Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
File: zahD6BKxbexgu3CYykEzEX24R00.mft (raw, json)
Hash identifier: sitBIYK7/+sOH7VAyl5IyZIa8JD0PTg7A3itBy+d1mw=
Subject key identifier: 76:F8:80:F3:DB:78:40:8C:72:B7:33:9A:D5:17:51:A7:37:0B:E9:5F
Authority key identifier: CD:A8:43:E8:12:B1:6D:EC:60:BB:70:98:CA:41:33:11:7D:B8:47:4D
Certificate issuer: /CN=cda843e812b16dec60bb7098ca4133117db8474d
Certificate serial: 019DA83109D732A59CBF8CEFAFC24974E2F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
Manifest number: 18CA
Signing time: Mon 20 Apr 2026 00:01:19 +0000
Manifest this update: Mon 20 Apr 2026 00:01:19 +0000
Manifest next update: Tue 21 Apr 2026 00:01:19 +0000
Files and hashes: 1: xAJAqKl5Srwo2ARzZhLG6xPoMEY.roa (hash: zXin4xfG6I9ng2fyOSNQGYSR3toHXgB+MkkZOtI6MnY=)
2: zahD6BKxbexgu3CYykEzEX24R00.crl (hash: ezzWHtyI4+iD49GhQ2eo9uuSR3luIAm568blNCE2H9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 21:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a8:31:09:d7:32:a5:9c:bf:8c:ef:af:c2:49:74:e2:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cda843e812b16dec60bb7098ca4133117db8474d
Validity
Not Before: Apr 20 00:01:19 2026 GMT
Not After : Apr 21 00:01:19 2026 GMT
Subject: CN=76f880f3db78408c72b7339ad51751a7370be95f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7e:1f:86:34:94:23:dc:84:8c:b3:c3:68:99:
87:8b:34:53:d9:ec:66:3a:e1:f3:69:91:fd:94:73:
00:5e:39:8c:7a:04:b9:cf:f4:6a:77:de:59:94:7d:
c8:dc:41:02:23:1f:bb:6e:d8:89:38:15:36:0a:f6:
7a:46:22:0a:17:97:f1:76:de:8e:b1:47:e1:41:3a:
90:29:4b:88:9c:ba:18:1b:3a:49:31:0d:24:42:fa:
10:79:f8:12:9a:d4:f5:4e:3b:2b:f1:25:be:38:d2:
bc:8c:e4:cf:fb:a2:d6:b2:3b:a4:22:c6:22:2e:21:
07:50:9d:77:cc:60:9f:55:22:b4:f4:c0:48:47:95:
22:fd:96:62:03:36:fa:27:30:11:dd:94:8d:15:8e:
7d:05:0a:22:3c:6d:0f:35:de:71:a5:64:f9:db:34:
63:30:3b:1e:ac:ed:a3:b7:8f:00:dc:8d:0d:19:5a:
dc:17:5b:cf:2d:e3:91:24:1b:c6:94:99:7f:f0:19:
51:9a:3c:bb:15:3f:46:da:54:2c:2e:38:ac:58:8d:
6a:7f:1d:0f:17:a9:ba:e5:d0:fd:44:fd:1e:58:8c:
86:4a:d3:6e:b5:61:ec:90:4e:87:b9:71:c3:d7:32:
14:a5:96:48:91:89:80:5b:3a:57:3a:6e:b0:36:87:
f9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F8:80:F3:DB:78:40:8C:72:B7:33:9A:D5:17:51:A7:37:0B:E9:5F
X509v3 Authority Key Identifier:
keyid:CD:A8:43:E8:12:B1:6D:EC:60:BB:70:98:CA:41:33:11:7D:B8:47:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zahD6BKxbexgu3CYykEzEX24R00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/8eb32d-f7e3-4a9c-aaa4-8421d781b03b/1/zahD6BKxbexgu3CYykEzEX24R00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:57:19:b4:d7:20:30:bb:fc:95:8b:44:6d:1a:7f:c5:10:51:
02:8b:49:c5:06:7d:cf:10:c8:04:60:47:bd:16:2e:fa:cd:d7:
fa:76:40:58:2c:0f:d2:4a:c6:0e:ad:8c:45:47:8c:33:c2:ce:
56:3b:18:ad:bb:2c:ed:b8:ee:88:f3:ea:cf:c9:66:83:f8:30:
13:f6:81:6a:4c:2f:eb:7d:db:47:2c:47:5f:27:fc:23:8f:8f:
f8:f3:06:1f:b0:62:5d:57:db:25:a2:dc:62:55:98:8e:89:e9:
45:27:cf:ff:2a:59:77:1c:d7:49:08:6b:59:e7:c2:4e:35:28:
e1:97:a0:23:64:20:23:2c:4e:c6:27:0a:80:13:5c:be:65:d7:
6c:f7:2b:dd:26:89:a2:36:3b:6c:e8:9c:53:7e:5e:35:a5:6f:
b7:78:b3:f3:35:9c:3f:fe:84:9f:f5:cc:f3:b8:d8:bd:e3:e5:
57:ec:84:9b:b4:5e:73:b3:64:e6:a5:eb:cc:70:2b:fa:e2:6f:
31:d4:36:dd:46:4e:b1:e9:c9:ea:84:4e:e7:ca:02:98:6f:f2:
da:82:88:24:c8:01:bc:09:34:f7:aa:cb:bf:00:9b:f6:d5:18:
d1:ff:da:b7:35:64:b7:75:a7:d2:26:5a:c7:c2:c1:13:5d:f4:
07:8b:df:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 03:30:12 2026 by rpki-client