Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
File: ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft (raw, json)
Hash identifier: tWOmJCuVk99+PHKd0OZe+H8kM6ddhJ1h1CcxN+Elu5s=
Subject key identifier: 76:00:C9:D4:67:1A:57:CD:5A:9B:7D:86:81:CE:EF:99:04:32:1E:06
Authority key identifier: 66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
Certificate issuer: /CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Certificate serial: 019D39AE5007D602376481A8C70C556CAEC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
Manifest number: 141C
Signing time: Sun 29 Mar 2026 13:00:18 +0000
Manifest this update: Sun 29 Mar 2026 13:00:18 +0000
Manifest next update: Mon 30 Mar 2026 13:00:18 +0000
Files and hashes: 1: HJJKjlD8w6pwUXxhSyRU-4S7rcs.roa (hash: ijFhOfJ/0CwOhPEkrD+B1c1Juz952plWRqWilLY1GJ0=)
2: ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl (hash: eI0TBvIkqWLfRK53XkYBUq5gtvc8g7MjGfniKx4MP8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:50:07:d6:02:37:64:81:a8:c7:0c:55:6c:ae:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Validity
Not Before: Mar 29 13:00:18 2026 GMT
Not After : Mar 30 13:00:18 2026 GMT
Subject: CN=7600c9d4671a57cd5a9b7d8681ceef9904321e06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:94:af:d7:eb:db:9e:21:0d:40:50:a2:46:52:
b7:b2:a8:4e:21:54:27:80:23:c9:e9:3e:49:11:6a:
bd:03:2a:0d:8a:a6:7a:44:3f:d5:c8:ca:c3:1b:77:
b4:6d:16:ee:df:ca:75:ba:67:c0:38:df:94:18:3e:
53:9c:85:33:ee:8d:91:bd:93:dd:1d:26:a2:54:4a:
16:bb:ac:dc:2c:39:e2:f9:27:f5:b2:da:d9:25:ba:
17:0b:71:a8:ba:00:0c:32:37:2a:d5:4f:69:d3:e0:
15:28:2a:1a:d5:cd:d1:ff:7e:2b:27:87:0a:39:5d:
45:c3:07:3d:dc:91:97:95:52:f7:9f:ef:5d:09:3f:
8a:41:0c:17:0c:45:d2:e8:72:b2:01:7c:34:fe:b1:
7d:42:e2:97:68:41:2e:be:0f:bc:48:0b:e6:e5:b3:
f0:3e:83:29:38:d2:7c:cf:4c:42:66:2e:b7:97:b2:
b0:ba:46:2c:01:8e:d5:77:c5:26:26:f5:55:9c:97:
52:dc:51:e6:8b:a1:bd:0a:47:da:c8:e0:96:c5:c1:
1e:61:37:97:b7:9d:70:7b:36:71:44:95:99:fc:97:
89:02:22:97:64:5e:ef:58:34:d6:54:ad:0c:a1:a0:
75:5a:76:5b:17:b4:18:05:87:e6:ec:69:f4:e5:f9:
dd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:00:C9:D4:67:1A:57:CD:5A:9B:7D:86:81:CE:EF:99:04:32:1E:06
X509v3 Authority Key Identifier:
keyid:66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d9:bb:e6:d2:61:be:f1:43:7b:8a:38:e4:ac:22:87:a3:13:
28:42:2b:71:85:c1:3a:3e:32:b2:67:80:f1:dd:70:60:87:42:
a6:e3:7f:62:e1:a0:57:90:5b:26:d2:02:42:46:0b:af:b5:8a:
91:df:aa:2e:5e:f6:2d:88:38:26:23:65:38:12:de:51:a8:91:
e4:00:9d:61:31:89:6e:23:fe:54:0c:c6:3e:38:2f:b5:af:96:
cf:f3:1d:f8:40:3b:b0:28:ef:69:70:ec:b7:fb:02:e2:50:58:
8c:d9:ba:5c:5e:ff:64:b6:6f:81:d6:45:61:eb:65:7a:29:2b:
20:0f:4e:ec:28:a7:69:e2:e0:0f:98:f0:61:01:1a:d3:a5:89:
85:84:01:0d:84:a5:c1:fe:f6:ec:47:ee:d4:82:fa:77:02:92:
c6:9b:b2:cf:c3:5e:8a:93:00:73:fa:18:94:81:4a:cb:52:63:
85:b1:fe:88:ef:10:c3:a5:5a:db:24:4b:6c:76:3b:a4:2f:c0:
b4:c7:86:67:16:bc:27:14:6a:61:e8:25:f4:f2:8c:f9:2d:14:
c9:72:ae:cc:3b:81:eb:fb:87:8b:76:87:05:64:58:30:c7:fa:
85:0a:52:5a:8c:04:17:c2:5a:9c:26:77:16:6c:3c:42:d4:4d:
6d:c6:43:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:25:12 2026 by rpki-client