Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
File: zCdbIX3x3piMohkqg64R3fQjpE8.mft (raw, json)
Hash identifier: 3/bcFdBQsQ9eJWV1dbPFyRIunCm4WCCQXwslLRI9qF4=
Subject key identifier: 78:1E:5E:1B:2D:A2:F5:63:54:9E:61:C1:D2:F8:B2:BB:2D:EA:5E:69
Authority key identifier: CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
Certificate issuer: /CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Certificate serial: 019D270456B82E76091CFB7CF90BF61FE4FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
Manifest number: 0D3E
Signing time: Wed 25 Mar 2026 22:01:28 +0000
Manifest this update: Wed 25 Mar 2026 22:01:28 +0000
Manifest next update: Thu 26 Mar 2026 22:01:28 +0000
Files and hashes: 1: GmtyRSwv03uFUm7JE5DndaUS8N0.roa (hash: zwVMLkSXFGqtFNoiz9XRyBWDIur2kpQPUKFiNSBy9R0=)
2: zCdbIX3x3piMohkqg64R3fQjpE8.crl (hash: RLKgCTZG0IWSS89jmdiVKnwrGY7QYRhQ/J9QmIB+xqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:56:b8:2e:76:09:1c:fb:7c:f9:0b:f6:1f:e4:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc275b217df1de988ca2192a83ae11ddf423a44f
Validity
Not Before: Mar 25 22:01:28 2026 GMT
Not After : Mar 26 22:01:28 2026 GMT
Subject: CN=781e5e1b2da2f563549e61c1d2f8b2bb2dea5e69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:4e:11:01:e8:b4:47:53:f5:aa:1e:34:64:41:
bb:1b:bb:b6:36:de:e0:e6:4b:db:00:c0:55:26:e3:
f9:d3:80:68:d8:ce:c4:c5:47:1c:50:66:c1:64:04:
1d:bb:1a:1d:37:9f:9e:9c:d7:63:fd:37:8e:ef:f6:
ba:d3:33:43:71:06:d4:1a:ca:0e:d7:27:3c:2d:7b:
38:4b:88:89:27:fd:6b:27:44:cd:f0:1d:6f:21:01:
75:ff:69:9f:40:c8:f3:68:12:eb:cd:78:c5:d9:3b:
dc:21:aa:2a:73:b2:1e:57:92:f2:93:4a:88:a4:2f:
74:ae:40:37:2b:a0:21:87:e2:7c:a0:7c:20:9d:b7:
4c:89:76:80:29:ae:f5:4e:d8:9d:c8:8b:2c:2b:8b:
75:50:66:1e:71:11:37:c0:45:9f:4d:e7:45:65:4e:
c6:e9:00:33:b6:44:96:b4:cb:5b:a0:2c:35:1c:09:
af:9c:10:b7:18:66:0a:d1:02:4b:48:1b:a3:67:95:
74:13:93:6e:b0:de:39:93:5c:8e:e4:7c:6a:a5:a7:
e1:bb:72:62:4a:62:99:ae:b8:32:83:91:3b:ea:27:
10:98:dd:08:c1:4e:db:5c:8d:ac:48:b2:98:d5:a1:
96:a5:fd:2d:6b:cf:8a:a0:0d:67:92:08:52:fc:8a:
a0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1E:5E:1B:2D:A2:F5:63:54:9E:61:C1:D2:F8:B2:BB:2D:EA:5E:69
X509v3 Authority Key Identifier:
keyid:CC:27:5B:21:7D:F1:DE:98:8C:A2:19:2A:83:AE:11:DD:F4:23:A4:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCdbIX3x3piMohkqg64R3fQjpE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5124d0-2b3f-4dab-857d-2e639fca4640/1/zCdbIX3x3piMohkqg64R3fQjpE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:80:24:6b:f7:8f:c8:84:66:be:41:aa:19:e7:8a:81:a9:e3:
32:15:1a:d4:30:59:3c:8d:d4:2e:90:e1:ea:f9:3e:d5:72:63:
f0:94:e2:f0:50:04:56:52:29:1a:a5:a8:44:a3:ad:70:b9:4a:
a7:9a:8d:b7:57:0c:67:c8:01:3f:be:9c:d7:90:ff:64:c8:62:
70:b9:76:de:a6:b3:92:8a:d4:6f:1e:73:90:e2:8e:2c:c0:77:
bf:ad:38:b9:bc:4f:07:11:b1:84:e7:2b:14:b8:11:cc:c5:3b:
ef:3c:3d:70:c1:10:70:69:70:87:ec:30:b3:92:23:66:9f:c9:
24:d0:49:78:e8:0e:51:8e:1b:e5:21:1c:75:cb:c8:02:70:ba:
41:13:0a:91:39:5d:e4:6c:17:59:78:6c:46:05:ed:c7:b6:ae:
fd:79:15:c9:c1:6b:0f:ee:0c:2c:00:a1:64:8d:e9:c7:9c:a5:
d8:17:43:9a:11:fe:c8:a3:4a:03:6d:d8:a9:9b:b1:6b:c4:fe:
1b:08:a4:c8:83:3c:0c:53:77:19:ef:6b:05:87:72:75:39:5f:
7c:51:f6:7d:1d:b3:34:fb:bf:8c:41:fe:9c:bc:8c:e4:86:8f:
52:72:26:bd:4b:53:a8:43:8a:fb:bf:ef:59:58:46:92:4a:df:
b4:8f:15:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:59 2026 by rpki-client