Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
File: zrxhguhz_3oDHIiV79xXw2hx3XI.mft (raw, json)
Hash identifier: rYazqDfkhsr+JxRYCQLZPHshqZnthVY1ZzdZYZTzBAo=
Subject key identifier: D6:88:5D:B1:02:B0:1D:C6:F1:32:17:5F:E2:3B:D7:65:9E:BC:A4:04
Authority key identifier: CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72
Certificate issuer: /CN=cebc6182e873ff7a031c8895efdc57c36871dd72
Certificate serial: 019D38661B799E7C3CD0556BC30E61FDF413
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
Manifest number: 0423
Signing time: Sun 29 Mar 2026 07:01:48 +0000
Manifest this update: Sun 29 Mar 2026 07:01:48 +0000
Manifest next update: Mon 30 Mar 2026 07:01:48 +0000
Files and hashes: 1: zrxhguhz_3oDHIiV79xXw2hx3XI.crl (hash: Gkx+3E1B/yBDo6KqrHa1MQSnCeoosneBNmxELjJmywA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:1b:79:9e:7c:3c:d0:55:6b:c3:0e:61:fd:f4:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cebc6182e873ff7a031c8895efdc57c36871dd72
Validity
Not Before: Mar 29 07:01:48 2026 GMT
Not After : Mar 30 07:01:48 2026 GMT
Subject: CN=d6885db102b01dc6f132175fe23bd7659ebca404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:cd:4d:7d:ae:7a:e5:4b:fb:5f:60:11:bb:0e:
69:d1:5e:79:af:9c:2d:96:66:e7:51:d6:40:cb:5e:
13:38:ce:83:86:f0:1b:f5:6e:2a:64:b6:68:bb:07:
44:b4:29:07:9b:ee:37:89:62:09:14:09:26:a6:1a:
65:16:4e:fa:8f:d5:e0:88:29:03:43:a9:42:cd:6b:
0e:23:73:87:c2:6c:64:43:02:47:10:20:3d:41:9d:
e3:ae:ff:5b:c0:2b:6e:52:2a:30:4d:8f:6e:ad:d6:
73:93:a1:4f:35:f4:22:97:63:e5:b3:41:f2:1f:27:
59:29:2c:b5:c5:47:ff:f7:d8:b2:8c:20:3e:7b:d2:
eb:88:9a:ae:3f:71:c8:60:3a:1f:67:54:5c:1e:13:
8f:2a:a9:d2:f4:f1:c4:58:ee:da:84:08:cb:6b:55:
b0:e6:f8:31:1c:8b:4f:83:b6:5f:ad:85:05:2e:2b:
61:51:a0:ce:40:7f:89:28:a7:04:e4:c3:ca:9b:71:
1d:3c:83:40:77:3f:c4:c2:72:19:76:8b:39:9b:2e:
0d:2b:ca:de:f0:28:61:2d:97:66:ca:08:94:90:75:
48:7c:39:97:30:37:b5:ab:6a:5d:e6:ea:e4:7f:b1:
56:07:72:ee:57:ac:00:17:96:f8:81:fb:d4:dc:40:
25:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:88:5D:B1:02:B0:1D:C6:F1:32:17:5F:E2:3B:D7:65:9E:BC:A4:04
X509v3 Authority Key Identifier:
keyid:CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:ac:7f:4d:d5:73:8f:7f:be:85:af:5d:47:18:a2:a2:e4:2c:
44:6d:fd:00:ee:97:cf:27:c3:f6:90:8a:bf:c8:7d:74:be:a6:
14:e2:5f:d6:28:3b:93:1d:d0:bc:ef:7e:40:aa:41:77:9d:0b:
61:a7:5a:87:cc:fc:3c:db:e3:5c:10:4b:d8:b5:e9:bf:40:7e:
f7:f0:61:e1:e5:b9:8d:24:6f:d0:12:a5:79:62:dc:97:9f:ac:
52:d6:92:8f:b6:3b:1a:98:25:fd:5b:2a:d3:84:7f:07:a6:33:
8a:c8:25:c3:81:5c:0a:69:37:a6:2a:36:68:cf:e2:69:ff:de:
a7:29:79:2b:e1:6f:da:8c:f1:7e:c6:f8:a3:3c:99:0b:60:fa:
f6:b8:fe:3b:b8:db:78:ac:4f:66:39:17:39:2f:96:dd:07:70:
6f:16:53:75:62:73:2b:21:96:34:f7:4a:0d:73:44:86:c8:6b:
09:39:be:09:c7:ca:cc:7d:6a:71:15:1b:3f:b2:d1:56:9f:93:
aa:3f:70:a0:df:3a:53:ae:85:4f:c1:18:2d:5f:52:bd:9c:43:
a4:18:d0:b9:97:91:72:40:d5:c3:29:5f:a2:e5:23:8b:c5:7f:
05:d7:df:31:1b:3a:40:35:46:67:77:e9:57:53:c6:65:e7:c3:
60:33:eb:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:28 2026 by rpki-client