Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3689be-8152-4bad-b996-3cda71373dc9/1/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.mft
File: zbxDGxyYhtwrIQCNzP3hjbc1Nxw.mft (raw, json)
Hash identifier: P3RlXvg7CB0oTj1KuKBx1BCRwdnJ+nnUHh+IOf0PZbE=
Subject key identifier: 7E:E3:0C:26:66:55:8E:66:B1:F6:A9:7F:70:DC:D2:97:52:76:DD:E9
Authority key identifier: CD:BC:43:1B:1C:98:86:DC:2B:21:00:8D:CC:FD:E1:8D:B7:35:37:1C
Certificate issuer: /CN=cdbc431b1c9886dc2b21008dccfde18db735371c
Certificate serial: 019D3A1C84C149E527C7904B7E1B9CC92B29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3689be-8152-4bad-b996-3cda71373dc9/1/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.mft
Manifest number: 060A
Signing time: Sun 29 Mar 2026 15:00:40 +0000
Manifest this update: Sun 29 Mar 2026 15:00:40 +0000
Manifest next update: Mon 30 Mar 2026 15:00:40 +0000
Files and hashes: 1: zbxDGxyYhtwrIQCNzP3hjbc1Nxw.crl (hash: xDqEYjNnQFnLJP7Tw65CYtuzu1zf1zJSFixG07DEumw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/3689be-8152-4bad-b996-3cda71373dc9/1/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/3689be-8152-4bad-b996-3cda71373dc9/1/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:84:c1:49:e5:27:c7:90:4b:7e:1b:9c:c9:2b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdbc431b1c9886dc2b21008dccfde18db735371c
Validity
Not Before: Mar 29 15:00:40 2026 GMT
Not After : Mar 30 15:00:40 2026 GMT
Subject: CN=7ee30c2666558e66b1f6a97f70dcd2975276dde9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3a:a6:d5:c4:ea:f4:f3:b8:c2:00:50:f3:f0:
7b:c9:32:f2:df:4c:1e:df:84:22:df:30:c8:51:a9:
65:ab:b9:f3:fe:2f:f7:75:8c:a4:35:2e:23:78:19:
26:6f:61:ea:17:69:6d:37:fb:c0:1b:ee:0c:ae:e3:
48:bf:dc:da:53:61:9b:c0:25:a4:7e:0f:8f:2c:8f:
af:00:8e:5a:e9:64:c9:31:f5:7b:48:c1:9e:de:aa:
de:6f:41:c0:00:ba:b6:b0:06:43:8a:b6:74:61:b1:
f1:ec:bc:cf:e2:31:47:e5:41:04:ee:0e:87:bd:fe:
db:da:a8:34:f5:46:bb:08:31:b1:d5:87:7e:6a:29:
e3:2d:b1:57:51:89:26:6c:ba:f4:a2:06:25:36:e7:
e5:81:34:86:d5:15:ed:fa:81:aa:ff:ea:b9:32:8c:
11:7e:6b:51:7b:42:50:14:e5:e4:9c:fd:df:84:2a:
52:43:39:87:a1:7c:f9:cb:08:90:2b:25:75:06:24:
6d:2c:f1:b5:75:a3:1c:0d:ff:7f:c6:39:58:48:f1:
57:da:89:da:0d:0f:fa:c9:fe:02:11:4f:1a:00:4c:
df:ba:bd:8e:ba:46:6e:ef:61:23:bd:f1:9a:74:f9:
2c:f2:9b:5b:33:8b:e7:1d:91:83:53:c6:67:40:0d:
5d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E3:0C:26:66:55:8E:66:B1:F6:A9:7F:70:DC:D2:97:52:76:DD:E9
X509v3 Authority Key Identifier:
