Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
File: rzkvKN7GuMzrfNcOevcdjNyqmgY.mft (raw, json)
Hash identifier: seOw72tgYaFpgG7ie6QeeWh/PCiF9/zibRqepE7vuDM=
Subject key identifier: 6A:93:E0:9C:60:3F:9A:58:5E:1B:71:60:6F:20:CB:C9:9F:B1:5D:A5
Authority key identifier: AF:39:2F:28:DE:C6:B8:CC:EB:7C:D7:0E:7A:F7:1D:8C:DC:AA:9A:06
Certificate issuer: /CN=af392f28dec6b8cceb7cd70e7af71d8cdcaa9a06
Certificate serial: 019D992BACFA00F7241736B2250D14071729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 02:01:09 +0000
Manifest this update: Fri 17 Apr 2026 02:01:09 +0000
Manifest next update: Sat 18 Apr 2026 02:01:09 +0000
Files and hashes: 1: 7qTF0jqmrE5sqWppz2XaId92Nsg.roa (hash: BXslQtBYGdpBVanESXoQgNGnECD/ohyq+njOEg7cP8o=)
2: rzkvKN7GuMzrfNcOevcdjNyqmgY.crl (hash: Zgu8AaAvD4cVHLbLlgjogLBBYjaBQCocX3CviIUnf9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:ac:fa:00:f7:24:17:36:b2:25:0d:14:07:17:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af392f28dec6b8cceb7cd70e7af71d8cdcaa9a06
Validity
Not Before: Apr 17 02:01:09 2026 GMT
Not After : Apr 18 02:01:09 2026 GMT
Subject: CN=6a93e09c603f9a585e1b71606f20cbc99fb15da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:65:61:88:85:48:5c:d7:8a:1b:e0:2a:0e:c4:
88:c7:2c:67:e0:eb:39:dd:64:03:eb:86:f2:55:fe:
94:eb:27:3b:21:c1:d3:16:96:21:56:ac:49:4c:46:
37:00:38:4f:d8:74:f1:33:90:c6:76:8b:3d:e4:64:
cd:80:8c:4f:f6:f3:a5:4c:c3:c8:11:21:ce:d6:38:
bd:b1:db:96:b2:28:fe:0e:84:4e:af:92:20:04:94:
ff:3d:46:ee:d5:6e:9e:8a:84:c3:a9:8a:35:78:ff:
59:2f:57:2c:42:76:14:c5:62:67:c8:9b:25:6d:11:
3d:48:bb:b7:8d:ad:91:84:d4:86:d7:96:44:4e:3d:
cb:e0:b1:57:b1:d3:43:8c:a3:75:c4:4d:28:e1:38:
38:3c:b1:3d:43:3b:90:8e:40:71:2d:e6:19:d0:e9:
81:b5:8e:d6:bb:71:c0:85:df:ad:11:53:58:f4:0c:
d5:e5:2a:84:f0:79:ec:b3:c3:31:6a:d0:60:22:ba:
65:11:70:e4:ac:ef:9c:8c:9f:d6:57:3f:e2:4d:af:
ab:4d:d5:eb:07:c5:84:89:43:aa:87:de:96:7d:34:
88:78:76:c0:21:30:01:58:09:ad:fd:d4:42:dd:74:
40:6f:f5:31:07:a0:7a:be:1a:43:2c:c9:6a:00:e6:
c3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:93:E0:9C:60:3F:9A:58:5E:1B:71:60:6F:20:CB:C9:9F:B1:5D:A5
X509v3 Authority Key Identifier:
keyid:AF:39:2F:28:DE:C6:B8:CC:EB:7C:D7:0E:7A:F7:1D:8C:DC:AA:9A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzkvKN7GuMzrfNcOevcdjNyqmgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f36d4-72e1-4046-b73f-ab9eadb1d797/1/rzkvKN7GuMzrfNcOevcdjNyqmgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:48:e7:e6:1c:fc:e4:23:7f:47:74:91:1c:36:1e:77:b2:97:
00:70:ef:5e:ba:9b:09:ce:e4:2a:5f:b1:20:1b:92:3a:f1:1e:
74:27:dc:e5:14:1b:79:c2:51:3f:99:a0:17:10:8b:f9:02:d9:
44:ba:ea:37:17:5c:1a:90:07:bf:d6:11:64:ee:b5:64:81:67:
34:4c:60:44:96:bb:ca:0d:56:e5:86:e7:eb:d7:c0:bd:0a:25:
83:5d:da:99:96:12:b1:3b:2e:3e:b8:0d:ad:7a:91:16:36:6f:
b3:9a:e8:46:06:c8:7a:6c:2c:b9:eb:af:36:1c:8d:f3:f6:de:
d8:2d:a3:f7:8b:ab:1f:5c:02:54:0e:f2:e9:cc:17:14:93:ca:
9c:44:f0:d0:78:31:cf:5c:a2:8e:22:a7:f6:34:92:fd:e1:aa:
5f:1b:0e:0b:8f:5d:2e:8d:2d:3f:3f:03:7f:19:63:24:0a:9c:
0b:47:22:94:3a:f7:65:54:3e:4c:20:31:6b:f9:73:98:62:3b:
51:25:f6:48:f7:7d:ec:36:95:d9:f7:2f:87:df:e5:12:af:10:
25:7f:d5:fd:68:86:04:5e:fe:c9:c5:b7:86:5f:20:60:d2:3a:
73:fc:67:68:47:aa:90:fb:a6:bf:a2:f4:52:59:94:e9:1c:6b:
37:cd:57:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:53:35 2026 by rpki-client