Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
File: ZD4bqRxWmoshptLWf1271sBOQ-o.mft (raw, json)
Hash identifier: josBuTY5vdfLYyoDPgMCtT50BNBoDM1qIlScEYQJMq4=
Subject key identifier: DD:0D:3A:A4:67:36:D6:A0:BD:DC:D0:E2:1E:B4:72:E4:58:A0:6D:BA
Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Certificate serial: 019DCE636E7E580B9B40F95C934BA31AFA13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
Manifest number: 18DF
Signing time: Mon 27 Apr 2026 10:01:55 +0000
Manifest this update: Mon 27 Apr 2026 10:01:55 +0000
Manifest next update: Tue 28 Apr 2026 10:01:55 +0000
Files and hashes: 1: 3s8sY8JfXcq5h0JX5tklV5kK-kI.roa (hash: tUMXR+PdDpzmT4OFEkUcYoWlIAGQobO28dDLQShQPJw=)
2: ATgciNvIucjKCFQUFyNe0yS56Xs.roa (hash: ODwExdkuk2O0WB+oRGE/a1ipu8Cu3cgAGkwUAaoVX9Y=)
3: OQzv-VnaVoUaemq98kXrP_sXKa8.roa (hash: 0UtFVm4divpIKSWLm6cbL2r77Cn14CFuHmjdZonPbwc=)
4: RS2ZY1uc0JYuhYWkx4aN_m6o7qE.roa (hash: ustjYTj3tB8+/KIrC0a07UkmqBeIt1gvoyIyFDQVlds=)
5: Wg4SVphoReQnCpUyJ5-oZULRakI.roa (hash: Q8EhoBGzMhLpl/1N6VdUdhxyINS1Dda6nBjz3JP3ehw=)
6: ZD4bqRxWmoshptLWf1271sBOQ-o.crl (hash: 3bv8ctFsloSwMWg7ohqRcj+8eyW9DvTH8ix0ZGYOcg0=)
7: brDP8rCtmy1_6zegBiE3p8TvEes.roa (hash: Z9tvowz9KVQdbieVlExnm4rsZGGsOyESicqYmRLZjd8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:63:6e:7e:58:0b:9b:40:f9:5c:93:4b:a3:1a:fa:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Validity
Not Before: Apr 27 10:01:55 2026 GMT
Not After : Apr 28 10:01:55 2026 GMT
Subject: CN=dd0d3aa46736d6a0bddcd0e21eb472e458a06dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:21:bd:1b:c1:ac:74:38:bc:0e:9b:84:0f:76:
91:38:30:be:f7:32:64:47:e1:6f:21:24:42:6d:df:
b9:d5:5e:0c:c2:22:2e:46:55:38:00:5a:0e:4e:35:
47:4f:8f:28:3c:74:db:8c:36:65:89:c5:13:aa:0b:
0d:98:60:df:50:57:bf:a4:59:2f:59:38:95:9d:df:
9b:1d:b7:a9:91:05:37:6d:2e:f2:86:a0:98:d2:d6:
50:b0:1e:67:c2:69:37:3a:bd:1b:51:5a:9f:93:b1:
a6:1e:7f:fe:ff:3a:0f:5a:80:12:a6:4b:59:c0:89:
7a:e0:69:5b:5b:35:46:e2:3d:bc:ad:3a:ed:f3:5d:
af:36:1e:42:1e:32:86:6d:59:90:c6:97:84:3d:27:
c2:e1:6d:81:07:5d:89:d1:a7:23:bc:70:0b:f7:2b:
dd:4c:52:e0:ee:76:c2:d1:75:b5:2a:ea:bb:08:50:
5b:34:d1:90:59:72:a3:03:92:db:e7:df:85:7b:c6:
54:4c:76:c0:c7:26:0b:ca:e8:44:52:eb:7f:86:c2:
aa:96:70:63:2c:6a:a0:cf:21:a1:9b:03:0b:80:52:
18:7b:6f:71:a8:ca:50:a9:53:0e:b6:fc:c0:e0:03:
9c:6d:00:6b:03:63:48:98:6e:82:9a:53:67:7e:b7:
93:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0D:3A:A4:67:36:D6:A0:BD:DC:D0:E2:1E:B4:72:E4:58:A0:6D:BA
X509v3 Authority Key Identifier:
keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:bb:ef:5a:45:e1:84:28:06:44:b4:b0:0a:f5:8a:40:27:ac:
0b:5b:e9:a3:5a:c7:8f:58:d6:9f:a6:9b:52:14:75:74:12:59:
79:ec:86:31:80:39:fc:d0:09:fe:b4:bd:5b:d0:a2:39:3a:eb:
e8:f4:1c:2a:ec:87:eb:34:45:33:aa:14:dd:ac:cb:e3:5b:45:
03:c0:c0:26:44:46:81:fb:8c:3f:49:61:d7:38:3a:33:24:3d:
3c:67:2e:c8:a4:73:7e:83:ed:d6:d6:ca:5a:02:5c:4a:db:43:
da:c0:94:9a:e6:ba:00:0d:e8:7e:5d:ab:f9:ec:a0:5e:dd:c0:
18:e1:2c:04:88:ee:39:14:1c:08:05:a3:92:50:35:dd:88:9c:
dc:1a:04:27:55:7b:a2:74:28:2a:b5:0e:98:33:b7:5e:a2:a1:
c4:d6:38:83:48:92:93:10:6c:3c:a0:a8:61:9f:a3:29:f8:1a:
76:c8:20:6d:dc:11:d4:49:9e:f2:03:69:25:c1:35:ae:c2:4c:
39:e4:89:97:1e:42:c1:93:f9:8a:9f:bc:ea:62:45:f0:58:ae:
84:5a:af:94:59:27:67:4f:e2:a3:0b:aa:34:be:1a:c6:47:e4:
f9:6c:20:2c:13:a4:bb:f9:f2:9d:c2:23:e8:e6:da:68:ad:ae:
90:0d:7b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:58:49 2026 by rpki-client