keyid:CD:BC:43:1B:1C:98:86:DC:2B:21:00:8D:CC:FD:E1:8D:B7:35:37:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3689be-8152-4bad-b996-3cda71373dc9/1/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3689be-8152-4bad-b996-3cda71373dc9/1/zbxDGxyYhtwrIQCNzP3hjbc1Nxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:c2:6b:eb:cf:92:85:90:05:8f:9c:0d:b9:da:73:28:25:dd:
a3:dc:b3:54:83:43:ea:8d:0e:c5:ee:9c:68:f3:04:cc:2e:a3:
0e:ab:30:38:d8:d9:1d:f9:55:48:6a:0b:7e:60:ce:23:ff:6f:
36:48:4d:04:91:12:60:c3:6d:97:44:fb:67:ac:73:f4:10:f1:
e7:ff:5b:d9:36:f5:87:f1:cd:f8:d8:9c:49:98:36:c9:49:ea:
02:2e:d4:e9:00:79:cb:95:7e:cd:f2:70:ee:d8:7f:06:c7:9e:
ce:1a:d2:15:cc:1b:e5:e7:96:7a:b2:ad:1a:ea:ec:16:b1:45:
eb:0f:dd:5f:f4:53:5c:20:e8:cf:04:5f:23:39:1b:45:1b:b0:
95:85:70:0a:c8:55:f2:66:a9:07:87:02:3a:41:1d:51:9e:1c:
d1:d3:8c:ca:fe:82:e9:d5:4e:3d:cd:12:9a:64:7c:b7:34:1b:
13:85:54:48:e1:e6:8f:c0:2c:1d:e5:a9:97:71:5b:18:38:bf:
80:58:8b:05:b5:0e:46:1c:27:52:57:68:9c:e1:47:a7:09:9d:
f4:0a:9c:d4:a2:84:26:d6:77:e9:c3:de:84:98:21:5a:27:30:
cd:aa:cd:d4:ad:63:f4:eb:55:47:4f:0e:b1:30:55:c7:d0:80:
9c:42:75:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HITBSeUnx5BLfhucySspMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYmM0MzFiMWM5ODg2ZGMyYjIxMDA4ZGNjZmRlMThkYjcz
NTM3MWMwHhcNMjYwMzI5MTUwMDQwWhcNMjYwMzMwMTUwMDQwWjAzMTEwLwYDVQQD
Eyg3ZWUzMGMyNjY2NTU4ZTY2YjFmNmE5N2Y3MGRjZDI5NzUyNzZkZGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzqm1cTq9PO4wgBQ8/B7yTLy30we
34Qi3zDIUallq7nz/i/3dYykNS4jeBkmb2HqF2ltN/vAG+4MruNIv9zaU2GbwCWk
fg+PLI+vAI5a6WTJMfV7SMGe3qreb0HAALq2sAZDirZ0YbHx7LzP4jFH5UEE7g6H
vf7b2qg09Ua7CDGx1Yd+ainjLbFXUYkmbLr0ogYlNuflgTSG1RXt+oGq/+q5MowR
fmtRe0JQFOXknP3fhCpSQzmHoXz5ywiQKyV1BiRtLPG1daMcDf9/xjlYSPFX2ona
DQ/6yf4CEU8aAEzfur2OukZu72EjvfGadPks8ptbM4vnHZGDU8ZnQA1dgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH7jDCZmVY5msfapf3Dc0pdSdt3pMB8GA1UdIwQY
MBaAFM28QxscmIbcKyEAjcz94Y23NTccMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemJ4REd4eVlodHdySVFDTnpQM2hqYmMxTnh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zNjg5YmUtODE1Mi00YmFkLWI5OTYt
M2NkYTcxMzczZGM5LzEvemJ4REd4eVlodHdySVFDTnpQM2hqYmMxTnh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy8zNjg5YmUtODE1Mi00YmFkLWI5OTYtM2NkYTcxMzczZGM5
LzEvemJ4REd4eVlodHdySVFDTnpQM2hqYmMxTnh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZMJr68+S
hZAFj5wNudpzKCXdo9yzVIND6o0Oxe6caPMEzC6jDqswONjZHflVSGoLfmDOI/9v
NkhNBJESYMNtl0T7Z6xz9BDx5/9b2Tb1h/HN+NicSZg2yUnqAi7U6QB5y5V+zfJw
7th/BseezhrSFcwb5eeWerKtGursFrFF6w/dX/RTXCDozwRfIzkbRRuwlYVwCshV
8mapB4cCOkEdUZ4c0dOMyv6C6dVOPc0SmmR8tzQbE4VUSOHmj8AsHeWpl3FbGDi/
gFiLBbUORhwnUldonOFHpwmd9Aqc1KKEJtZ36cPehJghWicwzarN1K1j9OtVR08O
sTBVx9CAnEJ10A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:07 2026 by rpki-client