Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
File: zzKCScw17CfMEOGLiCxsE4l8hJc.mft (raw, json)
Hash identifier: xxBpDkn3VNTbS8mtPffg+QJZqfBGEZpaII44ooVFq+U=
Subject key identifier: 5D:1F:B2:7B:12:9E:CA:6A:EC:89:34:FC:B2:36:9C:32:98:9E:7C:F7
Authority key identifier: CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
Certificate issuer: /CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Certificate serial: 019D099E17980EA952879039BAE2468DCD88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
Manifest number: 1010
Signing time: Fri 20 Mar 2026 05:00:48 +0000
Manifest this update: Fri 20 Mar 2026 05:00:48 +0000
Manifest next update: Sat 21 Mar 2026 05:00:48 +0000
Files and hashes: 1: Gaonav40tTJpKCNRA2Pgw8c6CJI.asa (hash: qQGsDuLfuc8HGPjQosjqKzgl1S/2LQUHdjWbkc+kEYQ=)
2: zzKCScw17CfMEOGLiCxsE4l8hJc.crl (hash: 8IzjoKOxPCcCoevzy1XAbuFkRpfav6z0Lgtze4YKtsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Mar 2026 01:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:09:9e:17:98:0e:a9:52:87:90:39:ba:e2:46:8d:cd:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Validity
Not Before: Mar 20 05:00:48 2026 GMT
Not After : Mar 21 05:00:48 2026 GMT
Subject: CN=5d1fb27b129eca6aec8934fcb2369c32989e7cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:34:d7:1e:c1:89:34:6d:00:dc:54:be:36:9d:
58:66:31:d1:bd:f5:e3:e5:13:34:b8:57:2f:13:8d:
af:b0:df:2e:11:01:ea:8a:0e:e0:6a:af:ce:0a:c1:
db:fa:11:ea:39:ab:14:00:df:e6:e8:17:99:92:8a:
87:ef:28:b4:8a:cb:1e:62:f6:f2:52:b9:72:8d:e3:
fd:db:90:e0:05:7e:70:df:9f:eb:34:fd:ee:a6:66:
2c:12:f6:d7:28:91:25:5e:9d:5f:2e:c0:33:f7:f4:
64:d6:c2:ef:8d:7d:9f:04:02:b4:bf:da:59:ce:ce:
b3:40:1f:dc:60:81:88:52:93:be:5e:12:0e:b5:c2:
3c:7b:25:a2:07:85:da:09:33:1e:87:14:fd:9b:26:
88:66:23:f2:f6:f8:a3:bc:dc:01:5f:06:46:d0:14:
86:47:a6:86:89:36:af:04:45:c0:53:ac:67:97:e9:
fc:59:d7:72:f8:2d:34:70:82:f3:84:37:97:5d:d0:
a7:22:df:7a:4e:0f:8d:35:33:c5:76:60:ff:df:61:
05:92:c1:20:49:a1:e3:7b:66:a5:05:6f:e4:a0:59:
38:64:72:26:10:44:81:2c:49:cb:6c:91:c4:fa:e4:
7b:58:20:de:f1:13:22:f0:af:4a:87:01:39:74:e5:
f8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:1F:B2:7B:12:9E:CA:6A:EC:89:34:FC:B2:36:9C:32:98:9E:7C:F7
X509v3 Authority Key Identifier:
keyid:CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:cb:90:4f:ad:99:56:b5:3d:b5:93:e2:c2:b6:21:29:6c:85:
02:46:8c:14:c1:f1:29:36:25:64:d9:71:2d:df:cc:bc:a1:75:
b6:e3:fc:41:68:3a:be:c0:d6:18:78:bf:ab:2c:21:8d:53:7d:
5d:3e:42:32:a9:f3:95:9a:8c:f6:49:21:53:1a:c3:d0:bd:e7:
15:e0:d6:c6:1d:da:c7:f2:f5:06:30:f1:5e:e9:eb:b9:5a:b1:
ab:0a:4d:52:6f:8f:ad:9a:17:4a:3a:36:6d:5f:04:d5:2e:1e:
1c:28:6b:e3:c1:8b:e0:49:ad:2a:5a:10:23:4e:c7:ed:d3:56:
88:4c:76:97:16:be:fb:c0:7b:5f:79:f0:40:91:fd:58:be:7c:
a8:78:06:b1:3d:40:dc:25:87:a5:42:0e:c1:86:54:41:8d:94:
26:87:02:00:1a:36:fb:2f:90:d5:03:8f:04:9c:b6:d1:a8:43:
f6:19:c0:9c:a2:9f:5c:90:ce:47:9c:0b:08:df:40:e6:bd:bd:
f8:34:44:3c:dc:bc:02:6c:ae:d4:28:0c:53:8c:0d:50:d4:71:
ae:c5:81:da:f2:97:21:5c:45:83:7d:7a:36:a9:b2:16:53:81:
b4:00:b4:99:b6:8f:cc:6d:98:b1:53:7f:74:3a:b5:91:04:19:
7d:c1:44:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 06:29:52 2026 by rpki-client