Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
File: zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft (raw, json)
Hash identifier: QaHS3nXqCQQGMMGHgb6svErZhrlz28UhFiLoKd8DG3A=
Subject key identifier: 98:51:1E:5E:E3:EB:6C:79:8C:8B:83:6A:38:F8:24:A6:00:0F:28:A2
Authority key identifier: CC:AC:37:2F:7A:9B:81:71:DC:BF:C1:16:0C:AA:22:C8:FD:C6:8B:7B
Certificate issuer: /CN=ccac372f7a9b8171dcbfc1160caa22c8fdc68b7b
Certificate serial: 019CE1EBF47106CCE81BE7DC305113CEF44E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
Manifest number: 0FF5
Signing time: Thu 12 Mar 2026 12:01:02 +0000
Manifest this update: Thu 12 Mar 2026 12:01:02 +0000
Manifest next update: Fri 13 Mar 2026 12:01:02 +0000
Files and hashes: 1: fYjLJ_S4xQF5EQ8dCDUqnVyl_8A.asa (hash: 705A5S9P8d7FMvDAtpubZo7+psLytS4YtJCLo8gRXkE=)
2: zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl (hash: 0HbD1CcI0TBS6C6N8iMIuY6O2ASUl3taCwmyAXvLOjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 12:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e1:eb:f4:71:06:cc:e8:1b:e7:dc:30:51:13:ce:f4:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccac372f7a9b8171dcbfc1160caa22c8fdc68b7b
Validity
Not Before: Mar 12 12:01:02 2026 GMT
Not After : Mar 13 12:01:02 2026 GMT
Subject: CN=98511e5ee3eb6c798c8b836a38f824a6000f28a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7e:11:4f:46:f7:9d:34:5a:35:06:2a:e5:f0:
15:e5:46:b6:6e:6c:89:c5:f6:de:94:6e:38:2a:70:
ef:09:6e:ea:ac:06:02:9d:bc:9d:ac:87:95:87:ba:
32:75:53:ee:d8:53:ad:e1:c6:79:21:c0:50:c9:cf:
51:43:70:fc:1a:15:6b:b3:64:36:44:62:17:96:9a:
d8:79:87:5d:f3:c5:39:fb:cd:27:f5:38:6e:52:fd:
ed:75:28:72:18:5c:16:22:26:e8:8d:c8:52:a1:46:
ca:be:22:17:58:31:63:c7:5a:42:6d:43:05:10:8f:
d7:d4:22:32:67:55:3d:19:f2:01:f7:8a:cc:12:34:
ee:08:fb:4b:60:ff:9b:1e:f0:c2:d2:5e:ee:db:d8:
33:c1:de:80:ce:f6:85:e9:bf:50:c8:cc:37:08:b4:
7f:35:b2:f4:87:4e:72:42:6b:c6:db:64:c3:c4:b8:
f0:c1:db:00:8e:63:f5:d6:b0:2d:44:35:de:85:1a:
2a:53:5a:79:fc:3e:9b:d7:68:cc:cb:e0:26:db:c9:
07:83:00:57:ea:98:fa:67:db:a5:43:cf:62:29:d2:
85:0c:4f:7b:d4:b6:07:74:8c:c1:e2:38:b5:ca:1a:
ea:c4:65:58:5a:eb:ed:d0:31:12:8c:53:42:2a:77:
8d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:51:1E:5E:E3:EB:6C:79:8C:8B:83:6A:38:F8:24:A6:00:0F:28:A2
X509v3 Authority Key Identifier:
keyid:CC:AC:37:2F:7A:9B:81:71:DC:BF:C1:16:0C:AA:22:C8:FD:C6:8B:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:2e:ae:38:4c:a7:bb:27:6f:1d:03:9f:a6:34:34:b7:e0:e6:
6e:b6:19:48:2c:04:40:95:8d:4e:ed:20:1f:ef:57:bb:7a:0c:
c6:ad:f3:57:31:59:72:29:b6:ef:d2:dd:13:b1:12:52:af:1c:
ca:25:f0:7d:8c:fa:55:2f:3d:b5:fa:a3:98:0d:f0:8a:64:38:
be:52:63:d5:66:f0:b9:4e:85:67:6c:cd:ea:14:c7:3a:e0:96:
75:30:89:50:80:ac:c4:fa:8a:06:11:09:0a:84:8c:d7:ef:25:
1c:e7:82:7e:14:da:4e:6e:15:a0:bc:b3:8e:dd:6e:5e:84:db:
56:60:84:6b:0b:cd:54:ef:2d:f1:b7:3a:9a:00:1d:6b:7b:3d:
4f:10:2c:b2:cd:f3:0a:b2:7b:30:9a:b2:bc:7b:87:9a:af:e9:
21:81:ab:f1:3c:fd:d4:2e:86:ba:35:6f:75:29:1f:ca:81:96:
b9:a1:ba:eb:58:d9:8d:12:e1:58:2f:18:3d:6f:45:16:38:6a:
75:7b:16:c8:ab:39:87:64:7d:29:ac:8d:a2:5e:90:18:df:c8:
6c:e3:eb:a8:bd:48:cd:9c:ec:93:5c:fb:04:c7:c3:52:4c:f4:
ce:8f:e4:99:ad:55:7a:f0:5c:1b:c5:b5:c3:ae:12:27:7f:1d:
82:b2:f3:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 22:56:31 2026 by rpki-client