Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
File: 1zCimUHvvHp5J_ApSB4scloaZxE.mft (raw, json)
Hash identifier: ru1FGKd+Ka7CsgxD+YfIZXdDKALJ32CNICTaWn0COiA=
Subject key identifier: 3E:B8:91:2F:3D:CA:7C:61:7D:0C:59:7A:4E:47:88:E8:0F:44:BA:60
Authority key identifier: D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
Certificate issuer: /CN=d730a29941efbc7a7927f029481e2c725a1a6711
Certificate serial: 019D99D0246539BAA63C023C0EE98EACD6A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 05:00:47 +0000
Manifest this update: Fri 17 Apr 2026 05:00:47 +0000
Manifest next update: Sat 18 Apr 2026 05:00:47 +0000
Files and hashes: 1: 1zCimUHvvHp5J_ApSB4scloaZxE.crl (hash: 3/QrIOuW/dFDgVM9RJlsqq4f6DNfztuFkS+qzrcZZPg=)
2: YsrfKZUom0hhdvtAbQlQ31S1LpI.roa (hash: QER6EJFTVwn6uMFElRbueTl9ramohyi1r1R/wDUOkjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:24:65:39:ba:a6:3c:02:3c:0e:e9:8e:ac:d6:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d730a29941efbc7a7927f029481e2c725a1a6711
Validity
Not Before: Apr 17 05:00:47 2026 GMT
Not After : Apr 18 05:00:47 2026 GMT
Subject: CN=3eb8912f3dca7c617d0c597a4e4788e80f44ba60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:58:5f:9e:be:86:28:7a:dd:9b:4d:3f:62:04:
d9:59:d2:3e:7b:66:a5:0c:e1:7b:77:a9:c4:85:02:
8c:b3:c0:f9:d0:1b:56:fe:a9:b9:69:6a:2a:28:ea:
85:03:b4:84:2e:c8:3c:6b:8d:07:da:e0:1b:dc:8e:
3b:29:bc:cc:cb:ad:b4:bc:33:a8:70:71:51:29:a6:
f1:5b:8b:00:d2:9f:81:79:3e:c9:85:2b:d2:2e:2b:
a3:5c:39:3d:26:76:d0:c7:49:51:18:46:17:4a:4d:
ef:98:a4:8b:b3:4c:c4:55:29:82:50:22:24:de:04:
6d:9b:fc:6b:7b:c1:6a:98:2d:20:69:fd:ea:f2:ac:
d4:17:5f:78:d0:1a:94:de:57:e0:ff:c5:3a:69:48:
70:56:cc:1d:ee:74:13:06:6e:b5:ef:26:95:72:63:
81:85:b3:86:49:fb:50:21:4a:0d:d5:84:8e:b4:f6:
4f:d2:bc:66:9b:56:ce:34:d6:f8:89:63:a9:1d:20:
63:7a:74:ad:30:3d:f1:b6:39:ee:ba:59:06:85:3a:
aa:f4:52:e9:da:b7:db:00:d0:3f:d3:80:c5:f0:1e:
1d:7a:43:4e:e4:ce:5b:98:c5:8c:3e:22:6a:d7:82:
96:9a:a2:8a:1b:d3:a5:3d:1b:27:5f:3c:52:ac:df:
29:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B8:91:2F:3D:CA:7C:61:7D:0C:59:7A:4E:47:88:E8:0F:44:BA:60
X509v3 Authority Key Identifier:
keyid:D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:a5:49:65:87:de:0c:17:21:28:a4:01:81:8e:ef:de:21:1e:
4b:d3:11:f0:39:aa:70:b5:ba:ef:5b:0c:b5:88:24:a3:5b:24:
cc:a8:c7:af:b9:1e:f9:c1:84:75:b6:63:4d:85:04:54:9a:77:
6b:4f:1a:b0:bb:84:7f:37:b4:ec:fe:90:3a:c7:db:67:4f:5e:
ee:29:a5:74:d3:c4:b4:6a:2f:a8:bf:7d:b1:f9:72:ec:cc:61:
ad:21:25:3c:ec:63:d5:a0:99:25:59:df:df:0a:c0:32:84:10:
53:c6:4b:1e:bf:0d:85:09:1c:fa:04:e6:4b:ed:c6:71:ca:44:
7f:28:6e:b7:34:3d:c9:28:be:40:b2:17:56:ab:12:6a:0f:99:
d8:ba:a5:9e:ff:bd:6d:d9:79:1f:c3:b5:3a:89:dc:19:24:58:
42:84:2e:77:78:5b:60:fc:b9:44:40:9e:6e:f4:e2:d5:fb:fb:
1f:a9:4f:0e:3e:48:a5:a5:6f:77:63:13:2a:40:f7:22:a6:cf:
87:86:e4:45:3a:a3:33:29:70:b4:65:f3:00:5e:69:8d:51:36:
8f:06:4b:45:c2:7c:c2:cc:2b:d3:0c:f6:ef:bc:3a:0d:76:62:
dc:fa:d1:73:4d:70:1f:3c:43:80:c7:9a:2c:c9:18:42:5c:8b:
8e:d7:b4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:24:32 2026 by rpki-client