Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: J8oG5kcLbq+TwiYzR77PCbU13+8fxQNNN1/ZwAQeOOw=
Subject key identifier: 04:FD:5C:19:B7:5A:24:A9:A9:FB:04:FA:92:95:95:5E:ED:BD:DB:75
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 019CAA58CD924A219977FAE7F89F2B5801FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 06A0
Signing time: Sun 01 Mar 2026 17:01:12 +0000
Manifest this update: Sun 01 Mar 2026 17:01:12 +0000
Manifest next update: Mon 02 Mar 2026 17:01:12 +0000
Files and hashes: 1: soD_TVroUhn4kOalbV5_zUUFF5o.roa (hash: 6MD8ohn7IGtOGpcI8Sh4nU/dqGzhAaKyVoNKEGen+rQ=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: auaU/NcuFZBzpFBuGlsXq1RRBwDYo+ml/8u6ZOrjnj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:cd:92:4a:21:99:77:fa:e7:f8:9f:2b:58:01:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Mar 1 17:01:12 2026 GMT
Not After : Mar 2 17:01:12 2026 GMT
Subject: CN=04fd5c19b75a24a9a9fb04fa9295955eedbddb75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9d:1c:ae:43:60:4d:c9:58:e1:af:fb:f9:3f:
ec:64:2f:5d:ef:65:4f:c1:d2:b9:b3:8d:19:df:2e:
79:65:f2:81:e3:bb:77:65:4f:69:0c:77:dd:13:84:
53:48:60:f8:ee:49:59:47:6c:3f:61:5b:4f:5f:a9:
fa:e0:bb:a4:07:b9:03:92:c2:00:5b:bb:22:e3:ac:
90:06:09:71:35:b5:20:cd:d5:66:ba:2d:df:5c:4f:
8c:65:df:42:03:51:91:8b:2c:5e:c4:e7:27:f0:fa:
03:ac:09:c6:8b:44:91:70:88:fe:64:93:6a:da:a5:
e4:b2:6a:8e:6b:4c:66:b3:08:30:1c:0f:52:50:ee:
c7:2b:e5:99:b5:ed:43:1f:16:94:40:7c:71:a0:17:
b5:70:02:29:0b:af:b3:51:12:05:26:11:c8:24:a6:
a9:59:da:a8:61:9e:f4:32:88:c1:b0:06:ef:8d:8f:
c5:79:76:8f:1a:c7:b6:78:56:a6:57:70:bc:34:b8:
31:17:90:8b:b2:48:77:88:92:94:10:0d:fc:d2:63:
aa:55:78:ae:29:33:15:e0:dd:f9:4e:5f:c1:72:0d:
96:bf:1d:7a:16:2d:dc:bc:f2:ac:e9:d7:0b:53:e8:
d6:98:58:56:9d:10:b9:3e:66:77:4d:85:cf:58:b7:
ed:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FD:5C:19:B7:5A:24:A9:A9:FB:04:FA:92:95:95:5E:ED:BD:DB:75
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:2f:ea:94:3d:03:2f:04:77:aa:5d:a9:da:11:0c:79:90:35:
11:25:e4:ef:98:33:ba:b3:a8:20:9e:11:fc:d9:75:9f:44:0a:
dd:88:fa:20:d2:34:22:9f:01:16:df:36:9d:36:06:6e:4e:d5:
c4:d6:66:a5:21:d6:b3:d9:ab:b0:58:34:bb:ef:b4:77:4c:76:
95:51:99:40:7e:23:01:d7:9a:9a:82:8e:eb:ee:f2:ab:34:66:
ae:f3:cd:c5:fc:63:9e:b8:e7:6b:c6:90:13:ea:63:f4:0d:ea:
8f:77:16:fc:f6:6b:38:0f:d2:4b:27:28:0f:32:22:13:3a:eb:
ad:79:e8:bc:4b:87:de:0c:49:f9:4f:bf:bb:cf:b3:b2:7f:72:
0e:b4:f2:94:a0:d9:f4:ff:cc:dc:a5:c8:90:da:f1:50:63:8f:
4a:5b:9f:d2:66:f9:3b:2e:18:74:a1:44:26:9e:54:83:1f:c6:
bd:40:74:6e:6a:9a:d1:f2:93:d9:96:32:57:8c:fb:a7:57:ba:
a2:6b:09:bf:ca:41:f3:1d:d4:16:b6:37:93:98:64:1e:4e:f6:
40:25:9a:73:fe:ca:91:5c:fc:82:36:8c:c2:8c:91:82:97:0f:
de:14:16:b9:ca:d4:a8:24:41:1c:8d:2d:37:5a:c3:cd:75:12:
9a:ca:da:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:00:09 2026 by rpki-client