Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: x7c7kORcTf6Y1CP/emkAShuXaUHe/TYoc5EWuXsLrpw=
Subject key identifier: BC:09:D9:D6:1B:DE:71:E1:DB:AC:24:F3:E3:62:C7:17:CF:60:2C:98
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 019D25BA6974612E3F6E814F54C9DD1AD841
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 09F6
Signing time: Wed 25 Mar 2026 16:01:06 +0000
Manifest this update: Wed 25 Mar 2026 16:01:06 +0000
Manifest next update: Thu 26 Mar 2026 16:01:06 +0000
Files and hashes: 1: wEZZX0o5N8nlP47tu1RwoQ2y0AY.roa (hash: ddJPky6VMI6qp8TK3QriFAzhCSzbyfK/JMSPvgj4FCE=)
2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: s8J3j+GKO0SOJwD7FgOAL3TilaYNHs65ViYNSTT9WTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:69:74:61:2e:3f:6e:81:4f:54:c9:dd:1a:d8:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: Mar 25 16:01:06 2026 GMT
Not After : Mar 26 16:01:06 2026 GMT
Subject: CN=bc09d9d61bde71e1dbac24f3e362c717cf602c98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8d:3a:dd:c2:4d:aa:51:cb:c0:ac:92:9d:c0:
9e:db:b3:91:66:ee:1e:5a:00:3d:c6:b5:a1:37:e8:
22:c0:19:17:f5:8a:4b:c5:f3:96:20:ea:bb:4f:ba:
59:d2:ff:d5:e0:e1:29:11:d9:dd:0a:98:75:a3:77:
69:61:cb:ba:3a:2f:af:b8:c0:c5:c3:65:95:56:fa:
ea:30:0e:e9:9b:f5:57:fc:b0:1c:c2:e2:ee:13:97:
4e:60:02:e3:6d:97:aa:c8:b6:b0:0f:e4:27:cc:b6:
0b:82:f9:02:91:f3:fd:47:ce:61:6b:b9:9a:e9:54:
7b:9b:30:f9:5e:a4:46:a6:09:20:a6:a9:f3:ff:28:
0f:a2:72:ba:85:c2:9c:f9:78:d9:a7:45:1f:82:ff:
26:9b:18:0f:ac:bf:26:5c:f2:78:d1:25:2e:0f:00:
5c:d2:69:dd:5f:32:78:a0:68:b9:05:03:9e:44:24:
1a:6f:cd:f3:4a:59:e4:94:4f:a1:97:89:7f:12:8a:
e1:1f:a7:ea:26:49:6f:a4:50:8e:b6:96:ec:0a:14:
97:f9:b9:b8:0f:7a:eb:59:43:ee:66:8a:51:05:9f:
1c:7e:86:8e:ef:b2:3d:d7:05:d7:2d:0f:fa:c5:b4:
fd:0c:9a:eb:47:62:41:02:ce:3a:f2:8f:47:4e:8f:
36:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:09:D9:D6:1B:DE:71:E1:DB:AC:24:F3:E3:62:C7:17:CF:60:2C:98
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:eb:59:e9:6e:15:22:ca:d6:1e:d4:ab:7e:87:40:25:fe:6b:
ca:55:e0:7a:fa:97:4c:7e:96:4e:15:c8:5e:cb:bf:2c:72:d0:
fa:15:cb:0c:63:ac:61:4c:a9:9f:09:22:98:ab:7d:10:50:ca:
bd:8e:a0:e3:65:7d:0e:eb:92:ac:2e:f1:94:24:7d:c0:93:64:
15:0c:c2:b5:8f:ed:1c:3a:5f:20:5d:9a:74:88:c2:a0:5f:3a:
98:5c:14:da:19:d5:9a:2c:f9:1b:89:8d:fe:a7:c5:70:ee:8c:
fc:3d:27:76:cf:65:45:9f:1b:6d:40:2c:90:e4:91:a3:18:4b:
cb:bf:0e:fb:92:54:a8:37:b6:41:ab:87:a8:6b:eb:15:09:a5:
c0:2e:3c:84:91:fa:91:ea:75:75:8a:8d:80:3e:b8:dd:27:1b:
0e:71:68:9d:59:7a:43:1a:ec:33:8b:c5:1e:ed:2b:9b:83:5a:
3d:df:6f:fe:8e:58:a8:25:fc:e0:29:71:bb:ff:23:c5:6b:9f:
91:10:dd:14:35:16:94:a1:f7:54:89:97:1f:33:67:c0:5c:4b:
10:7c:9b:f9:87:ac:b2:37:e1:62:ed:3f:95:13:7c:cc:18:22:
60:70:b3:9d:4a:db:ff:c6:7d:fa:6c:f2:7c:51:b5:13:46:55:
19:d0:4d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:33 2026 by rpki-client