Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: uel0dTqrCyTE7uSlIrUhjf6FTLi5RFGQzrgXGKShGMA=
Subject key identifier: 4D:0C:AB:F7:3C:84:18:27:F3:BD:5E:B7:4B:58:78:36:D2:A4:C5:0B
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 019D3940FF3C14EBFC0C6F642D7E8CD5F730
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 1703
Signing time: Sun 29 Mar 2026 11:00:54 +0000
Manifest this update: Sun 29 Mar 2026 11:00:54 +0000
Manifest next update: Mon 30 Mar 2026 11:00:54 +0000
Files and hashes: 1: W0kDwuE8Wzw-iZxK0RP3iilB4OI.roa (hash: LAGYp6tmx7aAjzZBlxGzQ8k1I+/BB+mHmklMRyiCKgA=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: LlxpC8vYBhIKp3t6rBV1O+GhpYjrOPfTi1z9x4+G1ig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:ff:3c:14:eb:fc:0c:6f:64:2d:7e:8c:d5:f7:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Mar 29 11:00:54 2026 GMT
Not After : Mar 30 11:00:54 2026 GMT
Subject: CN=4d0cabf73c841827f3bd5eb74b587836d2a4c50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e2:b2:cc:c5:9f:2e:0b:ad:5a:f5:e9:47:0f:
44:db:5d:aa:4e:86:58:42:bc:8b:af:d7:9e:eb:e5:
cc:48:c9:f9:5e:55:63:a0:72:2d:ec:0f:37:e7:5b:
48:a6:fe:b0:78:bd:1b:ec:07:9b:66:23:bc:e0:de:
22:df:bf:a8:e6:a1:cd:d2:13:66:da:69:90:58:16:
c3:bd:33:bf:36:1a:07:d6:f9:3e:86:6c:f5:e6:e0:
97:06:9d:96:b9:89:23:74:16:17:2b:49:a9:3c:ed:
4f:fb:ce:41:65:ae:ca:02:49:89:76:af:ac:98:b8:
66:8e:69:b1:c7:02:8d:8e:60:5f:84:f5:b2:7c:7b:
6c:3b:6b:a9:7c:24:4c:35:1b:83:ec:37:37:c5:79:
b2:a4:94:7e:47:7d:99:83:ad:ec:41:81:7a:42:ba:
eb:3d:19:aa:4c:58:f8:60:26:29:15:07:69:53:75:
a1:a4:64:64:7d:de:55:55:69:60:69:43:8e:55:21:
40:48:d3:e4:72:56:61:ec:c0:b2:98:e6:37:75:19:
75:1c:2d:ee:42:31:ca:59:d2:c7:d6:f8:77:3e:86:
86:2d:b4:ef:54:93:92:4d:c8:0e:3f:7c:f3:aa:79:
aa:61:2c:da:d5:e9:bf:97:f0:30:77:eb:31:ef:b2:
59:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0C:AB:F7:3C:84:18:27:F3:BD:5E:B7:4B:58:78:36:D2:A4:C5:0B
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:3b:1e:51:c7:4f:2d:2d:e1:2a:ae:02:a0:f6:34:d6:b7:57:
01:86:99:8e:25:64:09:45:c6:d8:25:8a:55:51:cd:92:0b:7e:
d8:38:f8:29:2d:f9:99:63:45:b3:55:67:0d:ea:03:84:3f:9d:
95:a0:82:58:69:7d:8a:c0:c6:29:8c:36:15:cf:2c:48:af:af:
68:2a:68:2f:15:16:cd:90:e4:41:ab:2f:7f:17:6c:e6:6b:97:
17:ef:df:bd:e4:87:a1:96:82:bd:ce:e7:27:4b:0f:98:d2:4a:
8b:a2:2a:eb:a3:f9:7a:be:b5:1d:2f:cb:82:2c:9b:b2:cc:60:
79:2b:61:63:ee:1e:bc:18:96:77:bf:09:a4:c6:dd:f2:ea:aa:
c4:89:aa:0e:12:e1:9d:12:ed:7d:28:ec:7a:76:5f:af:0f:6a:
70:4f:a5:4a:68:b3:b2:77:f1:32:b5:dc:6c:67:b6:5f:c9:31:
f4:07:ca:cf:9e:c4:a1:b6:af:7d:5d:f1:d4:42:39:66:a8:bc:
21:a7:85:e0:a2:4d:3e:db:6b:73:70:26:bb:fb:18:7b:fb:c2:
c8:2d:36:c1:18:b7:42:1d:55:85:99:cb:f9:09:61:ed:25:9a:
ea:46:6c:a9:08:e0:be:44:94:7e:ef:28:da:f3:3f:63:d9:1a:
de:cb:30:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:21:00 2026 by rpki-client