Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
File: z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft (raw, json)
Hash identifier: utNqqJevh9zAJRy4Z0BovRroqpnRNhLXcnDrx0GqfSk=
Subject key identifier: 9F:21:EB:E0:88:19:24:8D:A9:F8:0B:B8:01:B1:32:31:14:64:77:E8
Authority key identifier: CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
Certificate issuer: /CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Certificate serial: 019E1F10E4262EA8B5BD44B815EA091A3792
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
Manifest number: 1267
Signing time: Wed 13 May 2026 02:01:00 +0000
Manifest this update: Wed 13 May 2026 02:01:00 +0000
Manifest next update: Thu 14 May 2026 02:01:00 +0000
Files and hashes: 1: UbxGuXfCPU7PaazgdUkcbZmtVZU.roa (hash: U0sRu1JWMunI3dF2aemA2TfuPLAR6kavSK8Q8KfB14s=)
2: z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl (hash: 4FgP6Hyzb8OYKZU1Ufr+09BcL+7yuu0V4sEQYkwAB18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:e4:26:2e:a8:b5:bd:44:b8:15:ea:09:1a:37:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Validity
Not Before: May 13 02:01:00 2026 GMT
Not After : May 14 02:01:00 2026 GMT
Subject: CN=9f21ebe08819248da9f80bb801b13231146477e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:15:0e:0b:44:e3:2d:4a:1e:90:96:5f:0b:eb:
33:c8:fe:26:b5:e0:65:8d:24:26:97:07:70:cb:b5:
93:af:1c:96:23:40:bc:23:79:b7:6b:e1:b3:19:a4:
18:29:00:58:ad:1c:d6:fb:fa:14:8f:de:df:08:cd:
2f:98:a4:e3:23:bc:26:39:1b:23:15:48:4d:30:7c:
aa:52:c4:54:9c:2b:75:11:c0:7a:3f:5a:04:b6:57:
e3:c6:b8:a8:7e:a1:35:94:96:63:ad:28:21:58:13:
72:02:c5:4b:87:80:c4:3f:47:8c:0a:ca:0b:53:52:
cc:7a:df:41:c5:81:e8:d9:0a:29:e1:0a:8c:82:45:
9d:49:c9:6b:f5:d6:ed:93:93:44:75:99:dd:da:3f:
f2:e7:aa:30:c4:f7:2c:fe:8c:51:d7:38:0c:16:b6:
8a:a2:c4:4d:19:a7:da:d5:1a:12:e2:6a:9d:4f:1d:
b5:bc:4f:5b:65:3b:c2:ef:dc:2b:31:5b:d4:2d:d0:
a4:57:78:17:a9:c7:e7:cc:d5:3f:09:9e:a7:95:db:
24:fe:01:0e:55:f7:7e:2e:c9:1c:3a:a0:2f:d7:c0:
71:2c:2c:6d:d9:d0:50:3f:44:d5:b9:e0:58:27:34:
e5:79:fd:77:86:63:1f:43:11:cf:73:15:fe:eb:b1:
54:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:21:EB:E0:88:19:24:8D:A9:F8:0B:B8:01:B1:32:31:14:64:77:E8
X509v3 Authority Key Identifier:
keyid:CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:9a:d4:98:cb:86:05:1a:93:ff:3b:42:a1:04:a2:b8:11:f1:
d0:16:4f:a3:15:1d:2c:ca:83:13:5e:03:05:c6:99:d8:40:37:
d9:7b:de:bd:c2:eb:d6:a6:f6:c7:97:ea:81:4b:7c:0f:9c:54:
1f:42:b9:e6:6b:2b:87:a0:79:41:48:46:22:57:35:7e:08:93:
81:1e:3b:30:35:79:43:c6:dc:91:57:fa:63:84:18:bc:a9:87:
51:f6:32:02:89:6c:62:7e:0b:a1:cc:5c:4d:fe:85:31:48:a5:
61:fb:50:ac:aa:67:70:08:91:ef:00:10:ca:bb:75:94:70:2e:
57:e4:03:98:c9:ca:0a:74:31:93:9a:22:e4:9b:5c:d6:d7:22:
3a:da:cf:69:99:55:2a:e2:6c:ba:94:9f:71:15:a5:c4:a4:c8:
09:db:37:77:07:87:ee:02:5a:b4:0f:a3:83:52:4b:0e:36:b3:
af:ae:e3:f9:83:0f:9a:66:7b:2d:75:3d:31:4a:6b:68:4f:e0:
d3:5f:c5:ae:5a:04:2d:ee:05:74:10:00:62:ec:c0:ac:a9:bd:
db:4e:88:21:3c:a9:27:d9:96:14:b7:2d:b3:56:b5:8e:36:6d:
fe:5e:15:7b:52:7c:12:7a:23:ee:ff:14:7a:0f:92:61:7e:96:
2f:33:d5:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:41:58 2026 by rpki-client