Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
File: z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft (raw, json)
Hash identifier: gyIjAuVK+taRSYZ3uBw/VtZfKOjH6tC4qw7yaAO0i6U=
Subject key identifier: 1C:BB:5A:9E:6D:B9:F6:DA:FA:7E:C8:F6:F4:B3:F1:4F:10:E4:40:94
Authority key identifier: CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
Certificate issuer: /CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Certificate serial: 019D27DFA22A717FB1439B7A8A5E0115224C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
Manifest number: 11E7
Signing time: Thu 26 Mar 2026 02:01:00 +0000
Manifest this update: Thu 26 Mar 2026 02:01:00 +0000
Manifest next update: Fri 27 Mar 2026 02:01:00 +0000
Files and hashes: 1: UbxGuXfCPU7PaazgdUkcbZmtVZU.roa (hash: U0sRu1JWMunI3dF2aemA2TfuPLAR6kavSK8Q8KfB14s=)
2: z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl (hash: +p3iW9XN7sdnGpAWPrOnPLtF19e/SQgTwj4pWPOnFUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:a2:2a:71:7f:b1:43:9b:7a:8a:5e:01:15:22:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Validity
Not Before: Mar 26 02:01:00 2026 GMT
Not After : Mar 27 02:01:00 2026 GMT
Subject: CN=1cbb5a9e6db9f6dafa7ec8f6f4b3f14f10e44094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:67:d0:cc:6c:8a:d4:9a:62:f8:4a:a5:c9:3c:
2c:3a:1c:e8:e9:1d:c5:16:16:fb:50:96:7f:c5:fd:
f4:cd:cc:0d:e3:81:b2:d7:e5:c8:26:f9:01:5b:85:
92:88:3d:6f:06:87:67:e6:6c:f3:92:b3:c5:7e:5c:
79:54:fc:02:86:49:fe:98:63:a8:01:2e:ed:74:ad:
b2:3d:90:a1:3a:39:8f:19:e0:5c:b1:f8:b8:44:43:
9d:0d:99:31:8d:ce:42:c4:9d:92:69:c7:92:03:90:
93:a1:a6:68:25:ba:6b:27:79:c6:46:a8:23:65:8f:
15:7f:28:e3:8a:07:0f:a8:ee:fa:f8:9b:53:05:64:
93:bc:28:fd:f8:5b:a0:75:d7:e0:d4:5d:67:74:2c:
bd:7c:be:15:99:b8:a3:ca:81:22:cc:77:00:d5:0b:
83:ea:0b:2a:0e:11:2d:13:41:da:eb:a9:a3:23:bc:
12:24:ba:1a:b3:a4:56:2e:99:f6:f6:7a:96:27:26:
66:08:c6:23:c7:d7:27:0b:3b:0b:7e:61:cf:1a:3a:
42:5b:29:11:86:c0:53:93:66:01:49:c4:62:30:44:
06:32:a5:6b:6e:2b:32:9a:a2:42:02:c2:74:4c:c5:
70:b3:46:52:bc:8a:ee:72:f5:02:19:13:13:13:6b:
b5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:BB:5A:9E:6D:B9:F6:DA:FA:7E:C8:F6:F4:B3:F1:4F:10:E4:40:94
X509v3 Authority Key Identifier:
keyid:CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:f8:32:18:2c:ae:79:f1:87:40:1b:8c:c9:63:24:ec:d1:cf:
2b:b1:98:70:d4:58:0e:d8:64:a0:00:66:46:2b:0a:03:d8:2e:
67:82:2d:fe:33:86:8d:00:9f:32:aa:f6:d1:d2:32:7f:ff:c8:
b1:7f:4e:51:e7:84:41:00:7d:8c:d2:30:40:38:f8:e2:dc:9c:
f5:e0:d3:81:0b:60:8c:6b:5b:b8:43:c9:5e:7a:1b:99:26:cd:
7d:02:03:0d:f0:6b:4d:a6:17:9b:8f:8f:d3:fc:2d:15:c5:54:
c8:d7:9c:fa:da:aa:f5:3b:2b:08:2d:c3:a8:82:6f:bf:f9:c0:
15:d6:77:24:31:25:76:91:7f:b2:87:fd:7e:cf:4c:ae:fd:06:
fd:b6:60:13:d0:fa:64:db:fc:2c:d7:2f:92:76:45:c3:0d:4a:
5a:43:c7:01:74:11:87:11:83:04:87:13:50:33:2b:23:f1:bd:
4f:2d:b8:d4:7c:1d:31:7b:42:aa:2d:1e:8b:95:ad:a2:0c:15:
40:15:fc:e6:66:f4:3c:05:d0:e2:58:a9:26:66:a9:1c:44:e4:
36:f3:8b:22:fa:1c:d5:86:6f:a1:48:10:cf:4a:e9:43:ef:61:
81:f3:31:2a:fe:df:97:bf:5d:fa:f2:40:ef:13:69:03:f6:eb:
59:74:c7:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:13:48 2026 by rpki-client