Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
File: zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft (raw, json)
Hash identifier: hLIZb0svvoYWEab1pZTRhCyGZQbYmOWL4piKDlV4vPU=
Subject key identifier: 73:36:23:45:9C:C0:18:26:12:43:F4:5A:E6:10:AB:B3:82:EE:D4:37
Authority key identifier: CC:AC:37:2F:7A:9B:81:71:DC:BF:C1:16:0C:AA:22:C8:FD:C6:8B:7B
Certificate issuer: /CN=ccac372f7a9b8171dcbfc1160caa22c8fdc68b7b
Certificate serial: 019EB80EFF2792A1961F7F37781146D5C82C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
Manifest number: 10EB
Signing time: Thu 11 Jun 2026 19:00:51 +0000
Manifest this update: Thu 11 Jun 2026 19:00:51 +0000
Manifest next update: Fri 12 Jun 2026 19:00:51 +0000
Files and hashes: 1: iGJ44E91_fnhiJC0QtPIqCqxhz8.asa (hash: LlYwU6qiNvignry/zacR14K4kG0NVC/S0sJ/6MtD8rQ=)
2: zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl (hash: 9qn4fqVGcqUwsHO+OoYqL2tKAV0i0PPIDR5praEmkhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0e:ff:27:92:a1:96:1f:7f:37:78:11:46:d5:c8:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccac372f7a9b8171dcbfc1160caa22c8fdc68b7b
Validity
Not Before: Jun 11 19:00:51 2026 GMT
Not After : Jun 12 19:00:51 2026 GMT
Subject: CN=733623459cc018261243f45ae610abb382eed437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2b:d2:35:e0:24:d1:4f:8b:e6:a4:d4:5c:57:
e1:15:67:ef:bf:d3:20:8b:b0:1a:21:8b:bf:0f:c4:
90:78:e4:01:d5:b0:5c:e5:bf:71:ce:e9:13:3d:62:
56:74:11:c4:be:9b:84:69:f2:78:c2:1a:64:98:75:
0b:2f:00:6a:3f:c5:20:6f:73:04:9a:70:74:d7:1d:
13:c2:37:8f:84:c3:e0:d4:3d:6e:78:2d:eb:2b:a1:
02:df:79:7d:ac:ee:b2:ac:24:ad:8a:8a:bd:7f:80:
e6:2b:8f:85:34:4e:49:fb:20:82:7e:a7:85:28:e4:
f3:25:d8:10:c0:67:92:35:5c:35:3e:c1:0c:7b:59:
6b:4c:1c:05:15:80:f3:cf:02:63:94:ef:db:39:2b:
7b:d5:9f:38:ab:5d:22:9a:5c:9d:84:87:71:80:69:
91:06:70:9e:30:96:27:e6:35:10:4b:d5:9b:dc:33:
2c:48:95:09:f5:6c:7b:1a:fe:1c:8e:0a:90:71:fe:
5b:8c:46:f8:af:93:4a:c0:b9:2d:a7:81:ff:4b:98:
ee:c8:c2:e5:e3:31:0e:4a:f4:4b:41:1d:e5:d3:fa:
6a:f5:b4:81:ed:fa:5f:06:11:76:75:3f:e7:7a:11:
10:6e:23:f2:7e:3a:b4:54:37:ca:4f:4b:03:16:b0:
98:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:36:23:45:9C:C0:18:26:12:43:F4:5A:E6:10:AB:B3:82:EE:D4:37
X509v3 Authority Key Identifier:
keyid:CC:AC:37:2F:7A:9B:81:71:DC:BF:C1:16:0C:AA:22:C8:FD:C6:8B:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9fd384-a8c0-427f-962d-c4502da869bb/1/zKw3L3qbgXHcv8EWDKoiyP3Gi3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:3d:bf:79:ff:53:11:7d:59:3b:b4:0a:99:8f:63:7a:4e:62:
a8:ca:ea:9c:8b:dc:61:19:09:8b:15:fe:9b:ef:52:36:b0:a7:
de:df:fc:47:01:63:bb:78:b9:d1:e2:1b:1b:6d:73:72:24:72:
ef:86:31:b0:e5:7f:c5:38:9a:60:0f:c9:5c:a2:64:eb:0d:fc:
38:a4:6c:8a:e5:00:a7:b2:7d:9e:f8:ed:aa:40:88:a8:50:37:
2f:d3:ff:8d:de:08:78:7c:06:ef:8a:50:5b:0e:ce:e7:e6:5f:
4d:58:09:51:1c:21:e9:83:ef:49:87:d1:f6:d2:2c:5f:f6:eb:
35:70:d0:7e:95:bb:27:51:b1:bd:6e:f6:d6:29:4e:cf:08:eb:
68:d7:98:eb:5b:f9:e3:98:50:f5:89:44:7f:8f:a5:b4:27:d9:
92:a2:1d:97:ce:61:53:c8:76:b8:ce:f4:bc:d0:aa:85:7f:8d:
f2:76:05:69:5d:04:00:45:68:eb:01:50:e3:31:68:c1:d6:0f:
5a:d7:ed:65:2e:52:6c:88:8b:45:e0:6f:5b:7f:43:49:0a:7b:
4b:2d:ff:0a:0d:42:60:fe:57:f5:87:16:c5:0e:37:8a:e3:f0:
e6:23:72:ad:1a:b3:70:f2:74:38:28:5f:33:c7:4a:0d:da:2d:
63:c9:48:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:33:51 2026 by rpki-client