Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
File: zT5kktRzFSDB7tvNopZ5UArAg6s.mft (raw, json)
Hash identifier: Nr/extLKXtAKDKsHxA/HCm7Zux980ttq/EQXCrihqDY=
Subject key identifier: 04:FF:BB:36:85:3F:DD:F2:25:BE:86:B6:CE:03:0E:EE:8C:B0:E4:7C
Authority key identifier: CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
Certificate issuer: /CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Certificate serial: 019D98BDAA5C07AF7D050F6B53C10ED4F881
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
Manifest number: 078F
Signing time: Fri 17 Apr 2026 00:00:59 +0000
Manifest this update: Fri 17 Apr 2026 00:00:59 +0000
Manifest next update: Sat 18 Apr 2026 00:00:59 +0000
Files and hashes: 1: C-10eoHVV_ERuNuHp1M0fCx__Ag.roa (hash: kJJFsA3C5xKnlbqZn0ozkgC1qO7Vwfq9ha16s0RBd0k=)
2: zT5kktRzFSDB7tvNopZ5UArAg6s.crl (hash: KA5dWUun34I9TIt9z2PtBewQLS01V3nBDHGmRZN3jeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:aa:5c:07:af:7d:05:0f:6b:53:c1:0e:d4:f8:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Validity
Not Before: Apr 17 00:00:59 2026 GMT
Not After : Apr 18 00:00:59 2026 GMT
Subject: CN=04ffbb36853fddf225be86b6ce030eee8cb0e47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:66:3c:80:08:59:90:9c:c7:d5:78:1d:ef:fd:
75:18:fa:c9:89:f1:d0:c6:a1:e9:a2:72:19:63:11:
c4:1d:13:9d:07:e3:23:53:01:87:6a:c6:b8:70:5a:
4e:b6:b6:0d:84:ae:5b:e3:f1:2d:9b:d1:08:6a:2a:
59:39:8a:cd:63:b7:88:fb:3d:87:26:30:c4:fc:b8:
b1:ce:95:ef:57:ff:66:77:44:8a:76:32:5f:0d:11:
37:24:a6:4f:65:2c:00:c7:98:a6:73:7a:f5:e3:c3:
43:d6:d1:63:04:3a:47:3c:e5:37:7a:33:f8:df:b4:
6c:fa:b9:53:d8:bc:f5:c4:e7:fb:a9:7f:33:35:d9:
61:67:ef:1f:68:6e:38:2d:96:d0:ed:30:dc:d2:fb:
f3:22:be:48:e2:5e:ba:21:6a:4e:ba:97:22:8e:6a:
bf:f1:6f:b8:49:36:8e:55:f7:4c:d4:c2:11:18:7a:
11:16:5a:b9:39:6d:57:e8:30:d7:91:83:87:59:bc:
78:91:cd:f1:b8:95:e9:d7:a8:29:05:70:d2:39:b2:
34:ed:38:1f:4c:8d:dc:c7:78:9a:e2:84:01:89:20:
eb:30:c5:1d:df:86:ce:d0:a0:18:12:ce:ed:f0:a3:
d8:e3:00:52:55:28:06:7b:16:f1:4e:57:85:d3:d7:
a9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FF:BB:36:85:3F:DD:F2:25:BE:86:B6:CE:03:0E:EE:8C:B0:E4:7C
X509v3 Authority Key Identifier:
keyid:CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:bf:ba:ce:fc:69:48:6e:2a:09:aa:27:3d:77:f7:47:1a:dc:
5c:52:3c:ea:41:8b:b9:af:38:8c:e4:b4:29:e4:61:9c:2f:a8:
ee:11:eb:5a:27:71:ed:ee:52:fa:90:55:c0:8e:c6:4c:0a:63:
43:9a:71:23:10:df:19:5f:c0:43:27:90:c3:f0:8d:a2:bb:62:
74:b8:18:e7:4b:81:fd:eb:33:ff:22:11:cc:65:30:f5:6b:e4:
eb:e5:2f:ee:c6:5d:7b:4a:19:d2:dd:8a:e9:f8:06:cf:01:f6:
46:59:e6:bb:f2:de:33:bb:dc:ab:58:47:09:44:4b:5e:ce:37:
1c:7e:5c:c3:50:29:73:31:9e:4f:e4:27:2d:a7:a4:08:55:b1:
45:09:45:7c:b8:61:ff:62:22:08:3a:ef:eb:f9:21:6e:98:34:
fb:5d:03:ba:75:01:c2:3b:7e:9f:89:53:bb:1d:13:55:b0:00:
d4:ca:4b:62:2e:99:52:c2:0b:51:e0:96:cc:5e:74:4c:51:60:
db:4d:6d:bb:dd:67:a7:7f:1a:7a:0d:29:3b:20:90:58:50:51:
b4:cd:45:28:55:1a:d1:09:e6:1c:83:15:96:36:ee:b5:eb:6e:
84:7b:4a:21:b0:c7:59:f0:ba:4c:11:40:f7:ae:58:21:c0:79:
21:02:d2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:32:05 2026 by rpki-client