Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json)
Hash identifier: ZSClEsVi734mw9uozGQ2AVJqxLfMM3uPx4/66x+mDns=
Subject key identifier: 74:FE:2B:30:BB:BE:54:A0:C3:43:4C:C3:03:42:16:2A:CA:EB:AC:22
Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6
Certificate serial: 019D2583AEBCADA4AF56732840E37E29FEE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
Manifest number: 188C
Signing time: Wed 25 Mar 2026 15:01:19 +0000
Manifest this update: Wed 25 Mar 2026 15:01:19 +0000
Manifest next update: Thu 26 Mar 2026 15:01:19 +0000
Files and hashes: 1: dCjH0v3m8tCVY_tkggWdXHZn358.roa (hash: a8K+Ic68j3/hayz7h7GvBE1rHXDfwuhE74wsEmkFkNk=)
2: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: AId699shnnVAQAoNIZOihz+I6aJDlWsopllQN+D2wds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:ae:bc:ad:a4:af:56:73:28:40:e3:7e:29:fe:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6
Validity
Not Before: Mar 25 15:01:19 2026 GMT
Not After : Mar 26 15:01:19 2026 GMT
Subject: CN=74fe2b30bbbe54a0c3434cc30342162acaebac22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:55:fa:81:6a:2b:43:e9:dc:8a:00:26:43:72:
d8:f6:a0:e2:de:eb:04:28:1e:a1:39:2d:36:d9:9f:
5a:db:0a:2e:db:a6:e8:f1:d0:f5:05:6e:ad:0b:8c:
87:27:99:0c:f1:05:3a:7a:d8:28:66:5f:a3:88:f7:
51:24:6d:21:75:c3:dc:f0:bd:37:19:ac:60:97:db:
88:34:74:21:e4:79:52:d6:aa:eb:ce:be:11:c2:13:
a3:e4:fa:83:fc:8a:e3:d9:9b:dd:d9:22:6f:8a:eb:
b1:1e:05:4c:ce:cc:60:17:bb:25:65:a4:b0:fc:8d:
58:ab:5b:3d:55:86:6b:08:7b:7a:3e:dc:c8:0a:df:
f8:df:cb:ee:9b:4b:12:d0:e6:ce:5c:e9:5f:d9:12:
5e:a4:36:89:86:ca:e8:29:9c:1c:2d:61:8d:5a:ab:
cc:a3:ce:ad:d3:6e:34:00:ab:dd:9c:86:a1:4c:87:
45:a1:f9:45:fa:d1:79:cb:47:cd:9d:4b:da:1b:5b:
e2:e1:ba:a5:4b:40:7c:f7:be:87:79:ea:03:d0:91:
0f:b6:16:fd:0e:50:87:75:c9:09:56:ae:a1:a8:67:
5b:a9:64:21:b1:03:bc:24:a9:f3:8f:b1:69:a4:7d:
04:d8:11:f9:ee:73:3d:c7:4a:6f:69:12:91:70:f1:
e9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FE:2B:30:BB:BE:54:A0:C3:43:4C:C3:03:42:16:2A:CA:EB:AC:22
X509v3 Authority Key Identifier:
keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:ac:df:7d:47:26:38:23:b4:aa:9b:13:73:ce:1c:35:e4:3e:
83:de:65:93:62:f5:ad:06:98:7c:b0:e7:41:85:fe:ea:09:73:
0c:eb:fa:5e:61:89:30:ab:81:48:ca:ba:04:71:0a:13:10:be:
c8:85:7a:e6:14:ad:5f:cc:ea:99:ef:e4:50:59:85:77:df:e4:
2c:e2:d9:14:54:97:35:65:8e:f4:f8:0b:e1:75:46:af:a6:36:
35:71:ed:74:d2:d9:e2:9d:be:2e:3d:93:55:0f:4c:4f:e4:11:
fd:a8:7a:b9:95:52:bf:59:35:8f:15:3b:70:02:68:b0:da:2d:
0d:53:2d:d7:5a:3b:bd:cc:4d:34:e7:d0:53:c7:66:d0:80:d0:
cb:93:c3:79:bf:98:d5:ea:25:cb:bf:9f:eb:4f:22:cd:0d:02:
5a:25:35:d2:d2:d4:32:e3:7d:74:ee:d9:a0:5f:26:85:0d:b4:
13:49:45:ee:93:0f:3b:79:6e:06:7c:c4:75:df:48:69:31:c4:
30:68:54:42:d9:a6:69:7b:6c:f2:4e:60:cd:17:91:53:ce:33:
7d:91:ac:6c:e5:29:14:4a:8d:88:96:35:bc:6b:76:11:18:e3:
eb:a4:9a:c7:5d:27:7d:17:be:07:d4:7d:9f:34:02:45:95:e1:
3f:15:3c:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:34 2026 by rpki-client