Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
File: zE1IcI2lBUlZ5hilguKMFV_vET8.mft (raw, json)
Hash identifier: roJ6kZLSbCmPj/XNwMerValEtH29sJML2yyR/OA7RKQ=
Subject key identifier: 3D:81:F6:6E:EC:C0:2D:5A:55:84:5F:AC:49:1D:EC:22:B6:F9:F5:56
Authority key identifier: CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
Certificate issuer: /CN=cc4d48708da5054959e618a582e28c155fef113f
Certificate serial: 019DA2D364F52BB38AEC4FBA1B78FB71F7BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
Manifest number: 0822
Signing time: Sat 18 Apr 2026 23:00:56 +0000
Manifest this update: Sat 18 Apr 2026 23:00:56 +0000
Manifest next update: Sun 19 Apr 2026 23:00:56 +0000
Files and hashes: 1: 46wXiqms5HpiGBoK15ocXo29pM4.roa (hash: oBJWgh+2jPc8gknL0v2rnOXcYX3sL1PfoR3y8FKwdXQ=)
2: zE1IcI2lBUlZ5hilguKMFV_vET8.crl (hash: FEqCot+CupT0phy2KsKPQ8hmkiYZMWEXlcQWsvl4bko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:d3:64:f5:2b:b3:8a:ec:4f:ba:1b:78:fb:71:f7:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4d48708da5054959e618a582e28c155fef113f
Validity
Not Before: Apr 18 23:00:56 2026 GMT
Not After : Apr 19 23:00:56 2026 GMT
Subject: CN=3d81f66eecc02d5a55845fac491dec22b6f9f556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:af:03:a5:72:44:fd:d9:fd:23:c1:36:66:d4:
d6:06:27:29:b4:08:e8:3f:45:8f:98:52:7d:86:df:
1c:63:77:64:ff:c9:21:c9:22:d0:9d:2c:6f:84:57:
41:5e:d4:04:1d:ba:ba:7f:8d:11:35:95:4b:34:bd:
ba:99:5b:16:5a:a9:82:90:a0:14:56:b0:68:d9:b0:
1c:1f:03:83:63:04:94:d9:b7:6f:ee:25:23:cd:29:
a0:c8:bc:14:df:bb:65:34:71:e2:4b:63:1f:44:55:
83:75:a3:22:ed:41:b7:c6:c9:fa:3b:9d:84:73:f8:
f8:de:88:4a:e1:06:e4:e7:f1:ac:11:74:c8:58:17:
ac:7c:b7:54:9e:9a:97:05:21:c3:12:32:1b:f3:10:
17:2e:bc:9c:6e:90:9e:5a:55:7c:8d:57:d8:0f:d0:
7b:70:cf:cf:77:26:5a:b3:d1:bd:1c:e9:a9:d5:da:
24:ae:1a:13:d9:0f:97:e1:ce:c5:68:c5:cd:70:bf:
81:39:bb:7a:d6:ac:59:ae:d0:2c:cd:9b:72:4e:b1:
26:e6:ed:3a:db:06:1e:97:98:82:25:14:6d:50:a2:
d3:0c:51:ac:2d:b0:28:79:6e:87:b3:9b:74:d5:23:
d5:c6:09:47:71:3d:9a:eb:6a:3b:d1:53:12:60:26:
30:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:81:F6:6E:EC:C0:2D:5A:55:84:5F:AC:49:1D:EC:22:B6:F9:F5:56
X509v3 Authority Key Identifier:
keyid:CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:2c:ba:9b:e4:4e:96:99:e2:8b:48:5e:0e:84:81:9f:da:27:
50:a1:69:d3:40:21:34:a3:ca:6c:dd:4e:84:eb:e0:43:fb:4c:
73:90:10:6a:52:ee:88:fe:b0:3d:e2:c2:3f:a5:73:41:64:1e:
c7:69:af:42:7f:f7:53:4e:55:cd:16:35:6b:6e:73:53:eb:c4:
cc:0a:20:a0:c5:eb:28:0a:3d:9f:8f:90:34:32:09:93:0e:d7:
00:99:58:b0:63:96:16:12:a9:44:30:42:88:b9:e3:5d:00:bf:
ba:ed:4c:cb:6d:de:e5:11:20:ce:7b:03:0e:d2:7c:ab:e2:22:
2d:80:84:65:07:f7:ff:0f:f5:ee:64:b2:62:53:b1:ea:43:14:
6e:1f:30:8e:44:9b:f5:ab:fa:2f:1d:93:d1:d7:c9:9b:3e:e5:
fb:c6:b7:0e:a6:a9:a6:36:e5:ac:d5:b0:c0:0f:81:56:ac:a2:
c8:53:77:3b:7b:c2:47:15:a9:21:97:35:52:24:d7:02:1d:7a:
5c:03:07:77:18:47:f3:65:51:b6:b4:f7:54:98:c5:a8:0e:10:
70:f4:a7:8e:3c:ee:ee:a1:63:66:c5:c2:3e:25:03:d9:32:99:
2a:f8:02:50:60:b3:85:bc:4f:9b:67:f5:18:5c:f9:ea:ec:20:
aa:ae:92:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:43:53 2026 by rpki-client