Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
File: zzKCScw17CfMEOGLiCxsE4l8hJc.mft (raw, json)
Hash identifier: SU68mhiGRA+3qQbsbkZLYF8k0Z+vGMVqGIF54ApC9pE=
Subject key identifier: D8:4A:72:B7:7D:9E:8E:36:94:71:6F:B0:7F:3C:E1:EE:A5:3C:72:84
Authority key identifier: CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
Certificate issuer: /CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Certificate serial: 019D07AF9939CF2618078C4AF85D5C85EBAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
Manifest number: 100F
Signing time: Thu 19 Mar 2026 20:00:41 +0000
Manifest this update: Thu 19 Mar 2026 20:00:41 +0000
Manifest next update: Fri 20 Mar 2026 20:00:41 +0000
Files and hashes: 1: Gaonav40tTJpKCNRA2Pgw8c6CJI.asa (hash: qQGsDuLfuc8HGPjQosjqKzgl1S/2LQUHdjWbkc+kEYQ=)
2: zzKCScw17CfMEOGLiCxsE4l8hJc.crl (hash: lzSOA0nja/axmKY7Tr8WdpGLdDh30MRXa2oyoQsdT6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:07:af:99:39:cf:26:18:07:8c:4a:f8:5d:5c:85:eb:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Validity
Not Before: Mar 19 20:00:41 2026 GMT
Not After : Mar 20 20:00:41 2026 GMT
Subject: CN=d84a72b77d9e8e3694716fb07f3ce1eea53c7284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:53:a2:01:d1:19:d2:c8:7a:88:a6:6e:82:d9:
73:76:4a:c1:69:3c:6c:52:c9:63:53:de:fe:e6:38:
3c:34:83:8c:97:fe:af:aa:cb:1e:c5:9a:6d:3f:fc:
b7:c4:0a:a1:b5:fb:22:db:fa:a0:2f:97:db:aa:0c:
1f:a4:da:ba:da:7c:85:fc:74:b9:7c:97:3a:57:70:
76:cc:0a:0e:17:5d:8d:03:0d:c6:90:90:a5:8f:f2:
a3:a6:e5:ce:ee:14:86:bf:d6:01:f9:98:cd:00:b1:
c6:3b:a6:d7:05:32:6b:14:5f:fe:41:38:1d:67:d7:
5d:05:ef:af:ee:28:4a:0e:a6:46:70:01:68:5d:55:
f7:e9:c4:e5:2c:93:f4:1c:c2:61:5b:8f:31:69:00:
97:7e:a0:57:83:c5:45:ac:c2:a3:73:da:4f:f2:de:
2c:99:a0:56:c5:dc:4f:bd:4b:bf:7d:5d:0d:38:41:
06:df:f8:89:62:40:3b:ad:69:c6:de:18:e3:0a:fe:
d3:4d:5a:81:1f:b0:08:32:5e:52:d8:f7:c0:0b:84:
b5:1b:7f:d5:e5:f8:2e:4a:79:93:3b:c1:74:44:f7:
d9:fc:68:a7:2d:28:39:ba:82:2f:10:aa:05:4d:1d:
47:0d:c1:ab:e2:d9:94:f3:09:41:c5:75:dd:93:4c:
61:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4A:72:B7:7D:9E:8E:36:94:71:6F:B0:7F:3C:E1:EE:A5:3C:72:84
X509v3 Authority Key Identifier:
keyid:CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:eb:01:ed:0e:0f:77:8b:81:c1:43:be:a3:b9:00:36:e6:2b:
05:1d:2d:71:44:38:d2:f6:73:ec:38:5c:30:39:63:80:d7:36:
52:8f:bf:c3:82:2b:a5:0c:37:91:65:df:ba:ca:02:22:30:ce:
0d:1a:46:b4:90:fa:ee:73:7e:bc:59:7b:c3:22:6c:24:09:ec:
22:55:d7:35:06:27:03:ca:53:13:e4:a6:36:b2:ec:2d:b1:ef:
53:97:49:74:47:6b:5a:f7:cf:d6:ee:ab:e5:4a:48:fe:b5:44:
bb:55:b3:ea:36:10:c1:ae:2f:6a:ef:49:54:1c:5d:ef:24:87:
51:2f:6a:98:d9:97:50:e2:27:8b:de:b7:ba:8e:f6:88:54:e7:
92:08:9f:73:70:68:35:88:a1:2b:14:6f:ab:5c:59:ed:c9:bb:
bd:7a:ca:1a:21:8f:42:e2:6b:fa:35:ee:51:46:78:b5:71:62:
76:8d:1c:44:b7:94:9b:83:93:4e:64:cd:e6:8f:ff:a3:02:6e:
cc:69:92:85:28:07:fe:bd:36:09:4d:e6:3e:1e:6f:69:20:0d:
81:5f:5c:a1:95:59:cb:63:9f:23:4b:16:f0:6e:72:2d:72:5e:
d1:15:78:10:2f:1c:93:f5:44:9d:0e:b1:6f:e6:6c:65:49:de:
7c:ae:54:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 04:35:11 2026 by rpki-client