Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
File: Z8i133U8dJrleBD52T87pRrgXVw.mft (raw, json)
Hash identifier: AvNvrdd11oECJmvKLAa+rP2112DxREjxHfpDQNL/lTo=
Subject key identifier: 87:D4:23:1D:C7:CF:31:E5:EF:EE:B9:61:ED:4C:F9:ED:95:85:D8:59
Authority key identifier: 67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
Certificate issuer: /CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Certificate serial: 019D3866270499C9DFD3301EE1C49BB5F3E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
Manifest number: 118B
Signing time: Sun 29 Mar 2026 07:01:51 +0000
Manifest this update: Sun 29 Mar 2026 07:01:51 +0000
Manifest next update: Mon 30 Mar 2026 07:01:51 +0000
Files and hashes: 1: Z8i133U8dJrleBD52T87pRrgXVw.crl (hash: VoUfRLLFNxjP7VjYSY18uh+KAUDpGMvW0OiLUI2zj+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:27:04:99:c9:df:d3:30:1e:e1:c4:9b:b5:f3:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c
Validity
Not Before: Mar 29 07:01:51 2026 GMT
Not After : Mar 30 07:01:51 2026 GMT
Subject: CN=87d4231dc7cf31e5efeeb961ed4cf9ed9585d859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9d:0a:66:62:20:c7:b1:7a:fe:25:21:81:3c:
c2:09:88:b3:f7:0d:ba:77:c1:72:28:23:09:20:30:
6b:07:ac:4d:5d:70:2d:d8:81:81:fe:43:dc:bd:37:
68:66:49:42:e6:18:50:8d:4e:73:e3:02:11:a2:a6:
82:09:b1:fd:dd:b2:3b:ca:e9:a1:44:27:72:6c:2d:
00:a1:9c:4e:cb:d7:a2:30:df:a9:f7:9a:1f:01:2b:
5c:27:db:92:b1:97:41:d5:b6:8c:11:83:11:82:2d:
c1:8c:99:fe:c0:38:5d:05:51:33:7f:dd:11:1d:3d:
13:4e:f8:4f:13:32:c3:75:10:87:69:19:67:4e:d9:
47:d8:ff:3e:64:d3:0d:16:63:34:19:2e:b9:40:26:
ca:2e:c8:e0:cd:68:cf:aa:27:b8:5a:91:42:0b:df:
53:52:f5:b9:ad:b5:2f:a9:ee:67:ae:76:ad:18:91:
20:bf:7d:27:80:4a:47:31:32:15:32:1f:0c:d2:9b:
cb:dd:b7:df:92:32:73:6e:6e:4a:70:26:3d:1c:d2:
db:78:22:4b:09:ed:f0:e3:dc:ec:29:51:de:e9:ce:
e9:33:c4:f8:16:1d:f3:8f:cf:5f:95:09:89:d1:16:
aa:1e:6a:3b:32:71:28:94:59:7d:5f:e4:18:6c:e3:
e9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D4:23:1D:C7:CF:31:E5:EF:EE:B9:61:ED:4C:F9:ED:95:85:D8:59
X509v3 Authority Key Identifier:
keyid:67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:6c:d6:a2:2b:96:5d:10:50:ea:a1:e9:45:13:13:e2:57:c2:
9b:a4:80:ea:4d:33:9c:b4:94:5c:2f:68:e2:d4:05:aa:db:b3:
0c:9f:b0:2a:ad:fb:45:16:f3:04:32:38:a7:64:b1:c9:16:7f:
9c:23:fd:81:5d:ae:25:41:d8:d0:46:bf:4a:ea:a0:fc:9a:b2:
0c:7f:11:0f:fb:ec:80:03:96:d7:09:2a:d7:d2:38:a6:67:3d:
b3:ee:60:9f:3c:51:d0:45:07:d3:da:73:34:97:7c:a4:ec:44:
56:bf:b1:5e:54:26:2f:b9:ba:9e:da:b4:9b:6a:59:e1:55:65:
b0:42:70:e6:24:06:53:a9:be:a7:da:5f:b3:9d:54:6e:aa:db:
71:d4:5b:76:24:f6:6a:60:ae:3c:53:db:90:8f:5a:9a:e2:2c:
24:d1:62:eb:2c:e7:90:b8:f1:df:93:5e:ee:5d:b2:77:2a:9e:
5d:b2:6c:f7:27:1d:40:19:46:1f:ba:87:5e:1c:7e:10:10:02:
92:9a:91:b7:63:65:e4:c9:b3:e0:b1:ab:34:88:9b:fb:97:8a:
28:90:09:36:32:38:6d:42:65:bf:8d:ee:58:f9:75:57:a5:1c:
27:78:1d:91:8b:fe:17:f1:3c:db:f9:d2:45:0b:85:21:7f:38:
a3:1d:cf:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:01 2026 by rpki-client