Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: IDVuCnwEoG66OAw3B/iHggR6A1u8oYyBP8MSEdw/mU0=
Subject key identifier: 42:62:B1:D4:7A:C4:B1:58:94:74:49:0E:7E:24:8A:EB:4E:57:EE:03
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 019D99D080A2443169BDDA5E2AD8555D2801
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 1735
Signing time: Fri 17 Apr 2026 05:01:11 +0000
Manifest this update: Fri 17 Apr 2026 05:01:11 +0000
Manifest next update: Sat 18 Apr 2026 05:01:11 +0000
Files and hashes: 1: W0kDwuE8Wzw-iZxK0RP3iilB4OI.roa (hash: LAGYp6tmx7aAjzZBlxGzQ8k1I+/BB+mHmklMRyiCKgA=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: UE2A3Uno/IGJf6xB8FEznO/SFNEgySIkLSL1Fyqm82A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:80:a2:44:31:69:bd:da:5e:2a:d8:55:5d:28:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Apr 17 05:01:11 2026 GMT
Not After : Apr 18 05:01:11 2026 GMT
Subject: CN=4262b1d47ac4b1589474490e7e248aeb4e57ee03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ea:e7:b1:b6:1c:32:ae:66:3c:70:08:60:17:
78:f2:eb:3c:5e:a0:70:ad:a5:22:06:07:2f:4d:4b:
f2:9f:48:fb:a4:6a:f2:4c:7d:55:b7:32:79:18:e6:
49:3f:bf:ed:ef:3e:62:2c:52:26:f7:c6:ba:ea:77:
95:cd:85:51:65:b6:e7:7b:7a:ae:10:fc:14:ea:df:
89:a6:a5:27:20:cb:2f:88:eb:55:9f:98:b6:4d:41:
03:44:71:b4:9b:40:ac:fd:e2:be:96:bc:99:d6:15:
dd:7c:52:a0:2d:50:ff:2a:5b:df:b9:f2:a1:b9:83:
20:d8:77:76:d8:29:6d:a0:21:d9:30:c1:87:82:69:
b6:a1:4a:75:56:3d:11:57:a6:ac:f3:78:7f:78:d1:
97:24:2c:6b:c3:41:41:2b:7f:e7:68:22:8e:67:2c:
4b:40:ad:5b:dd:98:07:b0:66:37:c4:59:57:d3:29:
8a:14:ba:cf:06:ff:24:c5:06:51:65:b3:45:4e:1f:
61:dd:6c:74:98:17:de:ba:ef:5c:ec:2c:b8:ee:d9:
57:4b:d8:82:73:a6:5c:11:df:c5:f7:a4:7c:5a:17:
1b:14:31:63:5e:5a:a8:dd:0f:08:d1:b2:22:36:b4:
c3:cc:63:7e:69:94:d5:d0:eb:f9:a6:e2:e5:76:f4:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:62:B1:D4:7A:C4:B1:58:94:74:49:0E:7E:24:8A:EB:4E:57:EE:03
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:c6:89:b7:ce:7b:fb:e5:f9:dd:34:ff:e5:56:bc:76:4a:0f:
47:e4:db:14:e3:0c:7c:57:25:2b:9c:d9:63:c3:2a:a0:d3:d7:
62:f8:73:da:9c:5c:81:fb:1f:02:2f:91:4b:e7:4b:b4:05:a0:
5e:e9:bc:17:1d:35:d1:dd:77:48:d9:c8:26:83:f7:4c:2f:2f:
7b:c3:8a:80:26:ea:73:43:44:c4:6d:02:0e:7d:ae:43:96:bd:
f1:84:ff:d0:32:72:f3:8c:48:ba:17:b4:9f:08:dc:cc:bf:ac:
60:00:a4:7e:06:1a:54:fa:f3:d5:7b:28:f7:47:2a:41:a7:59:
69:64:53:b1:49:3f:dd:51:14:8e:73:e0:da:5d:5c:07:25:e9:
90:b4:45:97:90:b2:04:db:d4:bb:32:3f:35:f0:4b:2b:71:f3:
26:e6:2e:7b:e5:bd:88:ba:c3:53:2f:c7:db:4d:7d:2e:e6:10:
ec:45:fa:73:79:fa:ec:d9:87:5e:5e:fe:96:b4:07:cd:3e:66:
97:ac:f0:3e:3b:24:b8:34:98:42:f4:fa:e4:c7:cc:a0:1d:5d:
3e:d6:15:2f:e2:b3:c4:2a:8f:fc:2d:aa:d9:d6:d8:95:10:d1:
92:d2:95:17:19:8c:3b:58:5b:ae:81:36:24:0f:44:8f:87:98:
9f:55:c1:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0ICiRDFpvdpeKthVXSgBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxOTBmNWQ1ZjkyYTQ4NjM2MjE3N2E0MmIzZDVlZmRhMjBl
MjIwZTEwHhcNMjYwNDE3MDUwMTExWhcNMjYwNDE4MDUwMTExWjAzMTEwLwYDVQQD
Eyg0MjYyYjFkNDdhYzRiMTU4OTQ3NDQ5MGU3ZTI0OGFlYjRlNTdlZTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqurnsbYcMq5mPHAIYBd48us8XqBw
raUiBgcvTUvyn0j7pGryTH1VtzJ5GOZJP7/t7z5iLFIm98a66neVzYVRZbbne3qu
EPwU6t+JpqUnIMsviOtVn5i2TUEDRHG0m0Cs/eK+lryZ1hXdfFKgLVD/KlvfufKh
uYMg2Hd22CltoCHZMMGHgmm2oUp1Vj0RV6as83h/eNGXJCxrw0FBK3/naCKOZyxL
QK1b3ZgHsGY3xFlX0ymKFLrPBv8kxQZRZbNFTh9h3Wx0mBfeuu9c7Cy47tlXS9iC
c6ZcEd/F96R8WhcbFDFjXlqo3Q8I0bIiNrTDzGN+aZTV0Ov5puLldvR5LwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEJisdR6xLFYlHRJDn4kiutOV+4DMB8GA1UdIwQY
MBaAFHGQ9dX5KkhjYhd6QrPV79og4iDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUt
MDFjODI3ZDZlMGZlLzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUtMDFjODI3ZDZlMGZl
LzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ8aJt857
++X53TT/5Va8dkoPR+TbFOMMfFclK5zZY8MqoNPXYvhz2pxcgfsfAi+RS+dLtAWg
Xum8Fx010d13SNnIJoP3TC8ve8OKgCbqc0NExG0CDn2uQ5a98YT/0DJy84xIuhe0
nwjczL+sYACkfgYaVPrz1Xso90cqQadZaWRTsUk/3VEUjnPg2l1cByXpkLRFl5Cy
BNvUuzI/NfBLK3HzJuYue+W9iLrDUy/H2019LuYQ7EX6c3n67NmHXl7+lrQHzT5m
l6zwPjskuDSYQvT65MfMoB1dPtYVL+KzxCqP/C2q2dbYlRDRktKVFxmMO1hbroE2
JA9Ej4eYn1XBYQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:58:18 2026 by rpki-client