Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
File: RzrT6YeegYYjFqEICLtcQhKVTLo.mft (raw, json)
Hash identifier: os5wfOIfUsiNraoZJmSoeO2ip99Ohbt2YySfgkvK2+Q=
Subject key identifier: 47:8C:7F:BE:59:48:9D:42:77:7C:87:B3:8D:52:2B:2B:92:CE:CF:19
Authority key identifier: 47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
Certificate issuer: /CN=473ad3e9879e81862316a10808bb5c4212954cba
Certificate serial: 019DA48AAB62B21650B6B7368903E98CB46F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
Manifest number: 1174
Signing time: Sun 19 Apr 2026 07:00:44 +0000
Manifest this update: Sun 19 Apr 2026 07:00:44 +0000
Manifest next update: Mon 20 Apr 2026 07:00:44 +0000
Files and hashes: 1: RzrT6YeegYYjFqEICLtcQhKVTLo.crl (hash: rT0BEgpAXyIt25bBf+I9gb73ekzpMPj7pAE/NF77i5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:ab:62:b2:16:50:b6:b7:36:89:03:e9:8c:b4:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473ad3e9879e81862316a10808bb5c4212954cba
Validity
Not Before: Apr 19 07:00:44 2026 GMT
Not After : Apr 20 07:00:44 2026 GMT
Subject: CN=478c7fbe59489d42777c87b38d522b2b92cecf19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:30:c1:b2:05:ee:96:9a:33:3a:f0:f4:3d:ca:
c3:58:37:19:1f:84:df:31:f5:19:24:58:54:45:41:
38:d7:b9:25:bc:54:e0:bc:5b:df:5d:0f:e3:cb:98:
c4:f4:3f:b0:19:d2:de:7a:fc:3f:f8:3e:b7:f5:2f:
73:2a:70:d4:49:23:70:57:28:f3:e9:ce:46:a3:76:
4c:2b:d9:9d:b3:cc:22:59:5e:ca:76:12:82:92:2c:
81:bd:69:a7:14:5a:91:ba:23:54:25:1a:0b:f7:6d:
e0:8d:ec:93:52:7b:39:a5:c0:59:8d:4c:6f:77:85:
54:63:e9:c2:8f:e5:6a:c4:69:fc:18:79:c0:fa:46:
5d:1c:4d:5d:d9:73:28:52:31:89:70:41:ac:d2:e2:
fb:6e:be:2d:04:92:ba:e1:e0:d0:22:42:7d:69:08:
e9:0c:11:40:d9:31:9a:9e:4b:0a:c8:8a:17:38:61:
22:e7:4f:59:d1:d0:d6:3f:e6:43:be:2f:2d:4c:14:
06:50:64:df:00:c2:6a:54:05:b3:38:6d:d2:a1:c0:
62:43:27:9b:d8:bf:f2:fc:b2:86:a2:ad:fc:3b:90:
79:c5:cf:00:30:f0:24:7d:c6:4c:ae:0c:aa:ce:b6:
06:54:34:d4:98:5a:78:21:5c:6c:b0:39:c0:fd:c9:
80:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:8C:7F:BE:59:48:9D:42:77:7C:87:B3:8D:52:2B:2B:92:CE:CF:19
X509v3 Authority Key Identifier:
keyid:47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:f9:1f:0f:9d:4e:4b:0b:a3:0c:7b:29:b1:40:e4:08:ca:9a:
90:a5:41:55:24:4a:73:43:22:8c:30:32:60:39:d2:94:5e:32:
68:af:d6:c6:97:22:16:2d:0f:72:76:91:0c:a0:f9:39:fb:e2:
33:f6:8b:76:c0:ac:eb:6c:d2:f0:5b:1a:49:23:06:82:de:5f:
44:dd:5b:85:7a:71:06:bb:b4:a7:e6:38:cf:6f:4c:2b:50:f7:
f7:c6:9b:6e:db:2d:38:3e:7c:0b:5b:47:e4:a4:e2:bb:5a:bf:
f1:25:91:d4:1d:fb:d2:e3:3d:f9:c5:f0:2c:13:96:ba:78:ec:
7a:6c:c4:ef:7a:67:5c:c1:65:34:2d:02:f0:38:9a:f0:7a:b4:
50:3f:fb:3b:d2:6f:a2:7a:50:af:71:d0:e4:e1:81:c8:5b:0f:
fb:16:4e:34:b1:c7:2e:69:59:8f:17:c1:80:44:2c:d4:32:db:
c1:ff:a6:8a:e1:6f:0d:2a:ec:4c:ad:ed:f2:b4:ad:c9:a5:af:
61:1c:9b:4b:d1:b6:bb:73:68:c1:de:12:97:75:58:5c:93:ba:
90:95:c9:65:1a:96:02:66:3f:d1:a4:6a:3d:be:ba:e7:27:83:
09:29:f5:17:1b:74:98:89:86:a6:b4:c8:52:3c:4d:87:3f:97:
23:04:f6:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:21:40 2026 by rpki-client