Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
File: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft (raw, json)
Hash identifier: CBe69tbGEzQ6EGx6+3zml4+rhXXpUoIVxArZVZ+qM+k=
Subject key identifier: BF:36:58:65:4B:85:50:77:4B:4F:62:E5:EB:D4:1D:51:B2:D1:79:44
Authority key identifier: D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
Certificate issuer: /CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Certificate serial: 019CE523913C4AF3A7C27D276518EEDD1DC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
Manifest number: 1864
Signing time: Fri 13 Mar 2026 03:00:39 +0000
Manifest this update: Fri 13 Mar 2026 03:00:39 +0000
Manifest next update: Sat 14 Mar 2026 03:00:39 +0000
Files and hashes: 1: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl (hash: sJ0UVDVKPp5Sl+sErfH01wWaAAaABlfvi7qXlNcAqDI=)
2: b15waVmeZUiAPXdSgALdQ8K_I1k.roa (hash: 8OOWK/04HtqvAlybr5ZST2AvUlB+dJIHZXLz3leFYTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 03:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:23:91:3c:4a:f3:a7:c2:7d:27:65:18:ee:dd:1d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Validity
Not Before: Mar 13 03:00:39 2026 GMT
Not After : Mar 14 03:00:39 2026 GMT
Subject: CN=bf3658654b8550774b4f62e5ebd41d51b2d17944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a2:62:e9:4a:fc:86:0f:7d:90:60:9d:3b:65:
f5:cd:e9:2d:b3:76:ed:b9:99:a7:7c:db:8e:34:95:
d3:40:ba:63:53:4e:a5:ce:38:d4:94:cc:aa:bb:41:
48:00:b7:0a:58:da:c3:0f:1c:17:40:cd:38:e1:ff:
97:c7:df:6b:a5:26:ff:de:84:ef:a5:d7:c2:06:9b:
2d:fc:e3:91:ec:71:4e:5c:03:dd:df:a5:36:37:66:
c3:f3:5b:da:87:2e:e7:9a:1d:42:e7:19:a6:9f:f8:
6c:a1:b3:94:5e:5f:bd:22:a9:b8:21:85:0f:46:49:
f2:88:49:85:13:96:7d:c9:6b:ee:a5:be:62:39:33:
a9:f1:15:3d:8c:76:50:82:ce:ce:6d:bd:11:35:45:
27:fd:38:e2:a0:57:57:6c:8c:4e:a6:8d:8f:33:ad:
ed:5b:57:cc:9b:85:15:08:5a:04:05:cc:e5:91:c4:
30:20:34:d5:2d:23:27:11:76:95:c4:38:27:4f:06:
31:ce:20:e4:db:b8:e2:82:e2:9f:29:80:28:dd:36:
38:bc:5b:16:73:81:80:23:84:6a:66:df:a6:0f:e8:
ee:77:ce:d1:5e:ce:0f:8d:48:a3:b3:04:82:87:13:
d9:6c:22:48:a1:42:2a:13:0a:e7:24:1b:4b:3a:00:
72:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:36:58:65:4B:85:50:77:4B:4F:62:E5:EB:D4:1D:51:B2:D1:79:44
X509v3 Authority Key Identifier:
keyid:D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:30:62:45:da:30:01:b9:af:f9:d9:df:1b:37:45:9f:8d:fe:
e4:48:ed:99:5b:54:ba:b5:14:7a:1d:cb:53:7d:e4:45:be:5d:
28:b6:5b:d9:47:18:7e:b6:f2:e4:dd:91:0d:fc:d3:33:30:78:
b7:68:d7:34:7b:b0:b0:c5:48:ac:5b:0c:a8:12:98:3f:cf:3a:
7d:6e:38:74:51:9c:b6:2b:03:45:b9:2c:a7:a5:8c:13:16:49:
f7:39:6d:17:52:5e:35:cb:37:08:94:a3:76:0c:ed:05:b7:0f:
e9:7b:e8:72:9f:bf:3b:5b:da:5b:d6:77:32:ef:03:08:54:57:
9b:e9:3c:38:fd:73:6a:74:f1:a1:eb:39:35:4b:e8:41:01:9c:
1c:ce:37:d7:c4:41:34:87:b9:1b:38:b6:79:ab:c6:13:95:e1:
a3:ff:0d:38:a3:1d:a1:a1:33:ed:d0:4d:91:d8:d7:de:de:9d:
c6:f3:fa:06:59:35:03:89:9c:df:48:71:9b:11:36:a0:d6:52:
fe:28:6f:80:d8:02:72:5a:2a:14:de:3a:40:36:0f:0c:7f:47:
60:53:26:7b:4f:88:f4:08:5c:89:46:24:10:43:ca:16:e9:a0:
ce:ff:b2:65:4c:03:11:01:2f:f3:69:1b:8a:94:35:89:ed:40:
7c:57:45:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 12:12:40 2026 by rpki-client