Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
File: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft (raw, json)
Hash identifier: 31upy8JFjYYqkLMLHyyztjZ5cRUoYD2W212ds4DBQHk=
Subject key identifier: 09:62:DD:29:98:85:D4:61:F1:53:17:04:14:71:F7:F9:7D:AC:19:4C
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 019CC89A20FAD5594E5E9E886CB52D3A7F1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
Manifest number: 1488
Signing time: Sat 07 Mar 2026 14:01:09 +0000
Manifest this update: Sat 07 Mar 2026 14:01:09 +0000
Manifest next update: Sun 08 Mar 2026 14:01:09 +0000
Files and hashes: 1: EsvahZdQZVhluZsLSr98J_sMDK4.roa (hash: DNS5SQ17LOTRnwWYUw1eb+IWwNLBZu1qV/4r+8SuduY=)
2: ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl (hash: Um5KeAsEmpfQfc9xsFsKGKtflGWolh0FjJyMj70DvRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c8:9a:20:fa:d5:59:4e:5e:9e:88:6c:b5:2d:3a:7f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Mar 7 14:01:09 2026 GMT
Not After : Mar 8 14:01:09 2026 GMT
Subject: CN=0962dd299885d461f15317041471f7f97dac194c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7f:8e:94:63:4f:b6:41:b9:28:27:2c:49:8c:
6f:db:55:2e:bb:15:14:8b:21:0d:4a:95:d7:0a:46:
2c:a5:89:36:bb:fa:1d:f3:9c:05:0f:85:a7:bd:85:
9f:b2:cd:af:cd:29:12:f1:30:91:06:b0:c5:24:88:
d7:00:bc:b7:1d:b0:f0:ed:65:7d:3e:05:80:1a:63:
9b:6d:74:06:72:2b:a2:6d:24:1d:66:a8:7f:be:c9:
ce:72:94:d5:3d:51:74:9a:3b:14:3b:70:51:83:8d:
43:84:3d:0b:03:9d:b4:07:fa:9f:62:3f:b3:49:cb:
69:8e:85:ee:93:c7:73:ae:45:4f:e3:4e:ad:1d:78:
31:a3:9a:68:79:c0:e4:79:dc:74:0e:b5:06:8a:3e:
5c:5c:57:73:2c:6a:1f:b1:b0:d2:e7:9c:d4:21:10:
e7:42:37:07:5d:00:58:36:b6:be:4b:95:02:95:3f:
fa:73:8d:82:99:55:16:51:72:58:43:1d:c2:92:ec:
70:ee:49:5c:24:20:ff:9e:9e:35:21:af:98:42:11:
07:b1:cd:0c:3a:56:10:be:d0:a4:cc:e0:44:23:b2:
f7:6d:39:65:3f:0c:d7:79:5a:09:26:4f:0f:f0:04:
c5:f4:16:0b:bd:0f:dc:89:90:2f:fd:97:99:75:07:
f5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:62:DD:29:98:85:D4:61:F1:53:17:04:14:71:F7:F9:7D:AC:19:4C
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:f0:3a:a7:00:77:a3:a4:5c:18:b8:69:4f:09:11:98:63:65:
c3:5b:4c:dd:0f:0c:2c:17:b5:90:47:ac:2a:3f:2c:ce:36:b1:
06:db:7a:9a:a0:f8:94:f2:27:62:df:36:6d:62:05:f1:b1:ba:
db:0a:77:dc:c8:82:fa:08:c5:40:2e:b8:ae:e1:f4:a0:83:db:
94:36:fd:bd:e3:c4:e5:d2:74:75:63:35:7d:4f:ae:ce:20:e0:
df:d4:c1:1c:ce:27:c4:83:c1:d5:d0:20:58:d5:68:e2:65:85:
3e:4d:31:9e:fe:8c:9f:e3:9f:24:f6:1b:3b:19:f8:a7:8b:cd:
97:f2:b2:88:61:22:10:65:ff:38:67:b9:ec:8e:3d:61:a5:74:
32:1d:d4:58:17:ef:3c:e9:d1:52:bd:9d:5a:0f:33:13:9c:cd:
2d:cd:90:77:92:24:0b:ff:95:38:36:e8:c0:bc:25:e4:02:3d:
15:3d:c0:40:a8:ed:d5:b6:74:aa:de:a4:e8:83:70:cf:5b:12:
37:55:7a:bf:ec:ca:42:89:dd:1e:f4:00:3f:7a:be:1d:26:ea:
5c:94:cb:a5:a2:3e:01:33:2b:1b:57:df:b9:3f:5d:0a:fd:ab:
a8:69:dc:a9:8b:99:f3:91:94:38:76:6a:b2:c1:6b:51:31:32:
99:13:ff:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 20:53:14 2026 by rpki-client