
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
File: rzkvKN7GuMzrfNcOevcdjNyqmgY.mft (raw, json)
Hash identifier: /VopjB62Fi1XXp/nCrRz0MaTWTCqfjxWnyCyYW8Up6o=
Subject key identifier: CB:0A:D8:10:BF:9A:18:3A:7C:0B:E8:71:FE:4A:B6:74:F4:44:C2:9E
Authority key identifier: AF:39:2F:28:DE:C6:B8:CC:EB:7C:D7:0E:7A:F7:1D:8C:DC:AA:9A:06
Certificate issuer: /CN=af392f28dec6b8cceb7cd70e7af71d8cdcaa9a06
Certificate serial: 019D9B196D3FB70A97C0C8040E6E30C90EA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 11:00:27 +0000
Manifest this update: Fri 17 Apr 2026 11:00:27 +0000
Manifest next update: Sat 18 Apr 2026 11:00:27 +0000
Files and hashes: 1: 7qTF0jqmrE5sqWppz2XaId92Nsg.roa (hash: BXslQtBYGdpBVanESXoQgNGnECD/ohyq+njOEg7cP8o=)
2: rzkvKN7GuMzrfNcOevcdjNyqmgY.crl (hash: mlZxqDyzrmkssUEwP6Jpi0PgcLqpitaOat11dSTqyjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:6d:3f:b7:0a:97:c0:c8:04:0e:6e:30:c9:0e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af392f28dec6b8cceb7cd70e7af71d8cdcaa9a06
Validity
Not Before: Apr 17 11:00:27 2026 GMT
Not After : Apr 18 11:00:27 2026 GMT
Subject: CN=cb0ad810bf9a183a7c0be871fe4ab674f444c29e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:5c:9c:97:30:60:49:7d:a9:29:1c:26:22:13:
10:0d:fe:5f:ba:4d:74:6a:42:b3:25:c5:07:be:7a:
a2:3e:fb:c1:40:45:ad:8e:fd:d9:85:34:de:04:53:
da:a8:90:fd:a5:24:45:30:ea:32:90:7b:9c:96:db:
a4:55:df:05:dc:2d:94:86:d3:25:e3:6f:b2:2e:d8:
8a:d2:78:e6:33:f7:25:3c:3b:76:65:65:c6:55:fd:
3c:d8:a5:49:a0:ac:e9:dc:df:3d:55:47:91:55:89:
22:99:3c:f6:d7:e3:30:f0:5d:4f:3d:d4:b3:31:4d:
9e:ec:40:90:15:6e:61:67:86:e8:26:fd:0e:1d:57:
5b:3b:f9:ed:1e:38:07:83:d8:92:a3:e7:9b:0e:6a:
86:2c:1f:9f:06:a4:7a:f8:40:ec:37:54:22:03:c3:
35:8e:79:e3:a3:83:6b:a4:b3:15:70:8e:92:e6:46:
2c:43:bc:8c:7d:1d:1e:c6:41:d0:f5:ae:6a:00:3b:
ba:10:bf:56:af:01:e9:50:94:d6:71:83:cb:31:b2:
a2:07:14:ec:17:8e:0c:94:c2:b5:6c:4f:26:d6:4c:
37:2e:b1:7a:a4:62:23:9d:82:67:0d:e7:3c:13:76:
15:1e:01:ae:0e:95:0f:d9:da:07:7c:02:31:d2:3b:
58:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0A:D8:10:BF:9A:18:3A:7C:0B:E8:71:FE:4A:B6:74:F4:44:C2:9E
X509v3 Authority Key Identifier:
keyid:AF:39:2F:28:DE:C6:B8:CC:EB:7C:D7:0E:7A:F7:1D:8C:DC:AA:9A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:b5:dd:a2:ff:8f:89:72:b0:4f:d6:77:75:ee:a3:28:a6:e8:
ce:d5:ed:5e:94:b0:8a:68:88:5c:b1:b2:94:f8:91:c0:59:32:
e2:3e:8d:a8:bb:c2:8a:2f:f4:c1:05:42:7f:1a:99:b1:43:b6:
0c:c5:c6:be:1f:31:5c:37:d7:c3:8d:2a:22:1f:cc:a5:38:5f:
a6:58:c0:16:27:07:01:9b:60:01:36:40:11:f3:ca:2e:08:56:
09:30:67:9a:05:33:6a:04:83:24:90:e5:3a:d2:d6:21:fa:76:
89:77:c9:27:b2:4e:9f:d9:06:7e:58:98:9f:81:d1:16:b9:ad:
bd:f2:47:dd:c7:29:e3:9c:7b:93:f7:ec:39:d5:50:d3:df:4e:
1a:b1:ba:2a:1c:20:99:e3:6d:5f:20:f1:09:a1:f9:5d:30:03:
70:47:18:54:9a:18:ac:c2:66:40:24:f9:e8:4c:1a:6d:32:17:
a5:74:81:97:87:a2:7a:2b:ae:64:0e:0a:f3:a6:2e:31:55:44:
e5:c8:a0:54:42:c0:9c:cd:bd:82:35:80:0b:8c:23:24:a0:52:
d7:50:8a:f3:1a:50:97:81:ab:d6:de:33:e5:b1:96:d0:7b:9b:
4b:30:9c:a1:7d:13:80:f9:0b:9d:b0:77:75:b7:22:4a:45:a9:
6c:68:87:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:53:13 2026 by rpki-client