Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft
File: ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft (raw, json)
Hash identifier: O3Whg7z5K1pOAd40LG7BQh//idDyozAxvfxb3dhT6UQ=
Subject key identifier: 55:74:BF:92:40:98:8D:C4:2A:35:74:4E:1A:22:B5:03:0C:29:00:0F
Authority key identifier: 67:0C:D7:B2:BC:FB:37:4A:39:80:CC:E0:D0:80:92:23:87:54:EA:09
Certificate issuer: /CN=670cd7b2bcfb374a3980cce0d08092238754ea09
Certificate serial: 019D3752B71C5D547C72D8A3611A01FCD2A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft
Manifest number: A4
Signing time: Sun 29 Mar 2026 02:01:00 +0000
Manifest this update: Sun 29 Mar 2026 02:01:00 +0000
Manifest next update: Mon 30 Mar 2026 02:01:00 +0000
Files and hashes: 1: 5bgqx2VEq8u00WX1KeTOdGiLPJY.roa (hash: 4nmyLLtqtexhAFPaVm7KJ8Zr/ZpDN9w/GZObDNlhUyI=)
2: ZwzXsrz7N0o5gMzg0ICSI4dU6gk.crl (hash: JuV9Ntx/vgNpGZcJ160aWyAZBDy8FQPR5DSJH2jfHfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:b7:1c:5d:54:7c:72:d8:a3:61:1a:01:fc:d2:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670cd7b2bcfb374a3980cce0d08092238754ea09
Validity
Not Before: Mar 29 02:01:00 2026 GMT
Not After : Mar 30 02:01:00 2026 GMT
Subject: CN=5574bf9240988dc42a35744e1a22b5030c29000f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ca:00:18:5e:42:62:6a:0c:e3:95:b9:4d:1a:
e6:ef:b3:0a:46:c9:5e:c3:d3:00:15:e8:a8:fb:69:
80:54:4d:be:1f:24:c6:53:b6:57:d1:11:8f:9e:31:
4c:7f:17:25:0f:8d:07:d6:f1:65:69:3c:d5:5a:aa:
bf:73:94:dd:2e:a7:08:e1:a8:4b:6b:f4:bb:72:76:
0a:89:74:96:2e:13:ce:44:ba:11:03:6e:90:73:6e:
3d:06:bf:7a:7f:b9:dd:eb:5e:3c:a4:d6:60:9b:40:
ab:dd:a2:ff:7a:b8:c3:11:cf:58:7c:ae:bd:57:dc:
e0:a1:03:b8:ed:d8:8f:d0:54:5f:fe:26:67:58:c2:
da:6a:e2:40:ac:4c:b2:74:f6:ea:8c:92:16:be:d2:
78:cb:18:37:cb:a3:2d:46:ac:80:59:3b:5b:bd:4e:
e4:6b:28:04:0b:61:af:06:da:dc:37:31:49:19:8d:
b2:67:bd:3a:3a:85:c8:10:6f:ab:32:4c:e2:36:60:
0b:c1:bd:80:8c:d6:53:50:7d:55:c3:a8:c9:a3:ff:
53:9f:e6:2c:83:ec:ef:45:53:59:4f:7f:18:3d:ee:
20:fa:01:38:8e:b3:39:e5:97:b4:b6:d0:19:d1:a5:
2b:be:ab:4a:16:c0:b5:47:2b:7e:c4:62:cc:26:f1:
5b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:74:BF:92:40:98:8D:C4:2A:35:74:4E:1A:22:B5:03:0C:29:00:0F
X509v3 Authority Key Identifier:
keyid:67:0C:D7:B2:BC:FB:37:4A:39:80:CC:E0:D0:80:92:23:87:54:EA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:e3:27:cb:d6:8d:7b:de:57:d3:08:18:f0:73:10:ee:78:af:
e4:c6:ab:24:fa:10:00:1d:54:b7:26:4d:24:c2:74:5f:05:dc:
dc:e0:df:8e:c9:cc:94:7f:d5:0f:2d:70:63:76:7b:17:0f:0d:
0c:ca:39:33:e1:59:1b:ad:04:ac:d3:01:f0:8a:70:b1:32:ef:
12:30:58:ec:76:f2:be:05:74:09:67:c3:58:43:7e:6c:a4:6c:
d3:bd:04:4f:f0:b1:4f:0f:ca:e7:e6:76:65:62:4c:39:45:18:
f4:2d:b5:65:ac:3a:09:1d:9e:9b:64:01:46:57:a0:4a:88:7b:
e1:8f:4e:b1:c2:ff:a4:0d:ac:6f:27:27:46:8d:d9:e7:d3:11:
07:13:76:3c:eb:e6:3a:72:2c:53:d7:ff:9a:e9:90:70:c3:a6:
31:6e:09:c2:2c:8c:74:17:bd:44:85:6b:0d:a0:6a:bf:94:75:
4f:f7:8c:59:fd:79:d5:f6:8f:1c:df:08:37:1f:f3:a2:82:a2:
78:3f:ca:36:00:4a:49:10:f7:95:00:73:1a:6a:06:12:e5:9c:
87:ff:c4:17:64:79:d0:e9:5e:00:f3:bb:de:42:95:94:cd:79:
74:d0:4a:f7:65:cd:6a:8b:94:3a:bb:50:9f:25:4f:61:89:4f:
05:87:9c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:18 2026 by rpki-client