Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
File: zzKCScw17CfMEOGLiCxsE4l8hJc.mft (raw, json)
Hash identifier: 2kzTNV8TyTIP2fRg1MXwmCTjzqlSYenBNXExkEwSIDc=
Subject key identifier: 28:D9:5B:6D:60:BA:F8:B9:D2:16:7D:7C:B9:59:63:4D:F5:93:4D:EE
Authority key identifier: CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
Certificate issuer: /CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Certificate serial: 019F111C224C252DEF864334AAB3D137FB3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
Manifest number: 111D
Signing time: Mon 29 Jun 2026 02:01:24 +0000
Manifest this update: Mon 29 Jun 2026 02:01:24 +0000
Manifest next update: Tue 30 Jun 2026 02:01:24 +0000
Files and hashes: 1: Gaonav40tTJpKCNRA2Pgw8c6CJI.asa (hash: qQGsDuLfuc8HGPjQosjqKzgl1S/2LQUHdjWbkc+kEYQ=)
2: zzKCScw17CfMEOGLiCxsE4l8hJc.crl (hash: yxmL0Sn4xKtvOUvESvPEwa0HQNMC0J4z7u7l36oK8II=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1c:22:4c:25:2d:ef:86:43:34:aa:b3:d1:37:fb:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf328249cc35ec27cc10e18b882c6c13897c8497
Validity
Not Before: Jun 29 02:01:24 2026 GMT
Not After : Jun 30 02:01:24 2026 GMT
Subject: CN=28d95b6d60baf8b9d2167d7cb959634df5934dee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:27:cb:21:94:ee:e9:57:ca:62:4a:54:50:c5:
91:91:e8:f9:b5:e4:b1:3e:d5:2b:0c:42:0a:e1:50:
f2:2c:45:d9:ad:c2:17:b0:44:ec:66:1f:f4:a7:08:
c3:82:65:a0:b9:a8:c0:37:74:5d:8d:7d:ec:68:cd:
ea:c0:86:ac:05:08:4a:af:c1:46:7e:0e:ba:f0:3d:
38:1c:20:63:4f:e4:2f:2e:2d:9f:76:06:eb:b0:a1:
38:f3:46:6c:6a:df:8b:9e:4d:a4:9b:8a:99:ae:74:
32:09:ad:9c:bf:59:2b:b7:7f:da:19:ad:39:1a:80:
b5:29:60:8e:1a:16:f8:8e:43:f9:50:e3:b8:46:0d:
da:98:fe:32:e2:26:6a:a5:52:b0:d8:f6:b1:7e:51:
11:df:76:8b:96:c1:ef:75:b9:d5:42:30:4a:87:8d:
07:93:fa:68:51:99:c3:f6:72:ed:07:2c:7d:35:c3:
1f:f7:8e:4f:3c:08:e1:2b:11:05:cf:bc:8b:15:91:
e2:27:61:99:d1:44:9c:2e:38:c0:45:a8:41:03:1b:
46:87:91:e4:57:c7:55:58:8a:19:ac:f7:dc:cf:ae:
15:9a:2b:a8:90:f4:b9:28:c7:36:f9:39:e4:2a:a3:
eb:ae:55:ca:68:43:27:12:a1:d4:20:01:56:d6:08:
46:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D9:5B:6D:60:BA:F8:B9:D2:16:7D:7C:B9:59:63:4D:F5:93:4D:EE
X509v3 Authority Key Identifier:
keyid:CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:db:ab:75:34:34:08:b7:66:cc:0e:54:a1:d2:b1:72:75:f3:
80:e2:a1:0f:f4:67:8c:99:04:0e:38:79:74:52:74:37:bf:9a:
8b:73:a6:55:4c:14:18:cc:74:1c:4c:0b:1b:67:18:c0:3e:fc:
43:ac:4e:98:42:09:65:44:8c:77:7c:6b:1e:c9:b4:27:96:68:
8e:44:37:bc:52:54:cf:eb:55:86:f8:61:07:38:ca:10:b4:56:
de:55:a0:4b:b2:2e:b2:9f:cf:fe:cf:a4:74:bc:ec:1b:04:d0:
f7:19:b1:97:24:5d:0c:27:6d:a7:22:c5:95:26:33:14:c2:c1:
30:a1:06:70:27:c8:b8:12:1b:3b:31:e1:6d:66:c7:5a:4d:be:
da:b4:ff:91:f0:ac:98:47:f0:ad:14:81:48:66:09:db:98:d8:
0c:2b:48:cf:6f:1a:b2:e1:8e:5f:39:d9:7d:f1:f1:42:af:b4:
06:f2:b8:99:ad:4f:e8:dd:02:d5:d3:50:66:00:1b:c7:e0:81:
43:d7:6b:a8:59:68:68:1e:ab:e4:f1:fc:62:0c:8c:25:01:16:
ac:b1:37:d7:a7:f0:7a:21:c2:af:55:55:f6:43:1f:a5:39:e3:
5d:4e:7f:34:6b:4e:e7:ac:f0:cc:cc:83:97:b5:dd:31:5a:cf:
d5:4f:e2:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:38:56 2026 by rpki-client