Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: k7sv6q25GdU3Ijatp9fVSXFFlWCzpFt7UwA+EKxXuW8=
Subject key identifier: 14:7C:92:98:D2:D0:2B:20:C9:EE:0F:E5:F4:24:25:7E:EB:B7:AE:DD
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 019CE4EC51C27572415AA578AB4E8D4387F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 078C
Signing time: Fri 13 Mar 2026 02:00:18 +0000
Manifest this update: Fri 13 Mar 2026 02:00:18 +0000
Manifest next update: Sat 14 Mar 2026 02:00:18 +0000
Files and hashes: 1: jv18kUzHEBlDlkIHJKkxODrKqc0.roa (hash: wdFZODPpunDdGOXTc+SSGtgRA0zL9y523IFxS0/YWn0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: dVwkd6NnHrGSC7vPGVedKtqfnWslGYI3FzKQnXjEBAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:ec:51:c2:75:72:41:5a:a5:78:ab:4e:8d:43:87:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Mar 13 02:00:18 2026 GMT
Not After : Mar 14 02:00:18 2026 GMT
Subject: CN=147c9298d2d02b20c9ee0fe5f424257eebb7aedd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:17:66:d8:21:b8:04:7d:35:15:a6:0c:93:fa:
c7:42:73:58:f4:62:9c:98:cd:84:6b:e8:b2:76:3c:
51:1f:6f:1b:96:a3:f0:5e:e8:a8:05:7b:e4:14:62:
40:8f:96:10:32:2f:01:84:fa:c8:ae:37:f2:ec:7f:
5d:8c:6a:3b:80:01:e2:3e:04:64:08:53:69:97:14:
01:96:34:27:6e:c8:31:92:64:e2:e3:17:6a:63:f6:
b9:8c:84:c7:cb:fb:1b:b9:b1:ce:60:b1:59:78:d7:
77:09:d8:b9:c1:01:13:61:04:66:d8:de:95:49:e8:
01:cb:6e:e9:68:39:3f:cf:29:05:c1:16:39:b3:6f:
d5:0c:f2:44:e8:29:49:4d:de:52:3b:c0:15:c4:49:
62:c5:8b:a8:70:7a:8e:7e:30:75:50:ab:a5:ce:4a:
a9:43:1e:2e:31:b4:2b:df:6c:7d:bb:a1:aa:32:60:
00:26:af:47:2b:cd:e0:84:e4:c4:88:4f:63:84:b6:
2f:b9:93:43:d5:49:1e:43:99:52:db:b2:24:f8:7d:
6c:68:36:24:5d:c6:47:5e:75:19:84:8d:71:b3:b2:
2d:e2:b4:27:ba:c5:ca:2b:0f:d3:9c:e1:20:c2:cc:
bb:7d:f5:9b:2d:c8:cd:ee:27:72:48:c2:0f:b7:83:
fc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:7C:92:98:D2:D0:2B:20:C9:EE:0F:E5:F4:24:25:7E:EB:B7:AE:DD
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:5d:1e:49:e4:a4:24:63:2e:b0:02:f4:65:5f:f0:75:c1:3d:
c4:30:83:80:ce:5a:b1:a9:07:93:bf:51:f9:86:cd:e5:81:63:
38:19:b9:ba:a2:b6:36:eb:04:e9:d0:8b:ea:e4:64:57:57:5c:
d8:fd:51:3a:9a:98:0d:0a:81:68:bb:2c:ff:d4:45:8e:40:95:
bc:8b:a0:02:13:ef:ae:5e:f3:b7:ea:fa:89:60:af:d1:58:09:
37:92:f9:d0:e2:37:5a:b4:c0:7e:96:03:07:bb:0e:85:2f:ee:
ca:c8:76:eb:05:d9:a1:5e:f4:56:7a:49:65:98:f8:3e:34:89:
3b:b7:53:ca:c7:61:59:5b:94:9b:4b:c0:67:80:ae:ec:c7:8d:
fe:0e:d9:03:d2:da:b4:5e:66:9f:1b:07:65:e6:3b:20:e6:8b:
e0:2e:54:4f:1c:55:b0:62:28:80:f1:99:76:60:22:c2:02:d4:
bd:2b:74:7b:28:fb:62:05:2a:82:bb:24:3e:4b:5b:1f:52:11:
05:58:4c:a3:0c:c7:d0:07:83:66:fa:ef:48:77:41:a6:a6:b6:
db:4d:fc:da:c6:81:75:cc:eb:76:ce:b4:f0:82:a3:88:2d:35:
aa:6b:c0:9d:54:80:ca:45:9c:95:e7:3b:4b:3d:c1:17:5b:70:
ab:24:c1:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:26:54 2026 by rpki-client