Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: JGEFOibv23wnKHKo9UwnS1mNQzeibg9vEpB+ZXaV44w=
Subject key identifier: 54:49:16:BE:31:A4:8B:B3:92:48:F6:AA:75:A8:4E:0D:54:F2:92:AB
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 019E2926C4FFFD2103724ECC496E90B5B67D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 0A7E
Signing time: Fri 15 May 2026 01:01:07 +0000
Manifest this update: Fri 15 May 2026 01:01:07 +0000
Manifest next update: Sat 16 May 2026 01:01:07 +0000
Files and hashes: 1: GvdosnM4oTQr42AAbs5kaRK7G5k.asa (hash: +q7C0091/BCLWI1y72MQuuHCj669pr/poTHiNIbXYFE=)
2: wEZZX0o5N8nlP47tu1RwoQ2y0AY.roa (hash: ddJPky6VMI6qp8TK3QriFAzhCSzbyfK/JMSPvgj4FCE=)
3: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: 8R5iMG0euUv+FMCprhgkkdZR6httjZ0/aNLoTcJYyFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 01:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:26:c4:ff:fd:21:03:72:4e:cc:49:6e:90:b5:b6:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: May 15 01:01:07 2026 GMT
Not After : May 16 01:01:07 2026 GMT
Subject: CN=544916be31a48bb39248f6aa75a84e0d54f292ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:57:7f:c9:2c:ad:21:0d:90:92:a4:05:71:8d:
45:f5:7e:19:ba:c1:10:58:56:41:a7:34:70:57:3d:
d2:5c:ff:4e:5a:e5:d2:3f:03:3f:85:51:8e:50:62:
1d:b5:6e:28:c3:48:28:e2:3a:f1:69:ac:cd:a9:8a:
7f:c3:55:05:4d:5c:1a:af:da:d4:66:1f:31:67:1d:
f3:de:21:21:a5:5a:35:5d:da:a5:05:ca:44:3e:2a:
fa:d9:b3:d7:72:65:b4:d0:34:60:02:2b:20:f0:e5:
a7:c5:a3:6c:23:9b:80:04:5b:e3:37:a5:d4:5b:d6:
3a:4a:40:00:bd:ad:27:61:de:d0:dd:98:72:2f:da:
b7:4d:05:3d:fa:76:59:73:57:5a:d0:7c:6c:5e:6f:
37:23:83:99:b3:0b:45:5c:0e:70:c9:a2:df:30:58:
98:e3:c6:a1:86:6f:ba:03:a4:87:6d:e2:a9:16:16:
62:8a:34:97:ff:45:08:35:19:d0:9a:f1:be:33:0e:
df:c1:86:7b:0a:80:b3:c7:54:85:88:d9:73:58:74:
84:0d:ce:58:a0:50:ac:d1:2b:3e:c3:26:de:bc:fd:
86:7d:b3:ab:0a:6d:ed:7d:fb:0a:23:7d:71:69:01:
cc:b2:a2:b4:9a:a5:c7:45:97:10:01:70:ad:e9:63:
22:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:49:16:BE:31:A4:8B:B3:92:48:F6:AA:75:A8:4E:0D:54:F2:92:AB
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:e2:da:bb:ac:c7:69:f1:ff:50:a0:17:94:83:7a:ff:43:71:
24:a2:07:3e:fa:9c:9d:8f:46:ba:60:ed:9b:c6:da:77:ec:e9:
05:e1:4f:dc:97:9a:7d:99:6f:8f:20:9b:cf:f2:31:8c:86:2e:
31:72:74:97:8d:c7:d3:d3:3e:3c:e7:58:f3:09:72:10:c0:c2:
c3:39:14:1a:53:d3:60:54:0b:8e:73:dd:5d:ca:b8:49:6e:03:
b3:01:c8:19:1d:16:74:3a:9e:e0:a6:7b:60:5a:d0:ba:8b:63:
dc:61:61:78:71:22:c0:71:59:d6:ef:44:30:22:ed:57:7e:e9:
9f:b6:01:4a:95:c0:22:3e:75:8c:0b:a9:fb:e8:e9:f7:19:0b:
e2:d8:9e:14:77:9c:99:9a:79:1a:22:47:de:ca:6c:e0:b7:ea:
5f:f8:8c:35:b0:4b:9d:81:e6:54:ce:f8:57:8c:30:e7:d1:76:
bc:0b:27:2d:ce:01:9a:1e:b0:59:fe:4f:29:50:92:05:d5:48:
2c:0b:39:b2:54:90:fd:c1:75:87:14:7b:8e:60:e7:5a:26:f0:
82:34:08:3f:1c:1f:44:b0:04:6d:02:79:ac:20:aa:67:36:da:
4c:3d:a2:75:39:b5:45:63:dd:52:e2:53:8f:1f:f8:8a:27:a2:
ae:64:7c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:16:39 2026 by rpki-client