Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: gIWFFIpi7hRA4la2H2MskXZmhTDmGqDIzEuqICfGiLQ=
Subject key identifier: 17:46:8B:CF:43:05:26:C9:79:7F:BB:F6:F0:A8:4C:8C:78:77:7B:B2
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 019D9BBE93C25FCF2A644DEE35308DCD51B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 1856
Signing time: Fri 17 Apr 2026 14:00:51 +0000
Manifest this update: Fri 17 Apr 2026 14:00:51 +0000
Manifest next update: Sat 18 Apr 2026 14:00:51 +0000
Files and hashes: 1: kJTuRCvouXJMaVDF0pdJUxYymkE.roa (hash: u4BkMutspCjtHl2p10ecFJYI7igX5XDffjXXKmzdde8=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: GXtMojCWnKeSwPt+2Kf5Igs6BLq3JThPsq0XiZuBWI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:93:c2:5f:cf:2a:64:4d:ee:35:30:8d:cd:51:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Apr 17 14:00:51 2026 GMT
Not After : Apr 18 14:00:51 2026 GMT
Subject: CN=17468bcf430526c9797fbbf6f0a84c8c78777bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2c:9f:55:1c:98:7e:79:a2:20:3b:09:ab:5f:
57:1f:4c:03:92:06:3e:c4:b4:e2:cc:15:31:46:d2:
c0:a2:84:38:96:eb:e7:ba:75:09:69:64:e2:79:fa:
89:a5:21:58:89:f8:9b:5d:dc:16:87:49:78:3c:3a:
e4:06:43:0b:7a:ab:2d:56:e5:9c:80:37:79:7f:c4:
96:8f:a5:ec:40:fc:97:2e:a4:e5:4c:41:2d:5d:76:
fe:aa:31:9e:7a:b2:9b:11:78:df:bd:d6:2f:27:16:
9c:ad:11:0d:3e:c6:e6:6f:22:c1:b8:33:31:bc:fd:
84:2a:cf:b6:78:af:b8:2a:08:3b:15:63:f7:1c:8a:
15:3b:f2:09:40:2f:43:26:a0:00:31:ee:77:f5:3d:
b0:ff:a0:c0:b3:10:a0:3e:f4:4f:9c:f7:9d:ab:fc:
41:91:15:dc:3a:81:24:88:0c:50:e6:75:97:49:99:
38:d8:fd:bc:c1:0c:61:1f:c8:19:d6:02:a4:70:f9:
fb:a9:9f:c6:93:dd:1b:46:cf:79:36:22:c3:77:66:
61:82:67:ae:b2:7a:eb:3c:d2:c9:c5:cc:e4:0e:f6:
ba:2a:5a:ad:09:5c:2c:64:6c:98:99:74:07:61:b0:
b7:cb:c8:a8:17:a4:cf:51:62:e9:6d:4f:9b:30:32:
b3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:46:8B:CF:43:05:26:C9:79:7F:BB:F6:F0:A8:4C:8C:78:77:7B:B2
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:4f:87:ed:92:d6:79:39:b5:97:06:04:dc:e1:76:57:62:0a:
21:74:24:e2:cc:6b:bc:2d:4c:97:d3:d2:4b:7a:79:9d:93:11:
d5:ae:ec:0f:bb:8c:5c:c3:1f:cd:32:bd:e1:e5:5a:e4:5b:67:
6e:38:b6:a5:4d:19:b2:94:47:2d:46:0b:eb:8b:ce:2f:b0:d3:
fe:a6:f4:b8:62:29:8f:27:12:1f:79:44:6a:17:3b:d0:ab:4b:
10:73:8f:78:99:dc:76:28:44:4b:94:fa:4d:54:e2:35:37:e7:
b9:c3:32:18:bb:52:13:4d:0f:3a:85:21:42:0b:21:77:d4:5b:
a3:23:9e:a3:46:51:49:3a:40:a0:28:86:1f:f8:ce:8d:b0:d4:
ed:31:5c:53:0b:47:de:60:09:e1:02:10:c8:0f:43:97:41:21:
d0:e2:b0:fb:2c:f9:22:eb:d4:d6:d8:24:a0:54:03:87:2e:79:
3f:60:8d:c2:90:cf:a3:ff:df:df:cf:85:23:c3:a8:d2:ff:d9:
7c:dd:43:46:8c:44:5b:95:2b:4f:72:09:cc:ef:4f:dc:8b:75:
51:55:8e:7f:52:b8:ef:3b:2f:df:6c:69:99:a0:b4:83:eb:30:
4b:5f:0c:a8:a1:81:e9:9c:50:38:a6:8a:09:0a:3a:f5:fa:4c:
54:21:4d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:39:46 2026 by rpki-client