Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft
File: Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft (raw, json)
Hash identifier: gUt7yU91HwYPk9Lo4H8a+55T13ZiWUGjo9U4mMED7ns=
Subject key identifier: 95:77:30:7A:3F:EE:BF:C7:E1:63:05:F4:B8:53:FB:17:3C:2F:06:E9
Authority key identifier: 67:BA:97:9D:D0:8D:BE:03:C1:74:8A:02:2F:A6:65:4D:36:11:94:0F
Certificate issuer: /CN=67ba979dd08dbe03c1748a022fa6654d3611940f
Certificate serial: 019E28EF8B45EC24099EC2ADE24065C28855
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft
Manifest number: A1
Signing time: Fri 15 May 2026 00:00:47 +0000
Manifest this update: Fri 15 May 2026 00:00:47 +0000
Manifest next update: Sat 16 May 2026 00:00:47 +0000
Files and hashes: 1: CuP-Ha4tOWBJT0pI4E4cOyq4rrs.roa (hash: PnhyGfN8Xq/cQidLwJYXET+Yc1KaRnRUtuvyvf2jYVs=)
2: Z7qXndCNvgPBdIoCL6ZlTTYRlA8.crl (hash: 7ZwTcZ4kxwgNfuKdIcNjy3G1Pxjy5U+RtpHk0R0AZVQ=)
3: Z_qYOE4e2l4gEvD0IWAegIDMPig.asa (hash: eWA5Ad2XFQpR/DOWcwIfkGbSUhBVracuKwSeTKFgw50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 00:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:ef:8b:45:ec:24:09:9e:c2:ad:e2:40:65:c2:88:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ba979dd08dbe03c1748a022fa6654d3611940f
Validity
Not Before: May 15 00:00:47 2026 GMT
Not After : May 16 00:00:47 2026 GMT
Subject: CN=9577307a3feebfc7e16305f4b853fb173c2f06e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e9:54:57:c0:d9:4e:7a:52:81:93:c3:fe:f4:
d9:11:82:89:7d:ee:4d:a1:15:0c:4b:5f:ba:22:ae:
7f:d2:84:2d:23:f3:bd:86:19:e3:cd:f2:18:f0:09:
f1:10:45:a4:df:61:66:03:c7:32:03:7f:a3:23:7b:
7b:5e:72:54:3e:e2:05:cc:be:cb:a4:20:47:dc:91:
28:be:f1:9d:67:e5:5f:9b:2a:da:d0:9e:93:43:8f:
fd:8b:ca:64:38:8f:96:c9:0c:60:89:c1:f0:44:19:
bc:eb:58:0e:f8:8f:b9:7d:06:cc:a5:65:9a:e8:64:
58:fe:17:b3:ef:09:59:2a:c0:4f:95:f5:f8:fd:1d:
03:a5:db:a3:2f:d1:4e:e7:0a:a3:4c:5b:5f:e3:36:
7e:a0:c2:ee:69:4e:07:d7:4b:f9:9e:35:d0:20:c9:
19:59:71:ee:c1:6b:0d:0b:a3:ee:cd:c1:c0:c3:45:
b9:d1:2a:af:f1:c5:84:fc:f5:3c:68:16:17:69:d5:
23:ba:c6:06:94:d0:ef:6e:b9:ac:5a:1e:ae:94:23:
a3:56:e6:67:82:fd:d2:80:7f:d2:f6:02:0c:1d:c0:
b9:3a:c4:d7:6e:21:b6:d3:21:06:d4:5c:e0:c7:c8:
7a:00:66:eb:30:4d:23:a7:d5:5d:bd:51:b5:66:f0:
75:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:77:30:7A:3F:EE:BF:C7:E1:63:05:F4:B8:53:FB:17:3C:2F:06:E9
X509v3 Authority Key Identifier:
keyid:67:BA:97:9D:D0:8D:BE:03:C1:74:8A:02:2F:A6:65:4D:36:11:94:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:63:82:40:55:2a:ce:a6:06:3b:f5:fb:39:49:05:4e:ea:4c:
51:c5:1e:47:92:70:23:33:d8:d3:56:6b:bd:ff:40:bb:35:99:
33:79:6c:70:fb:fd:d3:ed:cc:0e:7e:a2:25:03:e1:6c:1e:38:
54:a0:8d:9f:02:e5:97:8f:5d:88:41:33:b8:6d:e8:70:56:52:
f5:87:88:b9:8a:be:66:6a:28:b7:ec:37:60:72:44:6e:3d:f9:
67:f0:68:2b:31:fb:fb:1b:0d:3c:88:df:3e:ce:36:d9:ae:ef:
cb:85:71:96:97:51:fa:98:1d:87:95:76:80:5c:19:d0:55:4c:
6c:a1:d4:03:2a:35:30:54:27:bd:9e:33:c9:93:8f:ea:c7:f2:
80:52:2c:81:57:0d:b2:b2:c4:e8:b9:8b:50:ff:f3:74:e3:40:
87:25:0d:a9:94:ff:3b:84:ce:69:cb:50:73:7c:52:aa:ff:af:
cb:0d:9c:ce:70:9a:44:c0:03:24:7d:5d:62:a5:60:81:bf:e0:
dd:8a:ab:e3:2d:56:8d:c0:70:55:26:4c:f5:75:a9:2e:ed:d6:
8c:cb:66:2c:c5:f8:a1:bc:d2:1d:c3:18:06:aa:a1:ae:c6:05:
44:30:53:31:f8:ca:42:93:3f:8b:37:21:db:33:da:67:a7:37:
30:b4:9f:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:19:28 2026 by rpki-client