Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
File: fzP8QNLgMzu8e96rK9hZlUMBwPE.mft (raw, json)
Hash identifier: LXYb2M/lYp4oXgIJGNGdCASp3a3XTSHNp0AH7nG2vsI=
Subject key identifier: AF:57:78:29:25:5A:22:8C:C1:93:5C:D7:75:3C:57:24:0A:7F:6D:AD
Authority key identifier: 7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1
Certificate issuer: /CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1
Certificate serial: 019D37533397D951EBB5CC5BED1282FA0C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
Manifest number: 07D8
Signing time: Sun 29 Mar 2026 02:01:32 +0000
Manifest this update: Sun 29 Mar 2026 02:01:32 +0000
Manifest next update: Mon 30 Mar 2026 02:01:32 +0000
Files and hashes: 1: fzP8QNLgMzu8e96rK9hZlUMBwPE.crl (hash: GqEmo1z177siMaZ6sIX/KJVvSTeAYGYdVt2nZjw7uMs=)
2: ySsKwQ4c8u9hH8dkf5IAovbGU0E.roa (hash: Lmp6N3VB+ffMGoy168W3pHuRylAIEPbhaHOo0QIFkSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:33:97:d9:51:eb:b5:cc:5b:ed:12:82:fa:0c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1
Validity
Not Before: Mar 29 02:01:32 2026 GMT
Not After : Mar 30 02:01:32 2026 GMT
Subject: CN=af577829255a228cc1935cd7753c57240a7f6dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:86:69:7f:3c:9e:9f:a7:fc:db:82:0d:d0:8b:
43:5c:62:08:b8:53:41:a6:29:3f:53:30:fb:7a:c9:
60:92:c8:14:ee:eb:58:ba:fa:51:aa:2b:00:a0:79:
0c:6c:8a:9f:56:4c:4f:f0:0d:cc:1a:18:b4:ad:83:
55:a7:17:e8:6d:44:d9:bb:ac:f6:6b:01:4f:3e:92:
41:73:57:4c:83:32:b6:46:93:b7:68:74:4a:4b:7f:
21:5c:77:93:b5:72:14:16:57:89:40:15:3c:17:e0:
84:63:d2:b4:af:af:5c:69:e3:9e:51:6b:25:65:f3:
22:55:aa:c9:18:fc:34:a8:68:93:ca:63:40:64:98:
00:52:2a:d6:64:16:33:ef:95:f4:16:3f:a4:ad:e7:
0b:7d:a8:88:2f:97:17:c7:f6:31:86:09:45:e2:ba:
60:10:e6:6d:09:85:75:0c:db:a9:0f:36:a5:19:0a:
54:2b:1a:f3:74:f1:07:c2:a1:34:47:43:65:8d:5e:
7c:3e:9a:df:22:f7:39:13:17:70:de:dc:c9:f0:39:
13:c0:b2:66:12:d0:13:b4:d3:63:60:1f:10:d9:c4:
fc:f1:9c:f1:51:4d:5d:aa:aa:b4:57:dd:3c:34:6b:
5c:7a:bc:f7:ac:52:7a:15:28:a7:83:33:0b:0e:42:
94:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:57:78:29:25:5A:22:8C:C1:93:5C:D7:75:3C:57:24:0A:7F:6D:AD
X509v3 Authority Key Identifier:
keyid:7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:89:2f:57:1c:90:70:e8:a2:82:3a:9d:c0:5e:98:ae:42:b6:
d1:71:7b:6e:93:40:95:25:cc:95:ed:86:3f:c2:ec:f6:3c:2d:
c5:0d:fc:06:51:3d:ae:ef:3c:68:35:fe:ee:b2:aa:1c:7b:b8:
c5:94:ab:84:9f:10:22:ba:e8:0e:86:ae:3e:d6:4b:43:91:ab:
18:09:c7:43:a1:1c:3e:39:48:09:1c:27:d5:90:e2:88:08:77:
f8:3c:de:1c:58:5c:d4:26:85:34:00:d6:25:a6:ce:d2:c6:ec:
67:44:4c:50:ac:8b:d6:96:79:23:1e:c9:ef:cd:b3:6f:62:25:
98:bc:e9:fa:18:4f:a4:56:1b:39:84:82:1c:32:ea:7c:70:13:
f0:76:c0:c5:19:e5:7e:02:d4:38:c5:bb:1f:17:ce:b9:f3:08:
6a:81:fb:3c:63:a6:28:c2:c6:8f:6b:7f:f4:d8:e7:f2:86:6a:
ce:76:55:6d:ce:2b:b1:8b:6e:0a:be:4a:cd:59:68:ea:d0:95:
fa:c4:ff:02:d0:9b:1b:d3:39:c1:cc:17:ca:df:f4:07:ae:22:
6e:1f:3a:1a:5d:64:ad:7d:89:e8:be:0a:4b:8d:63:f6:c0:87:
d6:62:76:64:45:2f:1b:c6:40:a3:c6:0a:0b:e6:24:15:f2:f3:
47:33:77:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:56 2026 by rpki-client