Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
File: ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft (raw, json)
Hash identifier: 1XiymOZotJ8HMNbARBf5bdw0JJC1qfdgXJOuYyJvqEA=
Subject key identifier: 0C:95:B5:A6:28:0D:D5:7A:BC:7A:FC:48:E7:1B:DA:DC:53:14:14:8D
Authority key identifier: 65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
Certificate issuer: /CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Certificate serial: 019D98BD6C8B642D350D9DCD22DD15AFE9D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
Manifest number: 1580
Signing time: Fri 17 Apr 2026 00:00:43 +0000
Manifest this update: Fri 17 Apr 2026 00:00:43 +0000
Manifest next update: Sat 18 Apr 2026 00:00:43 +0000
Files and hashes: 1: GZsPzmbA--FYrc4SNgLcVzZUS58.roa (hash: gCmBdutjh3s8CjQ+XZ5HjES4JuiIxCATlIX/+TCZL7A=)
2: ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl (hash: zYusYyEuTWDc9vscNyo2tPCG7RqHDx00zn0zyXA2UwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:6c:8b:64:2d:35:0d:9d:cd:22:dd:15:af:e9:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Validity
Not Before: Apr 17 00:00:43 2026 GMT
Not After : Apr 18 00:00:43 2026 GMT
Subject: CN=0c95b5a6280dd57abc7afc48e71bdadc5314148d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:82:29:9f:94:1e:b8:21:b2:7a:7a:20:7f:4b:
c9:48:67:17:6b:9c:4e:7a:49:56:9f:06:f4:23:45:
4c:3b:9f:09:93:7a:9d:4a:00:2d:e6:4f:9f:c8:81:
92:07:b7:ab:b4:b9:46:73:5b:ac:5f:49:86:0d:da:
8b:cb:05:cd:df:fd:6e:b3:d8:95:d8:d5:b3:ec:40:
b9:df:23:13:35:a1:cf:50:c2:54:ea:a9:06:19:96:
fd:b5:6e:31:5e:85:e8:23:d6:02:cd:fb:76:39:12:
da:fa:de:5d:03:a7:08:d6:7f:cc:fc:20:8f:af:6f:
66:be:c0:ed:29:c9:64:8b:6e:b7:65:92:dd:75:fb:
61:dc:dd:2c:6e:7a:8b:21:27:07:d3:0e:4e:84:5a:
46:9b:0a:c1:ef:23:41:d4:92:da:eb:98:43:14:6d:
8a:9a:b8:61:24:ea:98:c6:90:3d:f4:e2:e9:78:4c:
6c:9f:b3:49:77:57:02:ae:c5:91:19:a9:df:dd:ef:
27:c9:70:aa:8a:d6:a7:31:49:b6:50:11:ef:e2:c9:
96:6a:fb:76:a2:4a:6e:bf:d4:d3:ae:cd:2c:b2:ea:
8d:50:c5:3b:8b:41:b8:4c:6a:7c:1e:ee:0b:90:2a:
e5:be:7f:e5:a4:c7:aa:c1:8b:cf:25:b1:16:af:0b:
24:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:95:B5:A6:28:0D:D5:7A:BC:7A:FC:48:E7:1B:DA:DC:53:14:14:8D
X509v3 Authority Key Identifier:
keyid:65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:31:fb:73:e3:b3:01:5d:00:94:3e:67:a4:5a:a7:2a:22:4f:
14:6d:48:c3:78:d8:0a:c0:9c:48:2e:1b:26:a3:45:3a:bf:3d:
d2:9c:02:e1:ba:4b:aa:20:f0:80:fc:4b:7f:1b:7a:9a:ad:f2:
75:e2:a3:4d:e8:f8:ff:a4:0a:54:ff:a1:d5:4f:6d:4a:e2:ae:
b1:da:cf:48:85:91:88:36:12:e6:62:4e:e7:fd:dd:20:36:5e:
92:15:45:b3:eb:b4:35:2a:3a:86:eb:8d:f4:4a:71:2a:72:33:
66:c6:f7:2f:c0:d6:eb:9d:bc:d7:ce:d5:f6:eb:97:1c:42:58:
37:4f:94:08:1a:f5:8b:a6:b1:da:12:74:88:3f:f5:95:31:7b:
b4:c4:20:59:68:1d:41:7e:29:87:ac:ad:01:9d:e3:43:38:73:
14:99:a9:d4:2a:5f:ba:bf:f9:a2:7c:78:97:ec:ae:6d:9c:42:
65:51:95:97:01:b2:e4:70:ca:5c:b4:d0:67:b4:70:93:46:00:
1d:77:f9:b5:9c:41:16:d8:d2:cc:ec:2b:8c:ec:56:fa:f9:3d:
11:5e:a5:30:1f:fa:3a:e4:c4:c8:a2:1f:e0:9c:e2:48:a6:ab:
5c:e2:cf:e6:7e:22:a9:bc:24:d7:e7:11:f7:e3:36:7e:dc:a0:
ac:9a:20:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:11:42 2026 by rpki-client