Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: 5iSpiVBTlfIo7DMb6ExseJT1pffdLrXKit61DWYYIP0=
Subject key identifier: 29:46:3A:09:A6:76:E6:08:30:C2:0C:6C:20:CA:44:44:21:08:81:81
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 019CAC47798F8197CD17D83480E23232F82E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 16BA
Signing time: Mon 02 Mar 2026 02:01:31 +0000
Manifest this update: Mon 02 Mar 2026 02:01:31 +0000
Manifest next update: Tue 03 Mar 2026 02:01:31 +0000
Files and hashes: 1: W0kDwuE8Wzw-iZxK0RP3iilB4OI.roa (hash: LAGYp6tmx7aAjzZBlxGzQ8k1I+/BB+mHmklMRyiCKgA=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: JXPsmYG3EtXXu0nXGH8jduVf7DGM/qL0Vggsgu24R6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:79:8f:81:97:cd:17:d8:34:80:e2:32:32:f8:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Mar 2 02:01:31 2026 GMT
Not After : Mar 3 02:01:31 2026 GMT
Subject: CN=29463a09a676e60830c20c6c20ca444421088181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c9:26:65:0a:83:ed:6c:7a:e2:9f:1a:0e:54:
e2:6a:e5:eb:f6:3a:9f:7c:55:9f:18:f2:39:2a:21:
9b:3d:f7:53:2f:ec:b9:19:89:50:30:80:d5:1a:cd:
8d:29:83:03:82:74:61:07:73:60:9a:f5:9f:13:70:
6e:52:4b:73:83:41:fc:34:fa:1b:b5:a8:5b:98:ff:
f3:5a:7d:27:1f:22:c0:97:2e:8f:3c:e2:13:8a:b0:
f7:b3:be:e7:b8:2d:25:a5:8e:13:6b:7c:d5:89:ef:
5c:1f:9c:b1:c5:b3:b2:35:ca:52:05:d7:37:68:cb:
cf:a5:07:4e:ca:1c:11:27:e7:fe:e7:7b:90:32:2b:
38:9d:cf:12:ad:d2:80:fa:d5:3a:cb:5f:f9:6c:0d:
76:b1:6f:8e:a5:b0:bd:90:c0:6b:99:90:c0:1b:d6:
85:fa:0b:58:15:ed:8f:8c:74:d7:15:60:6e:6e:e9:
65:c8:9d:c9:63:a7:6b:c9:63:d1:08:c6:dc:1a:c7:
c0:83:63:e9:5b:43:e0:30:15:2d:51:50:56:30:ad:
5b:50:e8:dc:b6:8e:36:91:74:eb:0c:df:d2:0a:7d:
ef:1a:45:dc:13:6b:be:05:2f:98:85:7c:7a:80:c3:
21:b6:76:e5:62:8e:46:74:78:5b:a4:4d:bf:37:c3:
c1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:46:3A:09:A6:76:E6:08:30:C2:0C:6C:20:CA:44:44:21:08:81:81
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ef:a8:f8:0f:62:aa:c8:b2:dd:6c:0c:34:00:42:28:eb:78:
f1:60:0e:a4:ed:08:25:a9:ef:9c:44:d0:89:18:ca:b2:19:5d:
82:bd:c7:8d:3f:40:e2:3c:08:11:01:11:42:89:bb:6e:4f:e1:
34:bd:c3:2d:79:24:f2:50:f0:ab:8f:66:a4:a3:4e:7f:d8:e6:
ac:d0:48:2d:e4:bb:01:ad:5c:5e:2d:dd:a9:24:c7:e6:08:13:
e3:d9:09:06:e0:67:c0:52:5a:6f:f3:1b:1b:22:aa:db:52:e4:
d8:9d:f6:c7:17:ea:f9:eb:1f:61:1e:a6:7b:e5:87:6d:97:0a:
79:e1:8d:20:3b:81:aa:50:a7:4f:ba:17:cc:28:72:47:dd:c9:
c3:6a:e5:72:04:56:49:cc:66:49:97:ec:92:40:ba:ac:86:9e:
85:fc:89:67:11:4d:32:8b:c8:66:64:63:f2:0c:d9:22:bc:5d:
fa:6d:a6:02:9e:08:21:ff:c7:fe:67:36:96:56:68:36:de:f8:
e9:fd:4e:63:97:7f:08:49:a1:00:9f:f6:58:15:ee:3d:58:fe:
e8:90:04:a6:b3:ef:38:c8:0f:9d:d1:9c:d3:23:f2:60:b9:78:
e7:a4:be:6b:2e:4d:78:56:3d:17:f8:c7:a8:fa:af:d4:14:dd:
37:7b:be:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:55:49 2026 by rpki-client