Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
File: z1PAwqcKnguguGDSKQTbsOkrkgs.mft (raw, json)
Hash identifier: YBl5uy/Gk1BRZI+wDYC1EgcSrkKSoumM9NRGOeai6p0=
Subject key identifier: 6F:02:AA:30:AA:1F:C8:39:D7:D7:8C:0B:4E:D9:7C:9F:8F:34:87:3A
Authority key identifier: CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B
Certificate issuer: /CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b
Certificate serial: 019D2AE131598966D65EBB8016FA6CAA16F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
Manifest number: 07F7
Signing time: Thu 26 Mar 2026 16:01:34 +0000
Manifest this update: Thu 26 Mar 2026 16:01:34 +0000
Manifest next update: Fri 27 Mar 2026 16:01:34 +0000
Files and hashes: 1: _9WbrV_lxRO9A6dqxPijQXNV-ko.roa (hash: fEUSm2PwMNP9PK5a1HcBHHCSAECUxHIXVKYYdmBQe64=)
2: z1PAwqcKnguguGDSKQTbsOkrkgs.crl (hash: WyYnq41g7Nw312PTKWDzLepqm7AZ7msyrljbFw3jh8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e1:31:59:89:66:d6:5e:bb:80:16:fa:6c:aa:16:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b
Validity
Not Before: Mar 26 16:01:34 2026 GMT
Not After : Mar 27 16:01:34 2026 GMT
Subject: CN=6f02aa30aa1fc839d7d78c0b4ed97c9f8f34873a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:67:39:93:c5:0b:ec:f2:c6:5a:ad:31:2c:4f:
9a:f8:ba:ef:10:da:5a:79:20:ad:49:42:0e:b8:08:
fd:97:18:4f:4f:1a:b6:ef:bd:1e:99:0b:bf:67:9f:
cb:25:a5:26:cc:e9:90:fc:1f:c1:e4:30:85:7c:6b:
f1:28:38:2b:ec:71:36:f2:57:45:ab:c9:94:88:b8:
4d:65:54:5c:23:8d:97:54:88:77:31:6d:28:d7:c8:
05:46:30:f4:b7:43:c3:e4:8f:f8:e4:4b:00:07:0f:
fa:ec:29:ca:d8:8d:2f:50:3e:ff:08:bb:7d:87:1c:
ce:4f:4b:6a:31:e7:42:88:5a:c2:33:e5:93:d5:94:
98:d7:d6:2c:64:1f:e3:aa:ee:d8:82:6c:3d:ff:7b:
94:87:ec:28:e6:a2:11:85:60:6e:6e:03:11:7a:34:
8b:8f:f0:b6:28:13:0a:10:8a:ce:8d:41:1d:4a:88:
5f:c0:d7:de:93:fe:e6:63:f7:4d:dc:1f:7e:10:90:
da:ed:d6:41:5a:c0:b4:26:9c:67:0c:55:ed:76:61:
c7:30:4c:91:34:8f:aa:f4:9b:c7:3b:e4:8c:88:1e:
a5:f7:9a:b9:3d:8e:4b:4d:c6:16:da:09:7d:88:19:
a8:a2:d1:8a:94:8a:93:28:9f:92:ed:fd:d7:1d:11:
e6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:02:AA:30:AA:1F:C8:39:D7:D7:8C:0B:4E:D9:7C:9F:8F:34:87:3A
X509v3 Authority Key Identifier:
keyid:CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:b0:5e:79:65:df:d7:f9:bb:16:60:47:69:cd:07:2b:5f:89:
6e:2d:46:b9:ab:da:9f:79:fa:61:55:43:20:4a:bd:62:38:a9:
7f:2c:3a:90:29:0a:25:0e:ef:c5:8a:7e:1e:64:a2:78:d6:6a:
7f:ce:43:9a:e6:27:b5:a1:4f:34:f4:4a:73:da:de:c7:06:3f:
47:77:07:56:c7:60:4a:a1:d8:73:5f:47:6b:54:6a:20:c9:8f:
6b:fb:db:c1:cd:91:c4:5f:b6:bc:11:73:9b:83:fa:7e:29:ed:
f8:cb:a4:97:e1:45:48:c7:33:f1:69:90:e6:c3:02:6c:0c:a9:
d0:19:43:3c:29:da:7f:62:2d:de:3c:55:fb:1f:18:60:4d:e1:
a6:cc:87:ea:a7:67:b4:e3:ad:70:8d:fb:80:e8:7b:86:ba:c5:
79:ee:66:ea:e1:58:58:58:7a:bf:e1:27:f5:2a:95:84:fa:8a:
a0:ac:89:99:bf:58:b5:44:28:bc:1c:9c:3f:d7:0e:08:e6:ce:
8f:55:15:91:10:99:fc:22:15:a6:9c:55:0c:3d:be:e4:c5:91:
3d:eb:46:dc:4d:24:1e:83:e6:39:c7:46:50:c6:58:39:ab:c8:
dd:e9:b5:49:ca:80:7a:59:4e:0b:48:d4:b1:0a:e9:8c:29:ce:
a1:6b:1e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 02:34:51 2026 by rpki-client