Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
File: ZlBwd85_MPwGht0JNKiZl98x6Ew.mft (raw, json)
Hash identifier: Pt587cHbfAGwpOqBd9dcMs72Jg0UL5KzZtetq410YJw=
Subject key identifier: 4A:D8:4E:9F:D6:BA:73:9F:69:CB:26:CB:E3:FA:56:E8:B8:B8:DC:47
Authority key identifier: 66:50:70:77:CE:7F:30:FC:06:86:DD:09:34:A8:99:97:DF:31:E8:4C
Certificate issuer: /CN=66507077ce7f30fc0686dd0934a89997df31e84c
Certificate serial: 019D3789A7EBA6B9C2DC37BC3B8A9B5E4CB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
Manifest number: 0411
Signing time: Sun 29 Mar 2026 03:01:01 +0000
Manifest this update: Sun 29 Mar 2026 03:01:01 +0000
Manifest next update: Mon 30 Mar 2026 03:01:01 +0000
Files and hashes: 1: ZlBwd85_MPwGht0JNKiZl98x6Ew.crl (hash: QYnZR2zHp1ZixAAQWMoa7Hokik3NYK2Y5f114b+0xUA=)
2: oEr0iaXnd0sYycCq7BAkuxMnYgU.roa (hash: htrjhsBScBfwfdBlz2NkGUVVLsJ41MJX7K3Gfxtec48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:a7:eb:a6:b9:c2:dc:37:bc:3b:8a:9b:5e:4c:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66507077ce7f30fc0686dd0934a89997df31e84c
Validity
Not Before: Mar 29 03:01:01 2026 GMT
Not After : Mar 30 03:01:01 2026 GMT
Subject: CN=4ad84e9fd6ba739f69cb26cbe3fa56e8b8b8dc47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d2:c8:61:5f:42:d1:24:a3:df:cf:17:83:8f:
1a:fc:03:d1:43:f9:2a:47:cc:6a:48:e6:af:2c:65:
23:ee:3f:84:24:92:87:7e:5d:5d:b2:6e:7e:47:0c:
84:dc:70:c0:82:19:88:1a:47:c5:47:07:75:61:f3:
6d:67:c1:f7:17:af:e4:f0:89:07:bc:31:3c:ff:bd:
76:4a:cf:79:60:70:1f:8f:33:42:b7:6d:f0:45:51:
b7:e1:c4:c1:d2:28:6f:af:57:42:de:44:66:cc:9e:
88:7e:51:32:ff:64:29:85:17:0e:01:a0:15:c4:74:
95:d7:79:88:db:ce:fe:16:1c:a6:ff:ca:9a:c4:95:
35:47:be:75:b3:ba:12:03:08:06:9c:3a:6c:c4:c9:
12:cc:26:75:f3:a7:8d:b1:9f:ce:21:c2:12:09:8e:
9c:09:18:6e:a6:9a:55:13:9e:c3:6d:5d:a2:b4:e1:
71:6a:74:86:a2:b1:b9:ac:b5:32:bc:d4:9a:be:8a:
19:47:bb:b1:7f:fa:75:f0:90:f8:12:af:da:c4:a2:
e2:df:27:39:59:9c:23:e5:08:45:6b:4c:56:4e:98:
3c:92:f5:a5:bd:32:1a:26:26:2b:1c:04:1d:ac:78:
ce:de:a6:b0:45:ce:fb:cd:13:17:07:d9:8e:f5:4f:
b5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D8:4E:9F:D6:BA:73:9F:69:CB:26:CB:E3:FA:56:E8:B8:B8:DC:47
X509v3 Authority Key Identifier:
keyid:66:50:70:77:CE:7F:30:FC:06:86:DD:09:34:A8:99:97:DF:31:E8:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZlBwd85_MPwGht0JNKiZl98x6Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a36365-8552-4a97-8bfa-ccaf44d41648/1/ZlBwd85_MPwGht0JNKiZl98x6Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:84:64:6a:12:2c:85:36:29:1f:5d:27:22:84:5e:78:1d:f6:
d5:0d:7f:80:83:6a:b3:76:59:8d:ee:4f:70:2c:dd:d5:e4:86:
c3:8d:49:da:93:d6:8f:5e:c8:61:b4:af:a4:72:83:3c:29:40:
5a:03:95:92:84:3f:54:cf:49:06:1c:9b:0a:f7:f3:6b:34:60:
4a:9e:79:1c:29:bf:a7:e1:66:f6:3d:ea:d7:88:56:50:da:06:
fa:55:30:1f:ed:cd:d5:af:b1:64:24:c0:6e:18:60:4a:58:30:
a7:43:cf:83:b0:4d:ed:2f:b2:60:9c:db:a1:59:5d:04:f7:11:
0b:da:be:8f:7a:9c:6d:7d:92:ce:88:12:11:de:70:b3:de:d0:
45:61:1b:42:48:5e:f7:51:97:20:45:bc:6a:b1:66:df:d8:23:
b0:de:39:4a:c7:4b:f1:eb:1d:4a:e7:0d:b8:81:7b:96:61:59:
9b:7d:bc:87:17:3c:c5:ce:05:90:70:1f:e1:b3:0e:43:6e:c1:
db:3a:a4:a9:bf:85:96:e5:83:6b:b8:fa:57:21:34:d8:59:a2:
5a:f5:fd:c2:4a:21:00:a3:e8:93:99:1a:26:a4:2c:2e:cd:63:
5f:76:6a:0d:b6:72:6e:f6:6f:ec:c7:98:8e:a3:6e:dc:db:6b:
f0:31:da:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:50:58 2026 by rpki-client