Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft (raw, json)
Hash identifier: SX1VMeuyQozCo1Nveb1FuYrBb8sqfTr0kZqVmjxYCHc=
Subject key identifier: 88:71:B5:58:05:3D:B2:2F:DE:DB:68:43:11:70:1C:BD:3E:55:52:3C
Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c
Certificate serial: 019D99D065C722A15AC6B327F467F964E38C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
Manifest number: 06CE
Signing time: Fri 17 Apr 2026 05:01:04 +0000
Manifest this update: Fri 17 Apr 2026 05:01:04 +0000
Manifest next update: Sat 18 Apr 2026 05:01:04 +0000
Files and hashes: 1: QdHInLlgS5JRpnU_JucTtPY8VJk.roa (hash: QfoNmRCKJigBgYRu4CBAAOqEk87PTUk4h7GOHN5KHOs=)
2: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl (hash: Tr2nyITA7KUq0cxs56PX4cbYBBSy2gUcdXXqmCBHF+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:65:c7:22:a1:5a:c6:b3:27:f4:67:f9:64:e3:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c
Validity
Not Before: Apr 17 05:01:04 2026 GMT
Not After : Apr 18 05:01:04 2026 GMT
Subject: CN=8871b558053db22fdedb684311701cbd3e55523c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5b:f5:29:72:16:ef:9f:b0:94:c4:cc:7c:3f:
60:3b:da:9f:78:9f:53:3c:ea:79:0a:d9:df:6a:32:
d7:bc:60:b6:56:6b:60:d2:80:ac:c8:cb:8f:3b:15:
6b:fc:3c:6d:7e:b3:0f:4f:ec:12:58:14:da:ca:5c:
ae:c9:2d:8f:ec:3c:7d:7c:cb:f1:73:51:77:c5:c7:
8a:6d:71:1c:ba:e7:e0:15:ac:32:f6:89:d3:96:8a:
56:4a:ac:00:25:29:d8:82:39:64:c0:a2:47:14:8a:
15:b3:76:e1:86:43:8d:5d:14:6c:0d:8d:a7:ff:ac:
12:30:6b:cf:b5:7d:2e:ac:69:a2:ac:9a:54:7e:46:
06:40:72:bf:82:8f:94:46:8b:56:57:5a:20:46:65:
d3:84:be:1b:ea:e2:3c:c3:f6:47:00:63:fa:b5:c6:
8b:59:53:91:e8:d2:7e:08:87:ce:f6:a1:15:31:5c:
20:da:03:f7:5b:de:ef:13:ba:26:b7:f6:33:e9:e5:
2e:50:2b:05:09:8e:cf:bb:f4:29:92:87:5f:c1:a9:
ec:d8:68:41:bc:43:41:63:af:c6:1c:b5:46:55:55:
e4:a9:75:51:88:3c:7d:d1:7b:48:59:2f:3f:72:ab:
da:35:7e:cb:ec:e2:ac:48:31:bf:d6:20:52:d7:35:
a4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:71:B5:58:05:3D:B2:2F:DE:DB:68:43:11:70:1C:BD:3E:55:52:3C
X509v3 Authority Key Identifier:
keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:50:29:78:37:d9:fd:43:1e:76:33:22:78:33:a6:b2:84:33:
b1:c0:0d:15:52:04:75:8b:5e:12:1f:52:8a:9f:33:23:57:ed:
71:47:0a:83:f5:c8:61:75:38:bb:ac:9d:f3:01:aa:7a:85:1b:
43:d7:21:b9:ea:12:c0:ff:3a:e4:19:1b:b1:c8:7c:ac:0d:90:
6b:c1:fc:cd:f6:56:b4:ed:ca:08:31:e4:61:53:77:36:06:b6:
e0:0d:e2:a3:dd:7e:a7:1c:f8:b6:3a:d1:43:7b:1b:04:16:f3:
5c:0d:e5:2a:be:d4:c5:09:2a:b4:d8:f3:d8:91:cf:71:15:59:
cf:ad:32:34:81:b6:3f:07:2e:1a:53:0f:3c:77:18:96:3a:28:
4c:c2:d9:5c:b5:11:70:5c:6c:46:1d:36:d1:32:f2:5e:08:08:
f2:a2:7b:b7:b9:ae:84:55:a9:6e:e9:1a:40:6a:7b:f2:23:25:
ac:ad:6b:d1:8c:06:48:aa:41:ec:d6:19:ca:75:05:a3:29:c2:
f8:7c:5e:17:5a:36:6d:22:29:2c:c7:97:a0:fe:36:c1:e6:60:
41:8f:49:9c:40:8f:d3:29:88:c9:cf:9f:95:1b:c4:e0:f9:f9:
ec:59:27:bb:eb:a8:c6:af:3d:1f:54:74:f9:ac:45:8c:15:51:
3a:52:ab:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:15:02 2026 by rpki-client