Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
File: ZAsfh3LG70hOLNLWYmPy75j6OWg.mft (raw, json)
Hash identifier: Kviu4I+ADYPB1lvtHo5w/LXPYjxtP51FescYxKdfmNo=
Subject key identifier: 6B:B4:65:2D:D0:CA:0F:F2:1A:76:56:3F:A7:CA:6E:39:34:CA:D5:91
Authority key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
Certificate issuer: /CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Certificate serial: 019D981888B038215415F4E060FA78EF6594
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
Manifest number: 18C1
Signing time: Thu 16 Apr 2026 21:00:37 +0000
Manifest this update: Thu 16 Apr 2026 21:00:37 +0000
Manifest next update: Fri 17 Apr 2026 21:00:37 +0000
Files and hashes: 1: DU8OixuQSBT4wDmFxWVtjuElegU.roa (hash: fAA3Up2hh08gKhdkTQ9YAofCRj3IfUFUPtWpnzTKD+E=)
2: ZAsfh3LG70hOLNLWYmPy75j6OWg.crl (hash: FmH997VqO3QrU5X6bmhSMNxdnIkU+f3AGicG1aJ5WbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:88:b0:38:21:54:15:f4:e0:60:fa:78:ef:65:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968
Validity
Not Before: Apr 16 21:00:37 2026 GMT
Not After : Apr 17 21:00:37 2026 GMT
Subject: CN=6bb4652dd0ca0ff21a76563fa7ca6e3934cad591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:c1:32:db:d6:bc:6d:7b:33:fa:64:76:0d:
56:ca:97:8d:4f:d4:d6:e4:5c:94:bf:28:dd:f6:55:
16:c0:50:89:c3:8e:fc:4c:54:77:50:fc:72:d9:d5:
37:8a:70:ba:63:65:71:df:c0:c5:45:6c:ba:02:05:
3e:21:d6:2c:ad:5c:76:00:08:67:8f:03:bc:73:00:
51:41:c7:bc:23:39:9c:50:eb:63:fd:23:83:82:aa:
4c:8a:3a:51:69:8e:9e:ef:a0:bc:e8:16:57:6d:7c:
88:07:7a:fe:13:a7:40:71:a3:e1:bd:e0:55:cd:5b:
cf:4c:76:75:9a:a7:94:0f:b4:ee:ac:9e:0f:b5:39:
78:1c:dd:a8:05:b8:33:65:73:3d:fc:66:42:fa:4e:
72:0f:b0:b5:20:97:08:c5:e9:38:d4:31:a0:6a:6d:
a0:8e:70:ff:59:30:07:b0:3e:3a:37:b9:bf:df:76:
82:9f:41:db:88:ec:39:40:c1:87:4a:bc:1d:5f:47:
6e:28:e6:d3:3b:7f:25:90:fb:2f:31:9b:4b:6a:c0:
72:6c:18:7b:b0:2f:c5:16:0b:7e:bf:15:a6:e0:d4:
09:11:36:73:4d:fc:a8:0c:05:4d:64:e3:5e:de:eb:
14:1b:25:60:04:b5:b3:76:74:82:7c:93:0e:33:fa:
58:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B4:65:2D:D0:CA:0F:F2:1A:76:56:3F:A7:CA:6E:39:34:CA:D5:91
X509v3 Authority Key Identifier:
keyid:64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a9:e3:44:5d:7f:54:c5:a4:8f:a3:48:01:84:5c:58:d4:57:
d7:e9:d3:e7:63:17:26:d9:ef:22:c4:57:4d:c1:fe:91:e1:58:
17:01:01:7a:1f:11:1b:25:36:08:59:f2:ac:5c:e2:14:39:ed:
b7:ab:55:78:e6:53:6a:35:c9:59:6e:bc:27:0c:d7:1c:8e:dc:
94:e5:d7:5d:7b:2d:3e:b0:7a:b7:e5:88:db:f0:d6:7c:e1:20:
c7:a3:86:07:a6:0c:f9:b8:52:7f:c7:c4:b4:a2:16:49:95:a0:
17:ff:74:d5:24:4f:24:83:e1:6d:15:4d:9f:a4:63:68:bd:8f:
10:8c:d4:cc:31:51:8f:c0:b6:61:3e:ac:a3:8f:c2:c4:18:7d:
67:9a:14:16:f5:f3:41:b7:43:af:34:39:5c:a8:d5:b4:ce:c8:
68:93:66:bc:bc:05:0f:1f:ea:bd:78:cf:42:a6:74:3d:a3:f2:
7a:be:de:ed:5a:79:94:d6:50:be:86:ce:7b:e4:2b:19:6d:46:
4b:d8:45:23:df:80:1c:26:ec:26:8d:b8:a3:12:e2:cc:23:89:
1e:37:eb:9d:6b:1e:13:01:18:c2:0a:9b:f6:c6:cc:a6:1c:38:
08:96:29:93:87:27:c3:36:07:45:8f:f2:88:26:ed:7b:10:0e:
54:8e:46:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:04:18 2026 by rpki-client