Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
File: zS0OOdePxiAiVaW0rbVFg9ne3c4.mft (raw, json)
Hash identifier: kh5yG1/DKF2a8+5PqHiDL23lcdue5YG0UutIIhlfzhU=
Subject key identifier: 94:AA:55:71:DB:6B:ED:08:1A:8D:C3:59:54:AA:D1:71:C7:C1:81:96
Authority key identifier: CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
Certificate issuer: /CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Certificate serial: 019D38656111B52F1B0B21FA43D82FE13196
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
Manifest number: 0BB3
Signing time: Sun 29 Mar 2026 07:01:01 +0000
Manifest this update: Sun 29 Mar 2026 07:01:01 +0000
Manifest next update: Mon 30 Mar 2026 07:01:01 +0000
Files and hashes: 1: BzcIlfSqWBkxCx6sQahLAYgQl9U.roa (hash: iEU6LtcxUGPF+befnk/JbzTRId/51aZ7BTsMTWVBJf8=)
2: zS0OOdePxiAiVaW0rbVFg9ne3c4.crl (hash: kES6EfClkUxcgPZa24siMlHqS2yKRqpZ4ojV91gCF+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:61:11:b5:2f:1b:0b:21:fa:43:d8:2f:e1:31:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce
Validity
Not Before: Mar 29 07:01:01 2026 GMT
Not After : Mar 30 07:01:01 2026 GMT
Subject: CN=94aa5571db6bed081a8dc35954aad171c7c18196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:25:4b:a5:ca:fd:1e:78:7e:b9:6c:2b:70:7b:
ea:8f:2d:fa:a7:6f:6d:5e:1b:a8:66:54:69:3f:cb:
e6:35:11:d4:18:2c:5a:85:d1:ad:d8:1f:0a:1d:cb:
8d:3d:e9:93:7d:ce:31:fb:00:4f:55:66:58:73:f8:
f5:68:13:4e:32:5c:5b:7b:47:12:72:32:f1:76:e5:
ad:ca:92:bf:4c:df:27:c8:33:5c:85:29:94:fd:e1:
eb:4d:5f:1b:b4:96:70:7d:16:64:d7:b8:ea:95:bb:
6a:28:5f:0e:89:65:25:d3:fe:97:c1:af:19:d8:c9:
16:6c:29:f3:28:0f:72:ef:72:08:29:df:a1:26:c3:
ed:fb:30:d8:ba:8b:b5:54:9d:07:b1:e5:66:63:5d:
ce:ee:d8:24:f2:86:48:92:43:c0:a1:9e:a0:1f:86:
75:30:96:79:a9:3b:7c:d8:df:db:02:30:b2:b1:a3:
7f:56:1e:30:f1:be:49:e3:ac:cc:22:ba:4e:46:2b:
b6:5f:46:71:d2:fd:8d:30:19:f8:55:6d:d5:40:31:
2c:a2:e6:33:9a:fa:ee:0b:47:4e:4c:de:26:1f:60:
e3:be:2c:49:07:fe:09:b1:f1:c9:50:9c:6b:66:dd:
2a:52:c1:8b:f1:bb:9c:f4:61:7a:05:bd:eb:e2:4b:
28:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AA:55:71:DB:6B:ED:08:1A:8D:C3:59:54:AA:D1:71:C7:C1:81:96
X509v3 Authority Key Identifier:
keyid:CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:09:00:fb:80:b2:09:93:9f:cb:46:09:02:ec:57:ff:b1:8d:
84:66:12:ef:0a:b5:16:78:97:89:c5:50:84:3b:eb:f0:66:42:
82:ce:91:bb:6e:de:80:8b:57:44:e4:8a:29:ea:91:1b:d7:48:
0c:ee:a6:d7:48:38:20:c4:bb:0e:2d:da:f0:78:86:e0:d4:12:
a6:1e:08:14:d1:e8:a3:88:96:ab:ca:d2:38:9e:47:ec:1d:6c:
6e:52:cb:d6:5e:92:bb:3a:7a:4c:27:08:7b:26:a5:b3:40:98:
17:b7:1a:0a:7c:70:a5:d8:40:e9:77:7c:e2:95:d9:de:67:18:
80:fa:4f:bb:56:fa:8d:49:c1:2e:da:52:d6:af:cd:36:51:70:
4f:d0:56:42:29:7b:38:ac:16:6d:3c:e5:1a:be:b3:38:65:1b:
9f:86:df:57:10:af:06:bf:35:5b:71:1e:19:f2:bc:52:e5:3a:
ec:86:e7:3c:7a:4d:6b:4f:4d:aa:80:48:29:a3:83:e4:0a:f8:
e0:ff:8e:4f:b3:ea:24:6d:7c:a0:8b:84:04:69:5c:44:2b:63:
41:ed:d9:24:e6:e8:7e:ab:63:93:e1:12:95:42:05:c7:3b:c9:
98:84:44:de:01:68:43:92:f5:da:47:1b:2e:38:16:93:97:e9:
95:c2:0c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:16 2026 by rpki-client