Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
File: zZFzvIKKtx2i68r6f4mOxqoe6nY.mft (raw, json)
Hash identifier: KAKWn+mp18sLqsMAX95op40uwn7WfezEsPqsA8c34Bk=
Subject key identifier: 26:D5:48:79:EF:93:0B:57:9C:1F:03:3B:99:31:A6:5C:1B:A3:AF:65
Authority key identifier: CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
Certificate issuer: /CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Certificate serial: 019D394127310576C39DFC4E7F31F985C3EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
Manifest number: 0720
Signing time: Sun 29 Mar 2026 11:01:04 +0000
Manifest this update: Sun 29 Mar 2026 11:01:04 +0000
Manifest next update: Mon 30 Mar 2026 11:01:04 +0000
Files and hashes: 1: nAJxhXG44wyPTc0EFqzl-RykeMo.roa (hash: ZE3/dC2ID9u+b4jjbTZ42QFLg8NiUmB80hYNY0tMDq0=)
2: zZFzvIKKtx2i68r6f4mOxqoe6nY.crl (hash: BD7VCLLPHyJGejEjQPTEE+Lg5THnqvSzBRMga/Es1m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:27:31:05:76:c3:9d:fc:4e:7f:31:f9:85:c3:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Validity
Not Before: Mar 29 11:01:04 2026 GMT
Not After : Mar 30 11:01:04 2026 GMT
Subject: CN=26d54879ef930b579c1f033b9931a65c1ba3af65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b9:bd:c8:f4:23:98:ed:97:73:6f:48:4b:4d:
c3:cf:e1:14:8f:44:14:66:d6:d5:6a:27:6f:7b:f9:
85:15:c6:8c:3b:49:a0:e7:30:1d:2a:10:28:fb:d5:
83:76:cd:3c:76:81:26:cb:07:c8:da:bc:19:22:49:
17:87:ce:be:a1:33:01:60:8a:1a:22:1a:be:ce:93:
ff:58:41:c6:4e:07:94:1c:6e:72:d8:6f:1e:ac:b1:
e6:4b:7d:f7:6b:90:64:46:ba:2f:cb:37:38:48:01:
6c:16:e9:ab:3b:b0:f3:15:19:42:bd:25:05:44:f0:
2b:44:15:8b:ec:d8:d6:a5:26:0d:07:58:89:f5:a7:
0d:95:fb:7a:44:d2:21:a7:bd:4f:c3:7d:1e:2c:21:
86:7f:be:0c:6c:1d:a9:6b:2a:76:84:0a:e3:1d:f6:
b6:35:6b:85:82:c2:a2:d0:a5:6c:d0:77:8a:63:8e:
3d:21:09:02:d9:3a:a8:53:59:c3:b1:78:52:2f:53:
ae:b8:98:44:87:10:d3:1f:f6:e4:5a:3b:12:17:05:
12:24:d2:84:4a:70:fb:49:80:8a:9b:c3:3e:e8:5d:
76:a8:44:ad:c6:54:0a:a2:b1:f3:ca:29:43:00:c2:
01:42:6c:be:ee:dc:c0:e0:3b:3f:ee:e5:72:91:2f:
fd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D5:48:79:EF:93:0B:57:9C:1F:03:3B:99:31:A6:5C:1B:A3:AF:65
X509v3 Authority Key Identifier:
keyid:CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c4:f2:47:91:7a:b0:c8:5f:bb:6b:bd:67:7b:4a:f9:22:e9:
a3:ee:15:e9:9b:3e:6e:d6:f7:25:24:cd:3c:99:16:a8:b4:23:
77:7e:4c:10:eb:59:c9:71:6e:ce:a8:67:1a:17:eb:3b:ed:05:
cb:81:b7:17:1a:24:8e:cb:72:23:45:54:8a:d9:1f:9b:fd:7d:
59:60:56:e7:94:5a:44:b5:4d:4d:97:5a:46:f6:af:c2:23:e9:
58:fe:80:0a:b6:4e:75:fa:93:6c:09:f0:97:a6:1e:d2:5d:e4:
29:94:cc:33:78:06:d8:29:eb:5e:44:6f:e4:3c:15:99:37:82:
3a:b8:ab:b5:83:5b:34:62:8f:d5:fa:d2:bf:64:e6:39:13:9d:
c5:58:ef:3a:e0:64:52:42:b9:17:8b:8b:39:99:41:11:43:9f:
84:37:99:90:a6:a5:d3:f6:63:ee:18:8d:82:f2:67:33:8b:e8:
0f:32:f6:36:2f:fd:e8:b2:68:2f:54:86:cb:28:a7:f2:64:70:
40:8b:15:09:8c:10:f4:fe:ea:b3:fa:60:19:97:c1:d7:7f:d9:
06:01:de:ed:fc:3c:1a:40:02:ed:77:6b:20:01:8a:5d:f9:82:
37:39:af:e8:78:1b:83:9f:81:6c:0c:d9:f3:15:7b:15:59:9f:
dc:a2:fc:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:03:04 2026 by rpki-client