Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: Zz/DnQopuGGXBs+krHMCZ1ng4fm8wDZVuy7kse6sO3A=
Subject key identifier: DA:C8:2F:79:97:F1:81:9E:32:F0:B1:58:92:C2:00:F9:58:90:8C:B5
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 019CAB6B9DB59DB42F72A247A858B9BF67FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0CFE
Signing time: Sun 01 Mar 2026 22:01:22 +0000
Manifest this update: Sun 01 Mar 2026 22:01:22 +0000
Manifest next update: Mon 02 Mar 2026 22:01:22 +0000
Files and hashes: 1: GmtyRSwv03uFUm7JE5DndaUS8N0.roa (hash: zwVMLkSXFGqtFNoiz9XRyBWDIur2kpQPUKFiNSBy9R0=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: nFnPUPPixApw8th6EJbol423BFX1DDvquptUy0iYvlE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:9d:b5:9d:b4:2f:72:a2:47:a8:58:b9:bf:67:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Mar 1 22:01:22 2026 GMT
Not After : Mar 2 22:01:22 2026 GMT
Subject: CN=dac82f7997f1819e32f0b15892c200f958908cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:21:88:04:06:c2:b1:74:a6:12:59:3a:ad:08:
07:79:59:47:27:30:76:05:4c:b0:ca:bb:2a:1e:d5:
f2:05:99:e6:73:3a:7f:5e:fa:75:07:19:ee:90:ed:
dd:e3:80:6a:5b:44:cf:d8:1a:fd:bd:d4:cf:cf:3f:
dc:e0:12:dc:47:35:16:dc:94:85:3c:8b:f1:06:f9:
93:9e:e2:b0:b7:ce:b7:33:a6:11:20:79:4f:e8:e7:
bc:4b:b6:7c:e5:e1:b2:50:04:0b:8d:ff:98:e1:54:
b8:d3:a6:5d:66:6c:53:ae:3f:b5:9b:79:4d:bc:a4:
1a:48:f3:16:24:3c:d7:35:e9:a3:fe:15:82:2d:58:
01:9e:c4:ac:36:e5:cc:d9:95:46:be:77:99:25:5d:
18:fd:85:43:4b:54:ad:7c:7a:7e:26:26:74:36:31:
d1:91:3c:82:93:4f:c9:bf:da:ae:de:26:93:e6:d9:
58:64:0b:28:26:75:51:ed:5f:e6:c1:25:06:1c:e9:
17:aa:4d:71:f9:ca:52:56:1d:88:36:17:d2:95:da:
e8:ee:50:0d:2a:05:04:5f:26:5a:8a:b0:78:ff:5a:
a9:08:7c:44:e8:4f:53:3e:85:b2:fa:a4:3e:cc:07:
1f:9d:94:15:10:62:58:c1:52:10:20:0c:a4:3f:84:
96:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C8:2F:79:97:F1:81:9E:32:F0:B1:58:92:C2:00:F9:58:90:8C:B5
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:f3:f0:cb:c3:f6:96:ca:3a:0f:d7:64:17:be:57:dc:c8:cd:
bb:7a:ca:f5:a7:64:d5:28:08:be:c4:79:90:f1:60:0c:a9:0a:
df:a7:59:6f:74:5d:de:3c:1a:15:a7:79:60:01:8f:fe:81:6a:
b3:6f:d3:f6:da:90:2d:88:79:72:9f:c8:46:34:05:b5:1b:f4:
b7:a5:6c:c7:be:41:3b:e7:c7:86:0d:cf:5e:a3:b2:e5:a6:9f:
a5:ee:01:37:b8:fb:4d:74:be:9a:08:66:de:cc:5d:20:c9:95:
82:d8:d0:55:b0:84:be:b2:c2:f1:7d:bc:84:4d:7f:df:de:90:
22:29:e7:7b:b0:13:78:94:34:fc:ba:2b:d3:2d:54:c5:2b:00:
c4:e7:f9:4d:a2:e2:67:a4:08:c6:9a:65:af:af:89:af:25:c7:
e0:ab:8f:07:e1:f2:9e:eb:0c:73:2e:3e:c0:ec:1f:3a:59:67:
d6:d0:27:25:f5:8a:b1:dc:51:18:8f:96:a3:da:25:c7:da:ae:
b0:15:b6:9c:a9:b4:cf:57:2a:bd:25:fa:bf:49:90:af:00:50:
31:48:4f:73:a4:c2:94:da:8e:d5:46:bf:41:68:ef:dd:23:ac:
c9:13:d3:af:42:b0:82:93:1c:aa:5a:b7:93:dc:c1:1c:fc:17:
53:0d:ef:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:50 2026 by rpki-client