Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
File: Zr5SEJO7idx2JQsif39_umbiKNg.mft (raw, json)
Hash identifier: cJ45LPScMNc8mQYnX65Tzime3vI4f8yWLKXKk6DqCbA=
Subject key identifier: A6:BD:8B:F8:30:C0:01:86:68:8B:2E:D6:A9:C0:2F:C7:4E:82:D1:3C
Authority key identifier: 66:BE:52:10:93:BB:89:DC:76:25:0B:22:7F:7F:7F:BA:66:E2:28:D8
Certificate issuer: /CN=66be521093bb89dc76250b227f7f7fba66e228d8
Certificate serial: 019D382E3953E2FA1C7B15D9A33A5D0EEAA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
Manifest number: 03E4
Signing time: Sun 29 Mar 2026 06:00:46 +0000
Manifest this update: Sun 29 Mar 2026 06:00:46 +0000
Manifest next update: Mon 30 Mar 2026 06:00:46 +0000
Files and hashes: 1: Zr5SEJO7idx2JQsif39_umbiKNg.crl (hash: 0eYYTrCC4toRAmsksQZqEhx3LuubAiP6RG9/6A4KvfA=)
2: fVPrysluUd3L0ep1M9g-Qu86NA4.asa (hash: Lugnw9UZcGM9OKvJ1USKgkEdV6a/3UOFMinpysZbkZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:39:53:e2:fa:1c:7b:15:d9:a3:3a:5d:0e:ea:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66be521093bb89dc76250b227f7f7fba66e228d8
Validity
Not Before: Mar 29 06:00:46 2026 GMT
Not After : Mar 30 06:00:46 2026 GMT
Subject: CN=a6bd8bf830c00186688b2ed6a9c02fc74e82d13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d7:2c:58:99:23:ab:af:66:f1:e5:a5:4c:f3:
25:26:b8:14:82:7e:a2:66:51:0c:a1:1f:31:5a:73:
63:30:fc:a9:47:dc:c8:8b:a6:0c:9d:e8:0f:cf:af:
b1:7e:6e:84:fc:06:5a:21:99:d9:26:60:19:94:c9:
0e:86:53:19:fb:66:92:cc:73:70:96:f9:4d:0a:17:
35:c1:6e:8b:aa:30:ab:a3:b7:c0:69:e5:a6:8a:ae:
b2:d6:74:25:f9:5c:70:aa:68:43:0e:46:49:73:9c:
a1:06:0d:74:6a:fa:d4:a2:6f:8a:b8:22:65:8b:70:
84:2d:0e:fb:a5:ab:0b:36:4a:e7:7f:fe:b1:44:d1:
ea:56:4a:a0:1d:5f:66:e4:cf:0f:15:e1:df:00:ab:
fe:fb:c5:47:b7:8e:93:06:a7:4c:fd:3d:ba:b9:a6:
09:8b:2d:b0:e1:c2:1b:d6:74:f6:99:2e:34:73:04:
ca:2e:4b:4b:6c:b8:f2:1b:31:37:29:97:1f:ec:3a:
e9:58:c3:c5:f5:66:e4:06:e8:bd:98:66:23:a2:d9:
ef:1f:8a:6b:db:bc:17:7e:ae:cf:8d:d4:57:a1:5e:
cc:1b:60:45:43:2f:e3:f3:87:fe:29:ae:57:db:01:
3a:94:00:d2:ae:fb:74:33:80:b1:ca:8e:93:df:fa:
a2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BD:8B:F8:30:C0:01:86:68:8B:2E:D6:A9:C0:2F:C7:4E:82:D1:3C
X509v3 Authority Key Identifier:
keyid:66:BE:52:10:93:BB:89:DC:76:25:0B:22:7F:7F:7F:BA:66:E2:28:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zr5SEJO7idx2JQsif39_umbiKNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32f9b3-de2b-41f5-a949-90030d040ff7/1/Zr5SEJO7idx2JQsif39_umbiKNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:6b:8f:36:3f:9a:e9:9e:c7:12:4b:dc:b4:7b:86:27:1e:4e:
f1:66:b4:d0:28:4f:ec:5c:71:75:a2:39:3b:9d:63:16:ee:a6:
03:cd:d3:2d:31:7f:af:e5:a7:9e:bb:81:10:67:fc:f7:f3:a4:
99:88:31:bb:45:33:fc:25:48:0a:38:1f:96:f4:f3:31:cd:b6:
d2:6c:2c:0b:70:e4:bf:10:17:a1:8d:17:8a:58:48:6c:12:56:
e6:75:4e:8f:6b:76:07:ac:b4:77:8c:50:bc:8d:db:6e:a0:69:
e4:f1:fb:a9:b1:c1:43:7d:09:4a:44:26:86:9c:5d:af:57:dd:
cf:d9:6b:8f:bd:8a:2a:06:cf:dd:21:8e:32:50:d3:43:51:35:
6c:7c:47:e5:f8:b5:12:39:ac:8d:ff:b6:4d:2a:56:bb:0c:73:
cf:fd:3c:ae:ce:1e:c8:4b:13:f4:cf:5e:5b:7b:81:19:e2:60:
e1:77:29:6e:66:29:6a:90:02:f2:e8:30:2c:33:a5:bf:7a:88:
d2:5c:13:c2:0d:d7:a5:4e:75:43:f3:5b:29:f5:d9:92:41:96:
e1:70:c4:fe:93:0d:19:82:63:5c:bb:35:f4:2d:ad:fa:47:22:
96:c5:70:86:93:1e:fc:8c:27:58:24:ad:d6:06:80:36:9b:03:
f7:7e:20:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:32 2026 by rpki-client