Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
File: Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft (raw, json)
Hash identifier: JMLDYt/BmAG12PRHKjSaaITa1LyD5iebNG83laQGTmc=
Subject key identifier: 35:4C:51:2B:25:A1:27:0C:45:56:9B:0C:27:53:A2:8D:B2:9E:29:C7
Authority key identifier: 67:D4:10:E7:07:B5:79:71:B1:4A:54:30:9F:02:0B:AC:BB:4D:21:B1
Certificate issuer: /CN=67d410e707b57971b14a54309f020bacbb4d21b1
Certificate serial: 019D3865AD293C1AC04AAE1434A19ED94FD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
Manifest number: 045A
Signing time: Sun 29 Mar 2026 07:01:20 +0000
Manifest this update: Sun 29 Mar 2026 07:01:20 +0000
Manifest next update: Mon 30 Mar 2026 07:01:20 +0000
Files and hashes: 1: Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl (hash: igcY4wzGEg5E+rirMOuR9Dmc79oJHujLV/eHoJ7RAFU=)
2: axtr1Yfq33sGPOPOJoi8LjJUh7Q.roa (hash: nE9lYWD+wgHpWX2b2+6stth4mhkUfCemKJyIsoT/t6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:ad:29:3c:1a:c0:4a:ae:14:34:a1:9e:d9:4f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d410e707b57971b14a54309f020bacbb4d21b1
Validity
Not Before: Mar 29 07:01:20 2026 GMT
Not After : Mar 30 07:01:20 2026 GMT
Subject: CN=354c512b25a1270c45569b0c2753a28db29e29c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d9:a7:7d:e5:5d:7e:0c:48:79:0b:a1:5f:b6:
ef:41:4e:03:a3:ec:5f:d7:b7:68:db:2e:b9:64:54:
ca:dd:b7:cc:37:12:0d:91:74:a5:c4:c3:61:fd:4d:
c2:ff:ed:fe:f2:48:36:dd:90:b2:d5:cd:2b:cb:02:
59:3a:99:75:8e:e5:db:8c:eb:df:b8:49:6a:89:ce:
35:91:d2:cd:95:6d:89:5d:ee:1f:d0:70:90:25:25:
17:d1:3b:05:3f:80:8e:91:c3:c4:07:aa:00:8c:00:
d4:9c:f8:7c:59:fd:42:52:d1:e3:46:7d:32:5b:94:
23:d7:b5:db:a9:a8:00:25:21:71:3b:a5:56:d6:8c:
39:12:5a:57:21:14:19:46:5c:ea:d5:12:6d:f0:74:
21:56:5e:3b:c1:35:1c:81:42:1d:d3:ca:5e:f1:f5:
c9:8b:55:f3:29:31:82:77:3c:42:9f:f4:18:eb:85:
81:1d:06:cc:51:b1:8c:1a:59:de:5c:ba:39:7e:51:
93:36:f6:86:cb:5f:27:d7:07:f9:99:04:55:0d:3f:
4d:4f:a8:6c:fd:3f:04:5b:85:7c:f6:24:50:57:39:
eb:50:32:aa:0f:3d:3a:33:bb:23:82:ec:24:69:ff:
63:f7:65:d3:5b:79:93:df:30:e9:de:00:a1:cb:44:
6c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4C:51:2B:25:A1:27:0C:45:56:9B:0C:27:53:A2:8D:B2:9E:29:C7
X509v3 Authority Key Identifier:
keyid:67:D4:10:E7:07:B5:79:71:B1:4A:54:30:9F:02:0B:AC:BB:4D:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:2b:e1:e7:f2:5d:0a:e4:19:ad:c8:96:ab:d2:15:2f:65:3a:
0a:d0:b3:4c:c2:54:95:37:2c:ae:24:bb:f9:dd:c3:ac:2b:6b:
b3:95:5c:77:78:7e:4f:c0:70:e2:c3:43:08:d6:c4:24:0c:9d:
9c:f5:9e:90:39:43:d1:cf:76:d5:66:b1:30:f1:d0:3f:1e:8d:
ce:d5:6c:d2:85:fb:f0:3b:bc:a1:9e:b7:13:c1:b2:f2:25:50:
72:d5:99:62:98:43:99:e3:0d:89:24:0c:28:08:5e:c7:66:7b:
78:30:15:8f:f7:8d:30:62:0b:e1:80:ee:b0:58:a7:38:eb:c5:
73:e0:96:a5:d8:88:e6:a9:0f:39:0b:ee:4e:57:2e:a2:13:d3:
25:b1:6e:d4:d7:1f:c4:c0:c4:24:af:ae:ab:ba:1e:a2:ef:ee:
41:13:8c:81:e3:49:0a:f2:56:96:d6:79:59:f8:9d:d1:3a:ac:
53:02:62:9d:08:8c:ab:0c:09:ce:06:ae:e4:61:5d:54:63:f1:
51:36:23:f7:22:6b:ae:01:40:e4:80:0b:5d:67:6b:94:e9:05:
61:ed:7c:6a:ff:a6:8e:fc:df:b8:8f:80:39:50:54:be:74:2a:
b2:14:4c:7c:f5:4d:7e:9a:db:5d:b0:95:8c:14:b7:e3:fd:47:
8d:ec:b1:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:59:18 2026 by rpki-client