Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json)
Hash identifier: nYuRPvFOv8wPUJHxZ/aPq/jkl4FQNhs5FUGrHg8KzRA=
Subject key identifier: 12:4E:CE:92:67:D3:41:C6:5F:50:37:C1:9B:1A:37:A9:EC:34:FA:C6
Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Certificate serial: 019D389BD8F19C0B29BEE99B521962E9DB28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
Manifest number: 083D
Signing time: Sun 29 Mar 2026 08:00:30 +0000
Manifest this update: Sun 29 Mar 2026 08:00:30 +0000
Manifest next update: Mon 30 Mar 2026 08:00:30 +0000
Files and hashes: 1: uDy0uboGuQ8F6QOEny3tapvn0PQ.roa (hash: 3MCli/TbeRr8V0MnXhO1yofF6LpNILL0P0q1Ula5Od8=)
2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: bGNpQskHuIEBy66qdO5MyLmD0t/wOGgVK+eXzHIjIHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:d8:f1:9c:0b:29:be:e9:9b:52:19:62:e9:db:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a
Validity
Not Before: Mar 29 08:00:30 2026 GMT
Not After : Mar 30 08:00:30 2026 GMT
Subject: CN=124ece9267d341c65f5037c19b1a37a9ec34fac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0d:e2:30:10:6a:74:6a:ae:eb:d6:93:4a:5a:
54:36:e5:cd:ff:43:cf:30:e1:4e:b7:8c:1d:2f:6b:
95:f2:f6:41:01:00:23:5d:1e:05:e8:ba:ff:09:a3:
66:ed:6c:fd:c2:a5:6b:3f:dc:ff:91:2e:8e:48:d6:
cc:13:95:ae:67:76:75:cb:17:62:3f:89:a9:ba:ec:
04:83:b5:5f:5d:f2:44:28:57:c4:fa:da:03:81:6e:
d9:f7:cf:6b:25:6e:7f:80:f8:74:e7:7a:4f:58:b2:
fc:3e:19:9f:cb:7d:a1:ad:33:5d:c8:f1:54:ed:0b:
9b:59:04:bd:29:dc:6e:38:69:5a:3c:73:02:88:9c:
91:f4:42:d9:10:ea:ee:4d:18:3f:c5:7d:7b:c0:bd:
c8:5d:bd:14:d9:d8:b5:f2:60:5b:32:8b:46:cd:5f:
9b:69:13:70:15:03:a1:3d:9e:7f:60:cc:a1:fe:cf:
82:c8:3a:96:e0:66:08:05:19:58:90:df:da:72:c4:
ff:ea:39:bb:55:bf:c4:98:c6:ce:f8:6c:69:f9:e3:
53:28:ef:f5:77:32:c8:5f:95:df:df:bd:49:dd:0c:
73:f2:ca:cb:05:e7:9e:db:27:09:45:b1:83:e3:46:
ea:72:e6:62:43:1a:37:56:97:bd:8f:60:6f:d6:d6:
f2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4E:CE:92:67:D3:41:C6:5F:50:37:C1:9B:1A:37:A9:EC:34:FA:C6
X509v3 Authority Key Identifier:
keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:14:17:c2:ce:dd:12:ee:41:91:c1:e4:0e:26:94:55:ef:a6:
22:82:d7:65:6f:72:a0:56:74:cc:e6:fc:aa:91:f4:fb:a8:e4:
55:0d:96:8f:ad:f1:58:8a:d8:c2:77:6b:5d:bd:50:c1:bf:b7:
e4:03:f1:a2:c2:66:85:2e:b9:61:49:77:ca:5c:b1:03:71:d2:
fb:21:b4:0d:0d:19:c1:77:a0:54:ca:f7:7a:31:a5:46:40:51:
49:ae:b6:d6:6a:7d:f4:49:cd:02:6e:05:06:65:d7:fc:43:dc:
a0:0f:9a:ed:60:fa:79:a3:74:35:ec:d0:8d:d0:5d:d2:12:df:
88:b8:dc:47:16:bd:34:80:e5:87:4e:ca:9b:08:0d:99:cd:83:
7d:a8:dd:5d:ba:3d:ec:71:39:58:f3:86:bc:89:6c:bb:43:3a:
a2:e4:16:e4:13:99:db:10:e3:12:2f:cb:8c:b8:30:1d:66:44:
ff:c5:87:ba:1a:37:57:e0:3a:a9:09:92:f9:07:cd:04:91:d4:
fa:d4:82:13:9c:e7:85:08:67:76:d3:5a:00:b7:e8:38:8d:c9:
58:a9:59:a5:ea:9b:51:30:1d:32:11:2f:e6:2d:46:4b:b5:b9:
38:97:4b:03:39:17:dc:c5:00:3e:3f:5f:09:d8:29:dc:5e:3a:
f1:18:36:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:55 2026 by rpki-client