Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: 1SJ7dLyiM0ndXf5XHT/KePakhHXW5DCDCdlw7kY3qSo=
Subject key identifier: D6:1D:67:60:0E:74:A8:94:3B:62:CD:B0:FC:67:89:64:5A:72:C9:53
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 019D98F4C0893C585CE3CC53E69265FBC39A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0D79
Signing time: Fri 17 Apr 2026 01:01:09 +0000
Manifest this update: Fri 17 Apr 2026 01:01:09 +0000
Manifest next update: Sat 18 Apr 2026 01:01:09 +0000
Files and hashes: 1: GmtyRSwv03uFUm7JE5DndaUS8N0.roa (hash: zwVMLkSXFGqtFNoiz9XRyBWDIur2kpQPUKFiNSBy9R0=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: h62XZnZjIuOCBUwpq9oCTOEzzbxUsLUcxurs8109hdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:c0:89:3c:58:5c:e3:cc:53:e6:92:65:fb:c3:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Apr 17 01:01:09 2026 GMT
Not After : Apr 18 01:01:09 2026 GMT
Subject: CN=d61d67600e74a8943b62cdb0fc6789645a72c953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:25:60:cf:85:3b:97:73:9b:0c:10:2b:c3:0b:
e5:91:28:e1:96:01:3e:de:7c:74:12:2e:5c:d5:a6:
c3:34:64:76:41:33:ee:8f:a1:08:3b:9c:99:9b:eb:
ac:11:9d:fb:fe:ba:e3:a4:09:01:1c:6b:e3:2d:17:
2c:55:b9:07:23:44:77:18:4b:43:59:36:27:2d:09:
86:fe:e6:01:63:39:94:62:de:8b:62:2b:0f:3d:2b:
22:3b:38:06:c5:1d:fe:23:50:6d:b4:f8:1c:dd:47:
27:e9:d8:34:dd:a2:a9:be:00:33:58:f8:5c:62:07:
00:a6:7b:3c:96:ab:de:c8:78:e0:bc:9a:45:32:66:
78:c2:36:77:91:e9:42:72:3e:4a:dc:65:65:3a:07:
c7:5c:10:84:e8:03:f4:be:9c:df:3f:7e:33:7f:34:
67:f6:5d:1a:29:13:b7:09:5c:31:f8:e6:63:49:f6:
d8:67:54:db:d6:6e:2b:4c:a1:8b:0a:01:e4:d7:ba:
12:0f:ae:22:5a:98:f6:08:77:f7:5c:c3:22:42:4b:
d5:d9:04:8a:29:bb:3c:7f:33:67:37:69:0a:3b:24:
f4:67:02:b4:b1:5b:86:2d:f2:0d:b6:89:6c:7c:2c:
70:00:c5:07:30:c7:ef:a4:ea:62:3e:8f:dc:8e:54:
1b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:1D:67:60:0E:74:A8:94:3B:62:CD:B0:FC:67:89:64:5A:72:C9:53
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:24:0b:5f:4d:6e:18:74:ad:4d:78:8a:d8:40:8d:ac:c9:1c:
a7:60:3d:8b:e9:e9:3d:06:90:a2:35:d8:41:18:07:8f:71:65:
3c:d9:d0:d4:93:b0:fe:51:4e:c7:5e:7f:cd:f5:83:1d:42:eb:
8f:0e:59:ad:2b:9a:a5:f1:12:aa:3f:1f:92:09:b2:f4:b0:08:
b3:eb:e0:7f:8f:ed:34:c2:15:ab:d7:6c:cc:64:a9:c0:df:56:
55:dd:69:95:55:84:ad:6c:34:51:66:48:20:59:8f:6a:48:ef:
cb:7b:d9:30:bf:3c:8c:bb:02:fe:05:ae:d1:04:3d:ba:77:f2:
31:f5:b5:14:33:2b:17:83:c9:41:a2:15:86:63:b9:52:c3:d1:
ed:1a:af:07:70:43:82:86:83:2d:d6:71:71:af:04:2d:36:d9:
f6:5d:3e:2a:58:c0:6e:fa:81:ba:55:cc:6d:f8:44:0d:33:95:
a7:1b:1a:5e:bc:20:34:68:37:dd:b0:92:d9:82:5c:03:c3:b6:
ff:c9:f4:30:54:f4:79:97:50:7a:01:b3:61:80:dc:41:e7:d8:
74:1c:3c:b7:ee:75:00:60:7b:67:8c:4b:42:2f:4f:eb:fd:7a:
f3:78:af:26:46:23:5a:aa:2e:4a:ee:84:2e:2d:5e:0b:35:92:
1f:e7:89:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:48:21 2026 by rpki-client