Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
File: MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft (raw, json)
Hash identifier: 2dz/6KxN+gUK8VWu/E3hC8l11DyhDlRuHd5VRcQIq5U=
Subject key identifier: BA:CC:23:13:53:AB:5B:36:D1:BA:FE:E7:5F:8C:B9:5C:F6:D8:87:E5
Authority key identifier: 33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
Certificate issuer: /CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Certificate serial: 019D2A7285EF42521D4BDC669925C16ABA18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
Manifest number: 011B
Signing time: Thu 26 Mar 2026 14:00:41 +0000
Manifest this update: Thu 26 Mar 2026 14:00:41 +0000
Manifest next update: Fri 27 Mar 2026 14:00:41 +0000
Files and hashes: 1: KK2v8jbRzNSix0weCfB4skmPx1c.roa (hash: IiO9IAaVWkqsheg2TwTcJmbBFyNTvk8JujR9HRPRERw=)
2: MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl (hash: FJIId6iW+/0wOf7bu7mgT6J/4Cn1wwmZI8C0u6vt2MI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:85:ef:42:52:1d:4b:dc:66:99:25:c1:6a:ba:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Validity
Not Before: Mar 26 14:00:41 2026 GMT
Not After : Mar 27 14:00:41 2026 GMT
Subject: CN=bacc231353ab5b36d1bafee75f8cb95cf6d887e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bf:cc:98:04:84:5f:53:ab:e3:e7:99:0b:90:
ec:03:33:fa:e1:32:ba:88:51:dc:56:5b:1c:c7:25:
e8:f2:c6:4c:94:bc:da:f7:5d:1b:08:f2:e4:a3:d9:
f8:5e:fc:78:d2:45:93:e2:fa:2a:e8:7d:8b:6e:67:
a2:54:2c:bf:e8:a7:44:0b:46:01:9a:ec:8d:4a:e3:
ae:aa:24:6b:c9:cf:52:5f:7b:c7:11:9d:22:78:c0:
1b:d0:55:47:90:d3:8f:23:f9:83:1b:43:94:4f:a9:
57:26:8b:89:77:9c:e8:82:e7:b3:a2:a4:be:da:61:
2e:96:4f:ef:65:56:c8:92:d3:a3:96:f5:93:2b:6e:
6e:d7:cf:47:59:ca:c1:46:05:41:83:ec:5e:84:21:
e4:98:e1:05:ce:81:af:b9:89:1e:76:92:c8:a2:8d:
5f:a3:a8:a5:0d:e8:d0:cd:54:f6:45:24:79:56:d1:
27:98:b2:63:19:2c:d6:91:77:5e:08:81:1f:78:c2:
11:85:99:24:3f:26:40:55:67:5c:21:de:76:7d:f1:
0f:5c:60:e5:82:b2:d1:56:15:c2:12:3f:40:a7:d2:
a9:8f:31:10:66:7b:e0:38:cb:5f:ab:74:94:2b:78:
f3:ff:23:7f:08:36:44:bc:5d:cb:2f:b8:50:14:56:
18:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CC:23:13:53:AB:5B:36:D1:BA:FE:E7:5F:8C:B9:5C:F6:D8:87:E5
X509v3 Authority Key Identifier:
keyid:33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:c4:d4:87:0f:