Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
File: MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft (raw, json)
Hash identifier: xvjGBiXGqw3lnV4iMpjRt51V/BFyf9u9R9x5FX9/J0w=
Subject key identifier: 4D:2A:7E:16:EC:D2:C1:08:1A:F0:AA:8E:3D:3E:0C:F2:53:AA:C8:D6
Authority key identifier: 33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
Certificate issuer: /CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Certificate serial: 019E1FB5EE6FAD03FC635B4169D5FDEB6617
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
Manifest number: 019A
Signing time: Wed 13 May 2026 05:01:17 +0000
Manifest this update: Wed 13 May 2026 05:01:17 +0000
Manifest next update: Thu 14 May 2026 05:01:17 +0000
Files and hashes: 1: KK2v8jbRzNSix0weCfB4skmPx1c.roa (hash: IiO9IAaVWkqsheg2TwTcJmbBFyNTvk8JujR9HRPRERw=)
2: MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl (hash: o8rfDuspMUYItB+ece48/0XO7xjDHkkQxW/zF9+EQ7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:ee:6f:ad:03:fc:63:5b:41:69:d5:fd:eb:66:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Validity
Not Before: May 13 05:01:17 2026 GMT
Not After : May 14 05:01:17 2026 GMT
Subject: CN=4d2a7e16ecd2c1081af0aa8e3d3e0cf253aac8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:78:1d:ce:02:97:2e:97:50:1b:d7:a7:48:ef:
13:54:76:13:26:f8:17:27:ef:9f:ac:b9:70:89:9b:
62:de:d1:44:7d:3b:5e:eb:8f:cc:3c:0d:0c:04:73:
06:c8:91:36:c0:03:9f:bd:b7:3a:ea:36:ce:ef:8d:
d4:8b:85:e5:5e:33:0a:b1:c0:25:99:64:1b:3d:93:
79:9f:c9:d3:ea:2b:5a:51:ee:47:48:a6:86:9d:0a:
a4:14:f8:a9:64:df:e2:10:7e:bf:32:e9:e3:f3:b0:
26:d6:4c:6f:aa:ba:6e:e9:fb:2b:51:e9:f6:d4:e1:
a5:07:5c:a5:76:94:12:f5:13:f1:8e:da:35:ab:bf:
d5:45:18:59:58:df:9b:17:85:3d:29:b1:dc:11:f6:
78:20:0a:ff:2c:d0:bb:50:ba:50:a3:d9:c5:bb:7b:
56:70:be:32:ae:25:4f:fe:fe:fa:e2:d7:16:78:67:
78:e6:e3:90:b6:33:a4:2e:73:71:5f:46:4f:96:96:
9c:ba:7f:cb:42:2b:3c:ed:69:23:4b:af:66:43:73:
2c:00:af:c5:c8:d9:5b:e4:7e:b0:ae:6d:90:42:42:
b1:e9:bb:47:b6:65:41:71:20:bf:75:c1:ab:b5:f1:
77:96:28:34:30:d4:12:58:72:6e:b6:5a:3e:bf:be:
69:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2A:7E:16:EC:D2:C1:08:1A:F0:AA:8E:3D:3E:0C:F2:53:AA:C8:D6
X509v3 Authority Key Identifier:
keyid:33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:fc:ea:9c:80:03:54:0c:61:70:f4:3f:dc:68:f3:3c:b0:87:
4e:f1:d3:8d:c0:5a:47:1c:45:ad:ec:73:ca:12:96:e2:d8:6f:
ec:f7:97:34:83:93:6a:13:25:a9:9e:6b:c7:08:3c:a5:a7:cb:
03:f0:2e:cb:b8:d2:4d:47:e7:4c:2c:21:74:05:1a:b8:1d:b4:
c9:22:6f:44:5f:67:c7:b1:32:fe:c1:94:bf:fc:16:c7:68:df:
41:1e:f8:20:22:1a:a5:dd:3c:e2:0c:2a:1b:13:9e:73:73:81:
b3:94:0d:94:a8:58:c5:53:4c:3f:90:e4:f1:df:aa:8a:bb:25:
a5:e0:f8:00:c3:6b:ee:ad:31:be:ba:7c:21:da:ab:d0:30:18:
0e:85:94:66:40:d1:fb:7d:b1:86:64:14:a8:e3:bf:04:64:e2:
06:42:1c:b9:ee:6f:cd:0b:da:2d:cd:a3:37:e4:4c:78:cf:2d:
22:22:06:fc:41:aa:ac:e7:b8:49:a9:3d:7f:9d:36:91:2b:2d:
bc:af:9a:08:6f:8b:b6:bb:a2:c0:d5:95:14:5e:73:b1:93:87:
f5:bf:c2:be:3d:d2:b9:92:5b:a4:6f:e7:5a:42:66:4c:a8:cc:
e5:e4:af:16:cc:b8:07:25:4e:2b:34:0b:45:48:28:0f:c6:34:
f4:be:fc:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:22:45 2026 by rpki-client