Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: ZEUmLFabBfRpSu7gOTkOJUeYIc3GRTYIBh8rcrjKjjE=
Subject key identifier: 93:52:2B:7B:1C:FF:0D:37:8C:0F:6A:40:86:6A:0B:14:78:DD:43:A4
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 019D38660138E9BBE0CC0981EF06C48C7D58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 113E
Signing time: Sun 29 Mar 2026 07:01:42 +0000
Manifest this update: Sun 29 Mar 2026 07:01:42 +0000
Manifest next update: Mon 30 Mar 2026 07:01:42 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: uzO5xguEk4mGAcSTerTJ1bgIDRQ8EBijNlVXw1xDQwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:01:38:e9:bb:e0:cc:09:81:ef:06:c4:8c:7d:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: Mar 29 07:01:42 2026 GMT
Not After : Mar 30 07:01:42 2026 GMT
Subject: CN=93522b7b1cff0d378c0f6a40866a0b1478dd43a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a3:4b:67:fb:a8:41:87:a8:11:d1:8b:cc:26:
46:26:ef:14:2c:0e:48:eb:6f:cf:ea:20:a5:e1:5c:
a9:18:06:f3:64:8a:ac:ab:80:79:35:b6:b5:29:d2:
9a:82:d5:d5:7e:0d:45:30:7d:d1:0b:52:c9:69:55:
c9:d1:3a:40:6e:1c:63:fe:40:39:a8:ef:5d:08:cc:
dd:6e:70:20:cc:b4:7d:c0:3d:3c:39:53:f7:cf:89:
eb:8f:3b:90:c5:46:29:dd:8d:0a:e7:ce:c3:9a:f9:
84:ea:d3:95:22:86:a7:89:49:c4:ce:91:9a:a0:bf:
bc:60:7b:12:50:dc:1a:28:94:a3:16:ec:a9:49:4d:
16:17:44:2f:f0:2e:c0:b8:28:dc:11:7f:44:26:2f:
fd:6b:f5:2a:bb:92:13:f0:c8:56:d6:a4:ff:b4:61:
23:99:78:36:ff:a4:31:4e:fa:6a:ad:bb:6e:05:b3:
ad:f4:4c:2c:a3:bd:13:76:a1:25:a9:e6:4e:2c:d1:
c5:d9:23:fd:bb:b5:70:bd:5c:e9:c5:4d:74:0b:14:
5b:bc:89:46:59:e2:32:6c:c6:91:2e:9a:c2:5c:04:
48:89:68:6a:fa:3e:30:5b:11:67:f5:38:a4:7c:42:
f9:97:01:92:43:45:02:7c:1d:16:9e:e2:d7:ad:36:
0a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:52:2B:7B:1C:FF:0D:37:8C:0F:6A:40:86:6A:0B:14:78:DD:43:A4
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:f3:ed:a4:e9:3e:ac:28:cf:d2:27:b6:85:01:aa:9e:60:fb:
14:f6:b4:04:e4:79:fd:c9:2f:f3:e6:63:73:cf:40:4f:dc:7b:
58:85:bb:b1:aa:52:3d:18:95:c3:ee:bd:30:55:60:0d:54:5e:
16:c1:2d:a6:60:61:5d:91:32:4b:42:50:15:9d:00:b2:e4:00:
1b:de:6d:25:ff:42:f8:2d:c2:93:62:72:6e:b5:03:ed:0d:88:
01:b0:86:a5:37:8f:e2:87:9e:0c:ee:ce:b7:eb:73:59:5d:44:
52:30:7e:d8:a4:35:63:67:27:fd:04:e6:30:40:e6:fb:a5:9e:
60:1b:fa:6b:d2:35:12:e0:44:93:1d:e0:5d:25:c8:3f:bc:8c:
0b:27:54:0b:6a:b9:91:b3:7c:97:61:28:3e:61:8b:84:b9:3c:
4e:2b:9e:6a:c8:a1:dd:0d:ee:69:2f:1e:2e:86:7e:29:a2:d3:
9b:ea:ed:41:94:8c:d5:66:6e:22:b4:78:3e:ed:fa:aa:1d:6c:
a3:dc:d8:3d:f9:08:79:4f:a0:6c:e9:92:08:25:15:73:81:8f:
a4:27:eb:0f:13:07:6e:54:c9:38:77:50:00:4b:30:ee:d9:6f:
86:c6:ad:7c:66:67:4b:6b:c0:6d:28:ef:79:be:20:a2:1e:6c:
a4:1c:28:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:24 2026 by rpki-client