Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
File: zWj3o5G3sWSe1JA0gtPpMe0049g.mft (raw, json)
Hash identifier: vPCy8IGEx6t4KRcVhsHCrCZ3rUCAOyiw0Sb30JHDTOE=
Subject key identifier: 1E:5B:E4:A0:C3:00:8C:E8:DC:B1:46:58:3F:28:6D:58:96:AE:71:A9
Authority key identifier: CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
Certificate issuer: /CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Certificate serial: 019D389C5CA02AEFDA3CBAC77A23F305B373
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
Manifest number: 118B
Signing time: Sun 29 Mar 2026 08:01:04 +0000
Manifest this update: Sun 29 Mar 2026 08:01:04 +0000
Manifest next update: Mon 30 Mar 2026 08:01:04 +0000
Files and hashes: 1: 1-xP6wGH4E4j9NJ-NB2QfLldx1Lw.roa (hash: uFFlZsAMKLJKDEktW5ybjbZi8RHcBaE5UQZ62izVnr4=)
2: G9U4X93rXqstWDjqCmr74O0MOOc.roa (hash: lHIU6yFEQWHJAGlwWMO/pP3VoRev0tS4Byvjv7Nl/Nk=)
3: SV_A5OMf5Dv_YVGf3i03i121qDE.roa (hash: Yx1VNJorHPI+3bEwTwwZMtNZ1vpLF6jyHjPFF9j0vFs=)
4: u0VefA4FNPAM3OaDOe1uGO8G7GM.roa (hash: L/EGbgrpKOwV4dXB0O77kAg3sNSvZROrNTY/PmdUGpM=)
5: zWj3o5G3sWSe1JA0gtPpMe0049g.crl (hash: Gui/dZJsoa2dtaaP7z8DC8wwsY+rRQfDbxgjhwVOcbc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:5c:a0:2a:ef:da:3c:ba:c7:7a:23:f3:05:b3:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Validity
Not Before: Mar 29 08:01:04 2026 GMT
Not After : Mar 30 08:01:04 2026 GMT
Subject: CN=1e5be4a0c3008ce8dcb146583f286d5896ae71a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:96:13:85:09:9b:07:56:bf:6c:f1:df:69:81:
13:6d:b6:6f:3c:a0:23:c3:7b:0c:97:f4:4d:8b:e7:
a6:eb:13:3c:1a:cd:c9:69:6d:cf:68:13:16:09:e3:
ef:a1:23:41:4e:0c:a5:1b:c6:67:fb:95:0c:8d:bd:
74:30:3a:0b:c2:5b:c5:d0:c5:48:90:8c:c2:5b:bd:
e6:b5:37:5a:82:2b:95:e3:17:17:ea:a3:18:4f:fe:
3b:83:d5:c4:08:04:a9:1e:b4:76:a1:92:89:3a:e1:
4d:c8:25:08:f2:f9:53:a9:7b:97:50:83:a0:85:77:
b8:7d:02:74:21:98:0d:19:6c:eb:07:e5:49:37:a0:
67:75:46:7f:32:e2:a4:51:59:fd:65:9f:94:58:0f:
97:1d:d1:7a:1a:52:d2:3a:f3:9f:9e:f3:48:e6:10:
58:4d:e8:17:a5:4c:d0:e8:6e:d2:f4:37:87:67:4e:
40:bb:1a:40:31:67:22:a7:d8:ef:b7:a5:cc:9c:96:
2c:1f:ba:f4:ee:67:30:c6:2b:3d:35:57:da:2e:d6:
e5:d4:bd:65:d3:c0:e2:6f:47:6b:d5:1d:cb:f1:93:
5e:30:0f:98:ba:df:2e:3f:0b:96:c9:b0:f9:90:d7:
08:19:ec:00:bf:4d:b0:a1:37:e6:a6:1d:ae:4d:74:
d9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:5B:E4:A0:C3:00:8C:E8:DC:B1:46:58:3F:28:6D:58:96:AE:71:A9
X509v3 Authority Key Identifier:
keyid:CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:e7:1d:20:8e:fd:24:3f:be:5c:2e:ce:a1:58:19:28:04:67:
05:10:fb:0e:28:cf:bc:2f:99:2c:e8:4f:c9:90:e8:77:2d:c4:
dc:7f:25:2b:bb:d0:5b:31:7a:cb:57:19:d8:b2:59:3b:74:a2:
90:90:ad:1c:f0:c4:bf:1a:93:cc:35:95:43:c4:e6:5e:87:62:
3e:bd:16:cc:91:4b:50:01:57:09:25:ec:2f:77:23:4e:b4:5e:
7e:2b:a2:6f:4d:4f:37:10:e5:5c:96:96:81:e2:ce:6d:c1:96:
19:34:b4:e2:95:08:a1:80:96:61:40:63:5c:b7:fc:7c:18:ad:
bd:0d:cd:69:9b:1f:de:c1:0d:c2:7f:74:07:a6:e4:02:36:74:
2e:f7:42:2b:70:8e:81:04:d4:eb:33:9a:a1:3e:0c:ed:a9:fa:
b4:f9:74:ee:b7:96:93:d9:13:a7:75:6e:df:76:81:5c:20:9b:
03:c7:3c:6b:a6:c9:71:4f:a6:1a:e5:4f:56:69:10:cf:ce:26:
8b:66:33:13:91:bc:2a:78:a8:37:71:66:12:63:7a:e3:ca:3f:
eb:fd:b2:e0:aa:5a:b1:af:16:e9:78:07:bf:fa:63:e1:cd:1b:
27:98:cc:05:d7:55:5f:4c:e1:2e:bd:de:53:c0:ca:b2:72:f1:
9b:05:8b:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:14 2026 by rpki-client