3:6e:dc:d7:78:ea:55:bb:
d7:c0:70:00:c7:23:d5:5d:21:dd:8b:a8:3e:fd:16:
dc:8d:fc:02:ab:9b:d4:2c:25:5d:1c:46:a2:4b:78:
97:50:89:af:43:b2:67:0b:b2:30:e5:fd:87:6e:a2:
b7:cf:58:ce:2e:fe:68:10:2b:cc:42:19:cc:57:c9:
29:b4:b2:22:c1:5b:ca:c8:fc:ae:be:f0:93:1b:63:
54:26:1e:0f:30:52:1f:b5:51:53:73:7f:7d:36:86:
e4:92:26:28:92:1e:a7:b8:92:f7:a6:fc:a6:f6:5a:
d8:b8:53:c0:ed:b9:d0:a8:7e:e4:20:93:ca:32:e8:
e2:ef:00:6d:11:72:cc:4f:ac:e5:f3:b0:88:73:68:
6c:03:c3:ae:72:28:ea:e9:61:8c:cd:10:0c:23:13:
12:0d:44:ef:07:28:7d:c2:f8:a8:11:45:86:d8:c5:
ee:3e:1c:c1:ce:de:8f:83:3f:0a:75:12:bb:53:42:
41:3a:7b:1e:12:f5:65:6d:5a:a2:e0:19:e6:aa:ac:
f7:8c:bd:9a:df:ce:b6:6a:aa:e0:c0:f7:9d:71:63:
60:80:3b:e6:15:c9:81:1c:92:c8:73:b7:8c:54:e4:
11:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1E:7E:F1:93:AA:2C:CE:86:30:15:B1:AD:42:ED:D3:5E:C2:13:F5
X509v3 Authority Key Identifier:
keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:bc:b6:a0:8a:93:01:77:f0:0e:28:86:ab:f2:82:26:cb:d5:
c2:54:3d:a8:22:47:c3:a9:c4:04:c6:57:37:75:01:f6:d6:a7:
a5:f9:4b:6a:38:3d:bc:bd:cc:9a:0e:95:c8:00:fb:14:92:c2:
dd:93:91:c2:83:98:03:c5:0c:a8:c5:aa:90:76:07:a9:80:38:
e4:7b:07:9d:50:6e:a7:f5:74:de:1b:49:57:16:49:75:81:ec:
cc:4a:81:c5:1a:35:c2:e3:72:f7:b1:9c:45:8d:e8:a0:52:9d:
fc:92:76:f2:0c:d8:dc:ed:19:63:e6:76:97:5d:df:69:3d:83:
62:7e:2f:7e:3b:e1:fb:d8:3d:4a:2f:f1:92:cb:76:05:e8:2e:
9b:22:33:76:bc:78:97:f1:a9:5f:b5:e0:8e:4b:da:2e:c9:6d:
63:b2:42:06:b8:53:74:a2:ea:b4:6c:5d:17:2d:66:f9:2a:cc:
88:7d:25:11:de:84:35:4b:17:8c:51:38:d2:ad:02:4a:fb:8d:
7f:5a:6e:9a:9d:42:d9:2b:64:b1:01:a3:46:7a:35:58:cc:2b:
bd:61:93:de:3d:3f:fb:f1:0b:81:e7:a8:02:26:bc:9c:0c:f5:
71:41:d9:fc:14:b7:ba:0a:f8:e0:eb:2d:84:2a:2b:d8:54:c5:
c0:9a:86:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:36:47 2026 by rpki-client