Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: FVdpEWP+N2shErCUlH3JGy2IICbGgQt+WGJJANXfJtw=
Subject key identifier: 3F:64:5B:97:E4:C8:E3:79:D8:23:FB:41:95:92:5D:9A:4A:EF:66:0E
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 019E1DC790AEC9AB71B12ACF93081EBAAE3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: 040C
Signing time: Tue 12 May 2026 20:01:18 +0000
Manifest this update: Tue 12 May 2026 20:01:18 +0000
Manifest next update: Wed 13 May 2026 20:01:18 +0000
Files and hashes: 1: DV_1PU5sghttOAyD5Fk0auja6M4.roa (hash: vyYX2XFHKs4PfXvL2MDa+XaKNUQzIY/+9Y9TmVp9CiU=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: 4D4iXbGL4rmyIQnd01NCnEb1mBstwim4ICV7hYCCgbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:90:ae:c9:ab:71:b1:2a:cf:93:08:1e:ba:ae:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: May 12 20:01:18 2026 GMT
Not After : May 13 20:01:18 2026 GMT
Subject: CN=3f645b97e4c8e379d823fb4195925d9a4aef660e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:93:37:39:dd:80:21:57:f2:e1:c8:eb:3d:30:
be:c6:10:09:1f:13:83:b6:3d:ef:67:14:fc:9d:d6:
50:8e:30:42:8a:4f:c6:c7:89:b9:e8:7b:87:64:38:
7d:ae:83:95:45:bd:c7:ac:26:ba:24:13:b5:88:65:
ce:c0:26:db:a2:dc:30:05:46:98:c8:18:6e:53:68:
ff:48:79:e4:08:71:da:c0:00:65:a3:6d:e8:90:96:
9d:f9:a2:8d:3a:78:b5:6f:3f:c7:d9:bd:b9:79:6d:
52:31:a3:70:63:6b:55:d8:9a:76:a4:7e:41:65:3e:
36:bb:07:07:6d:36:55:40:b4:83:d6:38:47:dc:a1:
88:47:26:17:59:82:5b:2f:8b:4f:c3:a7:31:92:fe:
bb:90:d7:5c:d7:2a:2f:19:50:36:11:f5:a8:6b:83:
99:4c:7d:0a:11:50:c0:f9:b0:b2:f5:99:3d:ad:fe:
3b:e7:05:3a:75:a2:ad:bc:e8:bb:63:d6:41:24:5b:
5a:7e:cb:26:da:af:90:b9:9b:ab:c3:b5:13:40:24:
cb:af:fe:e6:76:5d:0e:42:31:e2:0c:83:52:6b:3f:
45:e5:98:ea:70:0b:73:e5:a2:95:22:7d:e5:da:8f:
af:98:c8:1a:3f:98:4e:05:af:5f:e7:c1:1e:5d:8b:
72:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:64:5B:97:E4:C8:E3:79:D8:23:FB:41:95:92:5D:9A:4A:EF:66:0E
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:a1:2b:d2:30:e3:36:be:8e:db:b8:9a:2b:26:2a:69:c6:8d:
b4:78:37:53:f7:94:4b:57:70:91:00:f8:62:49:a0:c7:1b:e7:
a3:7a:68:b3:9c:58:dc:58:e5:de:a4:de:d8:52:c9:fc:27:15:
3f:ed:80:e3:4c:5e:02:05:51:e5:02:fc:7e:f6:74:96:fd:ea:
b8:1e:03:b1:08:9b:7f:86:13:bc:e6:c2:47:92:e8:d0:af:56:
b6:83:5d:40:73:fc:eb:36:43:b5:f2:a1:87:db:e8:89:38:5b:
61:e3:6a:60:f5:ad:62:ef:06:7f:b4:54:40:fb:ff:83:3a:c1:
2e:0f:bd:8f:b3:62:f0:9a:ce:62:e6:45:1a:55:0f:49:45:c4:
4f:a9:55:83:8f:65:f7:79:de:70:6f:c1:29:0c:65:37:63:b6:
73:02:50:51:88:d6:f3:33:a7:62:65:3a:11:05:c7:7f:33:c9:
91:58:81:98:e7:75:a9:4e:2b:fe:66:85:ba:05:c5:72:6d:fb:
ac:91:9f:a7:8b:02:62:eb:08:9e:26:3b:c5:64:8f:69:28:71:
38:96:67:bd:29:6b:03:7f:12:11:44:2a:79:05:3c:01:03:ca:
74:62:9e:f8:4f:14:c2:c3:57:dc:db:12:ac:4e:ed:5c:33:c0:
56:a7:3f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:57:02 2026 by rpki-client