Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
File: zdpbTOlfoL32BUFp53rvyCZd28Q.mft (raw, json)
Hash identifier: fTnwjMqhfNquI/rcIsJeFrUhBDuYefF2B0GZuCsmtl4=
Subject key identifier: 58:96:52:0B:53:E5:12:C2:A4:41:F9:46:1C:C5:7F:06:26:4B:E3:C0
Authority key identifier: CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4
Certificate issuer: /CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4
Certificate serial: 019E1E6C85352397E0AC7E71D8B0DE03118E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
Manifest number: 1899
Signing time: Tue 12 May 2026 23:01:28 +0000
Manifest this update: Tue 12 May 2026 23:01:28 +0000
Manifest next update: Wed 13 May 2026 23:01:28 +0000
Files and hashes: 1: _8ZFO9ocBpb_Ph-40yN6ACd4c-s.roa (hash: nv3UD4Bh28t9KPR31Vxom/hj2bFKQ3slvDA/BYva5PI=)
2: zdpbTOlfoL32BUFp53rvyCZd28Q.crl (hash: u/5tMldoTfDDXCxglK12ZHdRd4U2O2KikQWs6IzMwp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:85:35:23:97:e0:ac:7e:71:d8:b0:de:03:11:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4
Validity
Not Before: May 12 23:01:28 2026 GMT
Not After : May 13 23:01:28 2026 GMT
Subject: CN=5896520b53e512c2a441f9461cc57f06264be3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:67:a8:20:4e:5e:87:0c:14:c4:5e:15:74:a5:
bf:3d:85:d0:80:e4:84:8d:1d:44:d7:3b:1a:b6:0a:
e3:7c:c6:33:15:6f:ef:54:e9:91:61:a8:c1:5d:2d:
75:e5:35:2e:c4:52:3d:c3:3f:5f:e3:55:47:8f:2e:
74:83:a5:f8:ed:f8:08:12:89:dc:b7:e3:ac:ba:66:
88:fd:e7:9d:ba:5b:ef:b2:5d:49:24:a7:d0:a0:28:
97:8f:1e:d2:f4:19:33:da:7c:f5:ed:35:7e:0c:0e:
1e:06:4c:03:a1:18:64:58:ba:d7:21:19:49:cd:23:
27:a1:41:07:75:1b:d9:06:d6:68:40:9f:bc:87:01:
0e:d9:ff:f1:1b:8f:c8:05:d1:97:ea:26:43:1f:b8:
a9:62:72:17:c3:48:e9:04:80:a7:db:09:d9:63:a6:
00:a7:48:7f:2e:64:7e:76:49:30:2e:5f:c5:e8:4a:
ef:05:98:a9:95:69:d2:21:01:ea:11:a6:18:33:aa:
76:af:a1:25:53:d0:ec:06:80:70:8d:bc:1b:d5:52:
19:6c:7d:cd:0f:54:82:4d:3c:38:80:3d:9a:ce:4b:
fc:4a:d9:41:6e:78:f2:6c:34:cd:7c:f5:ba:af:f9:
57:67:a5:6e:c4:6f:4e:b4:d3:14:e7:ac:00:3f:7a:
10:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:96:52:0B:53:E5:12:C2:A4:41:F9:46:1C:C5:7F:06:26:4B:E3:C0
X509v3 Authority Key Identifier:
keyid:CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:45:62:73:b0:3f:1c:b7:cc:bc:b1:f9:18:88:07:fe:31:7b:
11:3f:ee:fe:c5:2f:dc:b2:81:c2:2c:fb:ce:d1:1b:56:a7:74:
e4:12:18:9a:2b:b8:07:b7:c7:ee:93:72:d6:9e:06:1b:26:16:
44:f1:9d:75:91:4e:f5:52:d7:a9:30:81:3f:20:97:86:49:fc:
87:59:7f:72:98:18:de:4e:14:d2:f1:de:8b:65:6d:bc:22:22:
0c:0c:0b:45:f3:be:ad:e2:13:05:7f:14:9f:10:d8:f1:81:92:
1b:b3:cf:2e:88:0a:65:a2:4f:29:8c:11:ba:7a:53:5b:a3:85:
31:85:4c:8c:8a:f2:c6:f4:99:5e:ef:fc:db:c5:e5:55:86:7d:
96:76:9a:35:91:e6:24:a4:6a:88:d5:01:6a:4f:c4:bb:1c:a6:
f5:61:b1:a4:bc:32:a4:59:0b:aa:f1:cd:4a:98:53:e4:71:06:
8d:2a:53:38:cd:97:7a:ed:33:5d:71:bf:76:42:7d:15:d3:8b:
df:88:0b:ec:c4:35:0a:99:9b:f0:47:c7:40:d3:fe:b1:d8:d0:
17:b5:d1:74:82:4e:6d:6c:6f:9f:69:4e:e7:27:87:2a:c2:36:
d0:c1:d7:33:9f:bf:da:40:6f:7e:fc:51:9d:30:42:35:3f:83:
7d:ed:47:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:13:23 2026 by rpki-client