Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json)
Hash identifier: wmsB0EvtLHv9LrBTM7IeeS69N17d5bVPvh7KWlF3Tz4=
Subject key identifier: A4:A4:FB:79:C4:B5:3A:49:73:34:5E:15:2C:6E:46:98:1B:A7:DE:24
Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Certificate serial: 019D2A7233B0D943B455DD519D6DC518B123
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
Manifest number: 16D9
Signing time: Thu 26 Mar 2026 14:00:20 +0000
Manifest this update: Thu 26 Mar 2026 14:00:20 +0000
Manifest next update: Fri 27 Mar 2026 14:00:20 +0000
Files and hashes: 1: 4c-GbGdVRIrY9IqPjRy0nzn_VSE.roa (hash: icjwc3qakSmAHiw3iEGT6Xw+HBGCPaCuGNR8zcJ+6LU=)
2: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: 3diWnev+URerMvnx3YkZiAqjU/kXebm1mEbU7In2xtw=)
3: G89I4eFQRreVo-7aKBmhJUYUtfE.roa (hash: Y0sI6cJ3p/tnjubSMmOmQUTjHM00CIS1iUsc5f8JH6o=)
4: dYdu6qoIQ4XCeyHdAC497fGCxxs.roa (hash: oc3k4EGMJTIdaq924ORNmciOrYjNG46O7CO8iE2EBZI=)
5: lgCyYbtiym8UQxlU3Wsnfuin5Po.roa (hash: Y0pYZtEe50I9gKfovWkm1yNE+nmUWXQeAcc9hn8uT60=)
6: u3tl30EyAJsURqJzM6oI5-sRJh4.roa (hash: +MJkYGw5uZPSvZdWWPtxlmooe+ag+H3pOtple6Ilz3I=)
7: zR5fs6PTrjyplvT56u1K4BvWPlc.roa (hash: O8dzuCsmazQPoLBfGqOiMn2tNXQbancZpn0bojUcLR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:33:b0:d9:43:b4:55:dd:51:9d:6d:c5:18:b1:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4
Validity
Not Before: Mar 26 14:00:20 2026 GMT
Not After : Mar 27 14:00:20 2026 GMT
Subject: CN=a4a4fb79c4b53a4973345e152c6e46981ba7de24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5c:da:4a:39:82:eb:ed:cf:a4:58:f4:0f:45:
7e:09:f7:da:f1:55:30:6b:8f:cc:86:c7:bf:35:b6:
c3:93:43:95:1a:a2:f1:90:84:a7:a6:c5:eb:bd:4c:
a9:15:e1:1d:d9:58:51:2d:f1:8b:c4:ef:db:ee:d9:
1e:77:5e:73:51:c4:1b:33:ff:df:c9:9a:7c:2b:b3:
66:7f:08:f2:86:52:da:05:b7:d6:72:5c:05:1d:8e:
a9:1f:65:4c:2a:80:9b:f1:23:4a:db:85:a9:84:97:
17:14:cb:51:6d:65:64:93:6a:75:ec:23:0f:24:ba:
74:9b:38:cb:ae:3d:00:b5:6c:32:a7:b6:5d:ca:91:
ca:0c:5b:54:c9:fc:db:34:10:ea:32:db:e4:56:fe:
dc:e0:84:24:b9:8a:42:aa:19:fa:15:c9:05:75:fd:
cc:30:e6:61:f6:f8:a3:ef:15:42:8a:e1:eb:fc:ec:
dc:a5:06:91:ac:05:42:e8:45:65:fa:79:7b:56:2f:
3e:da:98:30:18:82:77:7f:f7:27:eb:92:11:7d:df:
42:1d:a4:75:aa:39:b0:87:00:fd:d2:04:e0:e5:85:
0d:10:c3:04:99:4c:1e:7a:a0:c2:ce:1a:a7:2b:4f:
61:49:48:a3:16:e3:00:7b:55:4e:c9:cb:b7:e7:84:
b1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A4:FB:79:C4:B5:3A:49:73:34:5E:15:2C:6E:46:98:1B:A7:DE:24
X509v3 Authority Key Identifier:
keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:c9:2e:0d:54:2c:31:fa:a0:28:4e:0a:2f:95:25:cb:69:c3:
2c:d9:97:7c:88:c8:d8:26:97:2e:16:cd:e2:ad:c3:25:00:e9:
9e:1a:fb:22:35:99:ed:88:72:64:f2:3a:70:46:57:53:27:6c:
14:15:f3:96:ba:03:f4:dd:13:d2:c5:76:c6:9b:6a:e8:c4:ed:
36:5a:57:0c:47:7d:bf:17:8c:c6:ba:3f:f7:31:e5:a1:4e:05:
53:27:a6:49:1a:73:16:bc:8e:7c:3e:85:97:12:be:07:33:08:
30:05:0e:7c:22:5f:5f:23:27:80:20:8e:88:59:1b:b1:8a:38:
0e:16:3b:0c:84:49:8d:a5:4a:5d:d9:41:8c:6c:4a:0c:52:e7:
46:60:f8:43:48:c9:6f:56:62:b9:d8:76:0d:8d:f9:19:7a:4c:
f3:0f:36:86:94:06:ab:24:c1:83:09:d1:63:26:a5:3c:2b:51:
5d:d2:6f:dd:4e:34:00:26:15:a1:a8:c3:77:ca:ea:09:9a:ec:
93:7a:55:fb:37:f5:c8:b4:5a:69:99:3b:66:a4:d0:67:6b:63:
87:a4:2e:ee:fd:e2:bc:5c:1a:ce:b9:13:2a:8a:63:ab:bd:cd:
97:38:ac:19:eb:10:a1:b9:f0:93:19:d2:7b:b7:18:8e:21:d9:
48:3a:74:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:30:36 2026 by rpki-client