Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
File: 1zCimUHvvHp5J_ApSB4scloaZxE.mft (raw, json)
Hash identifier: F+UiXY3XW48Wth7LSnVlse7NyO2Y2EtZrQ8pgceuwGs=
Subject key identifier: 19:F3:38:6C:67:37:1D:7C:33:21:8C:C5:C3:E4:38:51:A7:AB:E5:29
Authority key identifier: D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
Certificate issuer: /CN=d730a29941efbc7a7927f029481e2c725a1a6711
Certificate serial: 019CAC46A00BA7F3B244FB38AB9D377A782D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 02:00:35 +0000
Manifest this update: Mon 02 Mar 2026 02:00:35 +0000
Manifest next update: Tue 03 Mar 2026 02:00:35 +0000
Files and hashes: 1: 1zCimUHvvHp5J_ApSB4scloaZxE.crl (hash: LFzJeYgAHQZj0ah7DIJ37bVqrtYVwHuwWytlejIXdWQ=)
2: YsrfKZUom0hhdvtAbQlQ31S1LpI.roa (hash: QER6EJFTVwn6uMFElRbueTl9ramohyi1r1R/wDUOkjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:a0:0b:a7:f3:b2:44:fb:38:ab:9d:37:7a:78:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d730a29941efbc7a7927f029481e2c725a1a6711
Validity
Not Before: Mar 2 02:00:35 2026 GMT
Not After : Mar 3 02:00:35 2026 GMT
Subject: CN=19f3386c67371d7c33218cc5c3e43851a7abe529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:76:04:e4:ae:b1:d1:a2:fd:4a:67:5f:ef:98:
d0:9c:de:7f:fd:d5:3c:72:a3:78:87:6f:b2:46:8a:
b7:52:0d:f5:be:ef:56:4a:92:b2:b3:52:72:71:2e:
6b:6e:e3:7d:71:b9:85:0c:22:ac:6d:f2:21:3a:91:
2b:53:10:e1:e1:3f:f7:81:76:d9:c1:88:dd:dd:99:
a8:69:ab:99:1e:d1:d5:c8:f7:44:75:6a:46:62:d1:
b4:6e:b7:75:f9:ec:94:99:d2:ca:57:ca:1d:82:81:
64:65:24:99:58:6a:71:cf:f9:00:59:4d:a0:f9:e4:
be:f0:c7:25:46:f0:fc:5a:37:fb:04:c4:39:1d:27:
7c:36:ec:12:b0:67:24:0f:a9:37:94:ef:33:11:23:
a8:83:b3:0a:76:d7:72:57:fe:a4:03:3c:d0:23:aa:
23:be:98:33:8c:72:90:95:9f:a5:bb:6f:88:bd:b1:
e5:a3:bf:10:39:76:63:1b:e0:af:f4:5c:24:f8:65:
26:a6:83:8a:48:75:24:8b:84:30:4e:e1:3a:6a:7c:
c7:47:bd:f3:b5:3f:bd:ed:47:3e:01:c9:ba:d6:a3:
8f:a9:85:8c:14:4c:6a:ad:c4:e9:cf:30:e6:2f:75:
b8:5c:d7:9c:4d:b8:15:97:6e:9e:6d:0a:65:4d:05:
09:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F3:38:6C:67:37:1D:7C:33:21:8C:C5:C3:E4:38:51:A7:AB:E5:29
X509v3 Authority Key Identifier:
keyid:D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:40:d9:6c:a3:46:e3:ef:39:76:bd:10:7b:0d:28:0a:ee:ad:
b0:a8:4a:63:02:fd:6e:f8:6d:49:56:e4:c9:a1:ec:86:d9:4e:
7d:0a:35:9a:56:f6:bb:3c:51:3f:9c:cf:cc:07:73:74:31:2a:
03:f0:53:51:7f:f5:c9:dc:28:f5:d9:50:7d:55:b9:62:98:fd:
1c:22:e3:b6:a0:0d:89:b1:6a:16:65:b5:8e:97:9b:4a:b6:fc:
26:5f:f1:27:5c:5e:3a:0f:4a:1e:c6:c4:12:8a:46:18:30:a2:
7a:6a:16:b5:51:3c:e7:f8:ad:12:06:46:bb:36:17:be:65:fb:
4d:47:f2:d9:78:29:87:19:54:ce:34:df:33:72:95:9c:8e:b5:
be:23:99:a5:2c:7a:e9:87:67:1c:97:44:ac:bc:45:f9:ef:b1:
86:b1:7b:eb:89:fc:8d:0b:eb:a3:d8:73:08:28:0c:7c:db:c0:
b7:ee:e4:e3:65:67:66:82:6f:92:96:2d:05:a4:60:79:b1:f8:
aa:21:45:3f:18:14:3f:dd:05:fc:d9:8f:2f:ac:7a:cd:c4:22:
de:78:34:79:60:7e:74:c8:2e:32:4c:6e:cc:07:d8:a5:86:17:
36:15:bc:12:6f:e8:2c:b8:a5:af:3c:89:f8:fa:02:ec:fa:c9:
f7:1a:18:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:46:05 2026 by rpki-client