Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
File: z431Kt_i_Oaulvb-BdFAieAkfO4.mft (raw, json)
Hash identifier: 1xJZFTSun1SlC9gKEqmnZSnJ47j42ZnQ285W88Pv44E=
Subject key identifier: 45:E0:7B:5C:4D:F5:E0:5C:EE:16:38:5D:66:8C:FE:B7:20:77:64:F7
Authority key identifier: CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE
Certificate issuer: /CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee
Certificate serial: 019D9EC045852B0495FEAF7428401BEDE05E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
Manifest number: 1079
Signing time: Sat 18 Apr 2026 04:01:33 +0000
Manifest this update: Sat 18 Apr 2026 04:01:33 +0000
Manifest next update: Sun 19 Apr 2026 04:01:33 +0000
Files and hashes: 1: OL0stDkX2i4iSRwxjMZs3BrE1SE.roa (hash: vvxqzVvoF7+NWvZaa2Ph3MfeFjAEA8fO1sH/RieX6t4=)
2: z431Kt_i_Oaulvb-BdFAieAkfO4.crl (hash: MjlEpmbbJ0SrhfNZRZfK3EAFXIp/5Rta6Usf6CV8oCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:c0:45:85:2b:04:95:fe:af:74:28:40:1b:ed:e0:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee
Validity
Not Before: Apr 18 04:01:33 2026 GMT
Not After : Apr 19 04:01:33 2026 GMT
Subject: CN=45e07b5c4df5e05cee16385d668cfeb7207764f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:28:91:52:46:67:0e:f2:24:ca:b6:e1:3c:1b:
6d:c1:11:22:b2:fd:3f:bc:74:c5:d2:21:87:4f:34:
42:db:af:bb:41:7d:2e:31:64:de:3a:22:86:82:c7:
c0:30:e4:7a:e1:f1:ad:4b:eb:ca:4a:bd:4b:90:02:
1b:97:be:bd:6f:b0:cb:2b:64:96:e2:74:f3:b2:7a:
be:84:37:da:72:99:c6:fe:dd:00:3a:6c:a6:20:01:
21:f0:38:f4:bd:44:03:79:12:35:9d:4f:8c:45:4a:
6d:f5:c0:f7:74:45:1b:3e:4d:85:36:16:f6:32:e3:
16:0d:72:8c:ac:62:b5:95:90:b9:b4:86:7b:44:85:
ff:60:4c:04:9f:d4:75:81:cf:61:11:94:17:0a:cd:
53:a7:89:12:95:80:9a:b0:91:c6:65:9e:ed:88:66:
62:e5:c0:a6:ef:19:4e:b7:af:b7:5b:41:22:7b:85:
27:dd:81:4f:f1:81:99:4f:21:55:ee:b3:9d:fa:5a:
f1:19:27:9e:0d:f6:11:dd:ad:d0:fc:96:f6:b0:74:
bb:9d:ff:c6:a0:e7:66:c2:cc:b2:fe:b8:b2:59:6a:
c2:a0:dd:9c:f5:9f:6a:2e:11:68:95:45:37:d7:9f:
20:b2:07:72:e6:bb:26:58:07:eb:f5:84:3b:16:83:
2c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E0:7B:5C:4D:F5:E0:5C:EE:16:38:5D:66:8C:FE:B7:20:77:64:F7
X509v3 Authority Key Identifier:
keyid:CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a7:aa:21:41:dd:23:f0:ed:2e:d0:ed:91:66:ca:4a:08:c8:
8e:92:32:28:cb:cc:16:5c:e1:2c:e6:33:03:80:e8:53:2e:86:
48:f0:8e:57:f7:3f:04:77:dd:fe:be:6b:2a:5c:0c:be:14:16:
87:15:e7:a2:a4:99:e3:c3:53:c8:56:d1:d4:a2:19:f4:16:2b:
59:38:fb:26:51:d2:63:76:87:d8:79:48:45:97:86:65:4f:4e:
6b:4a:d7:11:3d:ef:7d:85:90:4f:ab:d8:56:a9:f8:e7:9e:54:
f5:7e:ca:98:ce:78:61:ee:79:21:69:6a:36:3f:0f:fb:c1:0a:
06:f0:d9:39:2b:81:4a:b2:bb:ae:fe:78:41:0c:54:20:f9:29:
1b:60:c0:f6:5c:fe:91:93:7f:9f:03:96:75:28:93:6d:c1:30:
3e:0f:04:e1:75:f8:85:e2:40:6f:db:d9:f5:cf:38:e6:07:f7:
9e:72:b8:0d:01:a1:b6:48:e8:0e:65:26:06:1d:4f:1b:58:7e:
65:b3:55:a4:6f:be:15:dd:15:61:c4:0f:b5:7a:38:97:bf:d3:
35:aa:06:58:96:07:a9:33:9d:f2:77:3e:8a:22:b5:c1:84:dc:
b9:08:79:b8:61:c7:85:5b:c7:50:c3:04:f0:a6:91:a2:7d:9a:
ca:bf:b4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 06:05:42 2026 by rpki-client