Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json)
Hash identifier: KXRg8ae+pmDcoLDHp6QffjIyRmXbKDHjY8UoErwTqzk=
Subject key identifier: 37:C9:8C:8E:EC:44:BF:B3:08:B7:76:0A:30:9B:4D:2B:9A:DA:EF:AB
Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304
Certificate serial: 019D389BB8EF2CB24E827773A3D22BCB80ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 08:00:22 +0000
Manifest this update: Sun 29 Mar 2026 08:00:22 +0000
Manifest next update: Mon 30 Mar 2026 08:00:22 +0000
Files and hashes: 1: pjZgFrUWO8BOoL-HaPMDCBP4Z3k.roa (hash: DJfWljw06kfL4VTqBzgexrUkOVmGrJBBRKqjdLiN9zA=)
2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: bIDczq5SNVXXMdSIBnskhPvqm9F2ZlO33/b5isv4qtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:b8:ef:2c:b2:4e:82:77:73:a3:d2:2b:cb:80:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304
Validity
Not Before: Mar 29 08:00:22 2026 GMT
Not After : Mar 30 08:00:22 2026 GMT
Subject: CN=37c98c8eec44bfb308b7760a309b4d2b9adaefab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:59:07:b1:2d:8b:93:d9:8f:c6:9a:95:96:25:
58:85:c6:58:07:a3:79:66:c1:f2:5b:d1:ac:92:87:
33:01:5e:86:31:6c:6d:4f:eb:89:5b:27:6f:6f:9e:
e1:68:45:8d:83:a1:a6:d7:16:5d:a2:f3:12:ad:5f:
de:11:de:76:4a:6a:56:f3:31:ea:c8:d6:c1:c5:8e:
e0:a1:11:d6:cd:14:07:bb:14:dc:df:cd:67:7b:4b:
e6:e5:3b:aa:20:85:22:5d:44:a2:b7:f4:66:b7:ca:
0b:30:6d:64:8b:5b:08:f0:4e:34:b0:5d:f0:3d:60:
83:65:43:a2:35:c4:40:73:8b:7a:be:df:da:41:9d:
33:83:74:aa:04:03:34:6c:2c:94:80:3e:ea:36:8c:
68:c4:e4:5b:fd:f5:f1:a7:e6:8d:5c:c4:50:4a:c7:
46:68:a2:fd:c1:4c:89:bb:d6:41:a0:a6:15:52:76:
e1:90:c3:23:e7:1d:34:ec:67:fd:58:0c:22:ae:69:
a8:20:80:ea:b1:e2:0e:06:15:86:a6:67:74:02:ff:
73:7b:a2:a5:ab:68:6f:40:28:33:3d:00:5b:5c:fa:
76:02:bd:5b:9a:f0:8c:1e:4d:b4:75:da:52:17:e5:
38:b3:43:83:02:7c:ea:e6:5d:96:20:00:0e:27:e1:
23:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C9:8C:8E:EC:44:BF:B3:08:B7:76:0A:30:9B:4D:2B:9A:DA:EF:AB
X509v3 Authority Key Identifier:
keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:fd:3e:4c:91:09:59:55:73:c0:8e:b1:8a:57:75:f1:76:33:
02:e0:6f:e7:fb:44:fc:7d:04:2e:29:ef:9a:44:fb:6d:60:fa:
38:c1:8e:de:75:e3:69:35:f5:4e:88:b6:42:ee:92:89:43:99:
70:dd:0c:48:de:79:4f:48:5c:49:ac:e6:36:d9:06:49:db:95:
22:3e:04:06:e6:18:9b:43:30:10:19:98:fd:4f:1e:de:47:8d:
2f:ee:49:f1:bb:66:79:dc:1f:93:bc:cc:36:97:79:ee:55:1b:
0a:52:0a:ef:93:ff:f8:1f:78:a9:96:a9:f6:7d:21:88:77:ce:
5d:1f:69:8e:4b:bd:c0:2a:65:8c:22:3b:f5:03:f8:4f:ce:6a:
09:35:7b:7e:db:67:6b:95:bf:4f:14:85:c4:15:ab:d6:95:2b:
8c:71:f5:9e:ad:73:4b:df:8e:db:ac:22:31:0d:14:c4:ce:f9:
e6:6b:20:72:cd:27:7f:5b:53:ed:9f:d2:c4:18:b0:6b:ec:38:
d1:5d:ef:99:02:54:bd:b0:27:8d:18:29:46:f7:c5:ae:a0:e5:
f0:c8:6d:13:81:5d:63:ef:10:23:f5:c2:03:40:89:3c:bd:35:
ad:9b:37:cb:39:8a:f2:df:a1:8d:c9:ea:61:81:60:ef:a2:07:
46:ee:14:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:52:07 2026 by rpki-client