Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
File: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft (raw, json)
Hash identifier: 1LEl51XJuw7llraffNYvUnjn2As/eHMHX2OBO9nlg0Q=
Subject key identifier: 81:94:AA:76:64:C9:5A:F3:42:4A:3A:65:E4:47:E1:40:F4:B1:9F:43
Authority key identifier: D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
Certificate issuer: /CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Certificate serial: 019DCED0541FDB42816CE217130EB26BD945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
Manifest number: 18DD
Signing time: Mon 27 Apr 2026 12:00:52 +0000
Manifest this update: Mon 27 Apr 2026 12:00:52 +0000
Manifest next update: Tue 28 Apr 2026 12:00:52 +0000
Files and hashes: 1: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl (hash: ui36ebYZEBF+3DK4exTc5uASbe2JCfygacvTewvXuQA=)
2: b15waVmeZUiAPXdSgALdQ8K_I1k.roa (hash: 8OOWK/04HtqvAlybr5ZST2AvUlB+dJIHZXLz3leFYTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:d0:54:1f:db:42:81:6c:e2:17:13:0e:b2:6b:d9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Validity
Not Before: Apr 27 12:00:52 2026 GMT
Not After : Apr 28 12:00:52 2026 GMT
Subject: CN=8194aa7664c95af3424a3a65e447e140f4b19f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d9:5d:2b:b6:98:5f:d4:68:19:31:4e:4f:1b:
f4:7e:cd:ae:a7:d3:c8:55:dd:31:70:1c:c7:92:f7:
08:ce:79:4d:2f:67:ba:89:d0:58:16:ba:88:40:43:
5a:49:45:22:78:87:45:b2:3e:94:c9:1a:69:ac:b4:
88:ea:eb:9b:ba:b9:2e:40:38:97:4c:76:db:d2:bd:
03:0e:de:85:02:7d:ef:0c:cc:56:f2:50:06:c1:6b:
3d:e2:3f:4a:4a:91:a6:99:52:bc:fd:13:90:a3:1e:
41:d6:39:20:32:19:d4:9c:e2:df:58:22:de:b2:52:
f0:21:d2:70:0f:ee:21:6b:da:95:80:64:e4:83:76:
ef:72:4d:6f:f6:31:e6:c1:f3:63:87:cd:b7:fc:72:
37:3c:dd:77:82:d7:72:51:f3:ed:f2:15:14:f3:5a:
6c:90:28:be:d9:e2:42:99:0d:76:83:ba:7d:24:1c:
08:73:ca:98:f4:80:78:1c:16:81:bf:c7:e4:fe:bd:
78:49:90:d2:5b:e9:64:f2:49:c2:cb:d4:dd:d1:8c:
33:48:06:a3:2f:2a:76:87:01:61:19:7e:94:1b:6e:
e8:d7:c8:ab:ca:7b:e6:55:cc:57:2a:dc:2a:dd:ec:
4b:b9:11:10:50:35:55:03:bd:f7:78:0b:94:97:72:
ed:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:94:AA:76:64:C9:5A:F3:42:4A:3A:65:E4:47:E1:40:F4:B1:9F:43
X509v3 Authority Key Identifier:
keyid:D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:01:da:dd:ae:fe:72:c8:a1:ec:ae:5d:db:cc:b8:8c:d3:1d:
7c:79:fe:f5:1d:ef:3c:c6:1f:27:28:96:e4:21:4e:67:21:72:
c7:50:5d:11:ed:ca:ef:d6:90:f1:3c:ec:a2:31:43:95:f8:82:
97:e0:40:64:06:fa:65:ef:11:1c:6a:bf:a8:ca:e0:19:72:8c:
6f:d5:e3:3e:ea:2f:1c:f9:64:bd:dc:c5:27:ac:96:eb:4f:7b:
24:72:6e:76:d7:13:65:36:68:ee:39:e3:9e:d8:05:07:51:56:
bf:22:b9:de:82:1e:09:86:0b:76:6c:33:8f:c9:e8:5e:53:c0:
4f:b8:22:bd:63:98:7b:f9:2b:10:09:5f:28:05:e3:5c:36:68:
f9:3b:ad:29:10:9c:08:af:6e:2a:1f:4c:c9:75:c3:46:47:d6:
0d:71:f7:6d:58:3a:21:42:6f:f8:58:3e:d7:ab:f4:a2:bb:ab:
55:4f:e0:03:13:72:be:91:7c:57:b8:50:7c:c3:87:ec:87:a5:
5b:c4:77:7d:ae:61:ac:b7:ad:57:f4:b7:cf:2c:4e:5d:6a:81:
92:67:98:a2:8a:7b:86:08:e6:08:c2:8f:a3:62:55:8a:c2:12:
ec:77:b2:d9:70:8c:1a:92:42:0e:99:1a:d1:28:9a:54:8d:b4:
4f:70:71:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:05:35 2026 by rpki-client