Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
File: zl1FYESPeKTc3LeRoH2tIWOgjN8.mft (raw, json)
Hash identifier: jg6wWDkI8U+lAhn8Q5SS3DxxgKCs3/wWmA55pksAK+4=
Subject key identifier: 79:4E:BA:A5:F3:7B:3F:9C:95:F2:8E:F3:49:F1:CB:C9:5B:C4:A0:18
Authority key identifier: CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
Certificate issuer: /CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Certificate serial: 019DCC0686B283CA3BE14E4E09F670D50B34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
Manifest number: 186F
Signing time: Sun 26 Apr 2026 23:01:12 +0000
Manifest this update: Sun 26 Apr 2026 23:01:12 +0000
Manifest next update: Mon 27 Apr 2026 23:01:12 +0000
Files and hashes: 1: kJTuRCvouXJMaVDF0pdJUxYymkE.roa (hash: u4BkMutspCjtHl2p10ecFJYI7igX5XDffjXXKmzdde8=)
2: zl1FYESPeKTc3LeRoH2tIWOgjN8.crl (hash: B1NQQMI25V6XpZfNwNM0o5uYQstKdPM3H3VBzDPZPXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:06:86:b2:83:ca:3b:e1:4e:4e:09:f6:70:d5:0b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5d4560448f78a4dcdcb791a07dad2163a08cdf
Validity
Not Before: Apr 26 23:01:12 2026 GMT
Not After : Apr 27 23:01:12 2026 GMT
Subject: CN=794ebaa5f37b3f9c95f28ef349f1cbc95bc4a018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:35:b6:cf:54:e1:b1:74:74:a6:8e:e8:a4:2e:
6d:15:b1:a9:9d:6a:0b:f4:10:22:9c:e9:7e:a1:c7:
6f:8f:a7:d7:fd:21:66:ce:18:5a:6e:84:d1:15:e5:
f8:c1:6a:49:d8:d9:39:b6:f2:20:ce:36:4c:f2:d3:
40:d3:d1:91:5f:09:11:30:bd:ac:eb:cb:54:bd:32:
b2:c7:bc:16:e4:08:8c:f2:7b:54:30:24:02:b7:ea:
06:2c:7d:9b:d5:75:af:77:e9:74:7b:84:93:ce:3a:
94:0e:3f:99:ec:67:c7:98:9b:62:28:a5:d1:f8:5a:
9c:bc:b9:9a:25:89:b2:c2:51:5a:77:de:3d:ca:cb:
2b:42:9b:af:8d:8e:58:f7:f3:95:f3:3e:aa:b8:af:
28:a0:e5:18:4c:cf:a6:1e:6f:d2:77:06:10:88:ac:
31:05:d9:2c:ed:c3:2a:7b:99:42:6d:50:01:43:fd:
34:14:29:da:48:db:6a:04:b0:dd:cd:d8:71:b6:27:
6f:22:27:d1:a4:12:6d:b0:09:89:9a:2a:d7:df:68:
a9:54:53:f3:4c:9d:85:23:31:bc:79:c3:f8:3c:cc:
08:b1:51:a9:0a:81:f3:57:0d:72:ed:be:86:12:59:
b1:7e:8e:27:f9:1b:03:9b:07:a8:e7:07:2f:6d:65:
47:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:4E:BA:A5:F3:7B:3F:9C:95:F2:8E:F3:49:F1:CB:C9:5B:C4:A0:18
X509v3 Authority Key Identifier:
keyid:CE:5D:45:60:44:8F:78:A4:DC:DC:B7:91:A0:7D:AD:21:63:A0:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zl1FYESPeKTc3LeRoH2tIWOgjN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/27cbd0-a7b9-45fb-9954-78d1144ad967/1/zl1FYESPeKTc3LeRoH2tIWOgjN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:33:a4:ab:fa:23:3d:2a:56:1c:77:61:ba:c2:fd:cc:09:cb:
4d:31:e4:bd:33:f4:a8:56:e4:c0:d4:e7:06:05:38:a7:58:68:
3b:b5:c8:79:32:6b:8f:1f:b9:a6:70:86:55:4b:c1:93:7b:8d:
8c:59:ca:d9:65:e5:8c:d1:b8:69:76:ad:f4:39:a2:24:89:25:
96:3f:6b:9c:e7:f1:3b:05:1f:f7:10:15:0f:bc:b4:39:bf:73:
13:91:4d:44:00:a1:a9:53:0f:f9:c1:3d:95:9f:ae:53:d5:ae:
7b:b5:68:6f:e2:5d:6f:f2:43:e9:e8:dd:39:10:54:7d:df:04:
dd:a1:99:ce:ea:91:82:44:44:c2:80:22:37:cd:82:b3:44:ec:
24:f6:71:b2:32:00:86:29:08:c6:f5:7d:c1:5e:0c:ec:15:72:
bb:53:d0:fb:19:96:00:05:36:fd:6e:53:c0:11:fb:9e:be:b5:
dc:a6:ae:a2:d4:23:49:95:ef:d3:e9:00:27:64:53:f1:dd:ce:
3e:9b:2d:e4:7f:6c:90:57:96:ef:54:0d:b5:7c:61:68:78:c8:
f7:22:90:86:44:f8:a3:d1:74:85:7f:33:2c:e0:c9:cf:1e:d8:
a9:c3:90:72:fe:bb:59:d3:23:8f:f2:4b:84:ab:f0:6b:27:3b:
18:a5:a9:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:17:06 2026 by rpki-client