Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
File: zSC8r3ISPi2fXieIazg5t0JEELc.mft (raw, json)
Hash identifier: NVehOuoVTKiqAtQHmdoyEUSRnHOQkdLtmBwj2IrDCRg=
Subject key identifier: 44:EE:DA:72:14:F8:7E:90:2D:60:F4:0A:DA:36:3A:22:9F:77:2E:DF
Authority key identifier: CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
Certificate issuer: /CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Certificate serial: 019D9850052C498BCE44F729B1A754285C0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
Manifest number: 0EAF
Signing time: Thu 16 Apr 2026 22:01:14 +0000
Manifest this update: Thu 16 Apr 2026 22:01:14 +0000
Manifest next update: Fri 17 Apr 2026 22:01:14 +0000
Files and hashes: 1: MxSa_Y12ZkKW1wWb8756TfNw_Aw.roa (hash: EaKZOSwf60cJtDMMGuhN9/rV4xuZMLDks62/ENEPebA=)
2: zSC8r3ISPi2fXieIazg5t0JEELc.crl (hash: +G4gKGGCmXsXsOHkN1fTzVaX3002ft/GfjXfNawHDOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:05:2c:49:8b:ce:44:f7:29:b1:a7:54:28:5c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Validity
Not Before: Apr 16 22:01:14 2026 GMT
Not After : Apr 17 22:01:14 2026 GMT
Subject: CN=44eeda7214f87e902d60f40ada363a229f772edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e3:40:88:d3:71:2d:5c:67:83:7a:4a:f9:14:
3f:92:e8:b9:90:cf:5a:1e:66:71:73:52:5c:19:22:
99:41:bf:c8:2d:9f:eb:d5:24:59:14:3f:87:c1:76:
0e:20:96:b3:5e:cf:28:ae:91:8c:e8:f2:a1:42:47:
61:f0:18:ec:8a:99:d1:a1:fb:78:27:91:11:16:16:
bc:49:06:10:ad:58:21:3b:cb:76:46:27:84:cc:28:
82:2f:60:42:44:04:bb:45:86:3a:4b:04:5d:f6:b1:
a0:4f:48:ab:a4:79:e4:6e:8b:8c:46:e6:c7:21:02:
f3:a0:41:e9:29:11:af:c7:48:93:b2:66:0c:f3:a8:
c8:21:ef:8c:8f:bb:14:53:4c:bc:05:db:4f:03:52:
43:e3:ba:6d:7d:90:f3:f5:c9:d7:b0:47:37:67:17:
e1:62:86:77:38:07:ec:23:56:a7:6b:3e:2b:9c:6b:
52:ec:37:6f:25:39:04:15:a7:9f:16:ab:7a:6f:6e:
bd:7b:1a:0b:49:70:b9:10:68:10:a8:0c:e8:5b:a4:
2c:7f:02:f7:c1:2a:ae:43:65:5b:4c:e0:82:50:e0:
04:11:ce:4c:e7:75:d9:f6:50:cb:e1:96:9a:d9:1b:
31:2e:9d:cd:98:7f:8b:c0:47:b9:0c:bc:e7:3f:2b:
0b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:EE:DA:72:14:F8:7E:90:2D:60:F4:0A:DA:36:3A:22:9F:77:2E:DF
X509v3 Authority Key Identifier:
keyid:CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:76:15:3a:93:f9:b6:9d:8e:b2:41:63:1e:34:da:7a:0d:ef:
fc:f9:e2:11:14:55:66:12:51:64:d5:e0:3a:53:b4:33:92:0c:
0e:8f:ba:ad:f6:12:2d:1b:23:90:2d:69:87:c3:77:fe:01:04:
19:17:23:f2:f4:1f:89:c7:3a:4a:7e:b8:55:45:9f:7f:21:02:
b3:1a:f7:5c:3c:65:dc:8c:32:f0:2d:f5:25:7f:54:6c:ef:92:
dc:2f:5a:8a:0e:d8:98:be:37:60:0d:69:24:7d:62:cf:84:1f:
5f:d6:e9:df:46:b1:96:51:31:06:d2:e0:42:14:45:d1:bc:1f:
bc:3a:6f:4c:eb:a4:34:d4:1a:c3:25:da:56:42:49:ca:60:8c:
fe:2f:5f:9d:10:8e:8a:cc:3b:7b:22:3e:c4:44:31:b4:de:a0:
a4:99:4a:0f:d6:f5:fb:ba:c8:20:27:11:1e:c4:f7:7d:03:6e:
15:fe:c7:a2:64:a0:3f:78:2a:b7:78:af:c9:db:37:15:d6:42:
7c:4a:3b:71:d1:ac:4c:c1:4d:71:4c:07:4d:87:eb:00:fd:97:
92:cf:86:6b:0d:a5:71:9d:38:f0:ce:51:70:04:6e:fa:4f:00:
35:4d:c6:97:59:3a:af:fb:85:e9:f3:cb:88:82:10:c9:14:cf:
0f:a4:2f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:45:01 2026 by rpki-client