Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: HpN6Z9dEOG7W3GaPwlrdl9l4gJsLmWflzHCSScLvBfM=
Subject key identifier: B6:53:7E:F6:96:31:28:2A:C6:2D:B9:A5:5D:2C:60:59:84:80:DA:F8
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 019E1D90B5A20A4C541605F87AAC3779B046
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 0A78
Signing time: Tue 12 May 2026 19:01:23 +0000
Manifest this update: Tue 12 May 2026 19:01:23 +0000
Manifest next update: Wed 13 May 2026 19:01:23 +0000
Files and hashes: 1: GvdosnM4oTQr42AAbs5kaRK7G5k.asa (hash: +q7C0091/BCLWI1y72MQuuHCj669pr/poTHiNIbXYFE=)
2: wEZZX0o5N8nlP47tu1RwoQ2y0AY.roa (hash: ddJPky6VMI6qp8TK3QriFAzhCSzbyfK/JMSPvgj4FCE=)
3: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: d7c3SpQunIvgWlOLfFwX2tPQpbmY8cGlFJ41Qy5w9Wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:b5:a2:0a:4c:54:16:05:f8:7a:ac:37:79:b0:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: May 12 19:01:23 2026 GMT
Not After : May 13 19:01:23 2026 GMT
Subject: CN=b6537ef69631282ac62db9a55d2c60598480daf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:41:8a:35:cc:ab:ef:ce:a9:64:0d:c8:96:de:
61:a7:e5:43:cb:f3:1c:4a:11:b2:0b:d9:0a:99:cc:
b2:01:2a:54:90:00:d9:40:43:98:e3:0f:c5:d6:2b:
38:58:21:5f:f4:49:59:52:ed:55:4d:ea:e0:8b:2f:
25:61:eb:6b:48:0c:bb:f7:21:a3:2f:ea:b4:7c:10:
7e:da:2a:cc:bf:e2:3d:a0:04:42:ec:86:40:41:bf:
ed:12:a1:56:eb:53:b8:06:7c:1f:f5:a2:33:41:cb:
b7:ef:1d:2c:04:7d:10:b7:8f:47:5b:d0:72:70:b0:
91:7e:ff:83:44:3a:09:ed:95:21:2c:65:c5:71:de:
9a:8e:6a:77:fa:29:c0:59:fa:f3:4c:5c:7e:8b:c0:
b1:a4:2a:f6:f3:ab:fa:b9:76:d2:ca:dd:54:8f:7a:
ab:f2:b9:d3:b9:e1:04:fe:9c:08:95:96:40:d6:67:
ad:91:2c:76:25:4c:62:22:e1:1c:44:e7:d2:cc:32:
c2:7f:a7:24:0d:d1:f5:43:0d:7f:7d:0c:79:65:d2:
46:d6:68:31:80:0a:da:5a:7e:68:41:2c:b3:b2:f5:
db:90:92:3b:1c:b9:49:46:67:35:95:1f:ee:89:d3:
d2:ec:fd:d8:6a:1e:3e:1b:fe:97:f1:d5:85:f2:d2:
ad:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:53:7E:F6:96:31:28:2A:C6:2D:B9:A5:5D:2C:60:59:84:80:DA:F8
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:f7:79:78:92:68:20:1b:74:d6:c0:3f:f5:eb:90:80:55:7f:
93:63:13:ad:61:03:22:21:e9:a1:b1:47:8f:a4:0e:51:c8:46:
b8:75:ee:27:18:5e:56:fb:7d:3c:27:35:67:33:e5:81:6e:46:
5f:a7:62:2e:75:3f:53:2b:a5:2d:1c:9a:aa:87:25:f3:b8:bb:
76:0c:db:14:51:e7:d2:2b:a8:09:b6:5d:3b:71:e5:84:2a:87:
d1:32:47:09:52:28:a9:69:60:24:6f:84:15:5e:bd:53:61:00:
85:e4:4f:7b:e1:2b:55:4d:86:b7:2e:73:a8:71:f6:39:31:fc:
82:61:19:6f:84:75:a3:35:75:a3:da:b7:19:f7:99:e2:ba:68:
ea:fb:16:cb:76:f9:3e:50:74:a0:a0:51:a4:9b:42:a9:b1:82:
e3:9f:8c:70:b1:01:3a:dc:b5:04:a5:fc:9d:ab:2e:38:d6:12:
87:ff:e8:8f:99:80:66:02:af:2a:e3:89:5d:4c:07:f4:0b:ad:
c4:2e:9b:df:cc:91:6a:a7:f3:58:ed:e8:b4:ee:39:76:13:0f:
2b:03:4a:4c:c7:d4:c6:6c:60:e0:de:c1:f3:36:ff:9b:cd:57:
1d:98:d7:df:a9:39:f5:21:19:ff:8d:bc:c5:d8:60:ac:94:2a:
bd:2f:23:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:26:39 2026 by rpki-client