Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: FHOMnvcSr8hGLG1OhtwFepVpb/IopsAZXURgdq0kTTk=
Subject key identifier: 45:A4:00:63:14:4F:17:E1:C8:81:C8:BE:F2:7D:A9:9D:FD:D5:20:EE
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 019E1DC7694A9681BDC9287E72F39474799F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 1757
Signing time: Tue 12 May 2026 20:01:08 +0000
Manifest this update: Tue 12 May 2026 20:01:08 +0000
Manifest next update: Wed 13 May 2026 20:01:08 +0000
Files and hashes: 1: 4c-GbGdVRIrY9IqPjRy0nzn_VSE.roa (hash: icjwc3qakSmAHiw3iEGT6Xw+HBGCPaCuGNR8zcJ+6LU=)
2: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: b3R29SEcqxt2aNaz0/oJv2gST6iLC25ug9z0lQ/l10o=)
3: G89I4eFQRreVo-7aKBmhJUYUtfE.roa (hash: Y0sI6cJ3p/tnjubSMmOmQUTjHM00CIS1iUsc5f8JH6o=)
4: dYdu6qoIQ4XCeyHdAC497fGCxxs.roa (hash: oc3k4EGMJTIdaq924ORNmciOrYjNG46O7CO8iE2EBZI=)
5: lgCyYbtiym8UQxlU3Wsnfuin5Po.roa (hash: Y0pYZtEe50I9gKfovWkm1yNE+nmUWXQeAcc9hn8uT60=)
6: u3tl30EyAJsURqJzM6oI5-sRJh4.roa (hash: +MJkYGw5uZPSvZdWWPtxlmooe+ag+H3pOtple6Ilz3I=)
7: zR5fs6PTrjyplvT56u1K4BvWPlc.roa (hash: O8dzuCsmazQPoLBfGqOiMn2tNXQbancZpn0bojUcLR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:69:4a:96:81:bd:c9:28:7e:72:f3:94:74:79:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: May 12 20:01:08 2026 GMT
Not After : May 13 20:01:08 2026 GMT
Subject: CN=45a40063144f17e1c881c8bef27da99dfdd520ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ec:84:7e:bf:24:6f:d2:15:e7:0e:41:1a:58:
f6:b9:be:99:eb:0d:d3:40:52:16:cd:cd:0a:d3:69:
4f:9b:48:0c:01:39:69:8d:40:84:ae:95:e0:dd:35:
28:b9:7f:c6:f4:25:f3:19:ed:9e:78:32:9c:e8:3b:
22:33:28:b1:1c:f8:cd:f1:55:5f:a6:5d:f4:40:c7:
13:ce:0e:16:4c:a6:06:0a:09:e5:e8:e3:d4:3c:b1:
2f:c2:07:8b:90:ab:51:34:6b:b2:9b:9c:e1:82:3f:
ff:8c:4e:d5:2c:18:77:87:57:1d:ca:ba:ef:bc:71:
b5:a1:97:3b:7b:30:b8:aa:30:f9:70:f5:07:a4:d9:
e0:b3:4d:71:99:de:53:77:8f:3d:34:b3:fd:f9:3b:
4e:aa:0f:c8:a7:9d:d5:63:3d:29:ae:bb:f5:dd:b8:
86:e6:91:54:c0:78:6e:8b:cb:c4:ff:3e:67:de:52:
8f:4f:70:5e:b1:7d:ca:8a:12:56:1c:ee:93:81:fc:
71:a3:97:d3:2d:f6:0d:1f:de:5a:3d:76:57:56:ea:
4a:0c:40:87:f8:83:ca:af:62:53:1e:64:ff:1b:12:
3f:4f:4b:44:50:8e:f2:d2:8f:ff:29:ee:21:02:fb:
3a:4f:33:7e:01:ac:27:53:10:77:45:a5:c5:bf:ff:
d2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A4:00:63:14:4F:17:E1:C8:81:C8:BE:F2:7D:A9:9D:FD:D5:20:EE
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:92:5a:4a:3d:cf:ca:67:d5:a5:e6:68:a1:06:08:24:5b:69:
93:6b:fd:4e:77:27:ff:83:a3:dc:98:e0:34:06:e0:8a:10:a7:
af:fe:f1:1e:b0:82:f2:00:05:ff:19:08:a4:4b:d8:fe:ce:db:
2a:96:6c:16:68:5c:70:17:60:a1:f6:de:1f:2a:f1:4d:1a:93:
5c:a1:e9:23:3e:e8:30:84:fa:69:72:64:79:62:be:09:2c:38:
c4:dd:28:ec:2c:76:ce:06:48:0b:22:40:80:f2:18:d5:f5:5b:
62:52:0c:d0:7d:29:76:97:cb:53:ca:39:1a:cd:b1:55:d0:6f:
da:3b:f6:fb:44:ba:09:8b:58:00:e6:e6:99:32:f5:c5:30:82:
77:8b:02:46:fd:79:13:53:c1:8a:54:f4:a8:30:c5:63:52:a0:
53:4c:fd:13:92:f7:70:69:4d:61:0e:89:21:88:f3:4d:5f:72:
6b:a7:73:2e:45:2f:92:7e:f4:0d:21:a2:4d:c8:4c:48:19:f8:
a9:4a:ae:25:23:d5:c6:bc:bc:6f:35:4f:1f:00:27:be:06:0c:
92:b6:18:dd:b0:61:7c:fe:47:f6:19:91:57:04:a9:13:bc:d7:
12:ba:79:7f:25:59:12:bc:08:17:c6:0b:21:14:fb:f6:65:f0:
ff:59:3f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:23:27 2026 by rpki-client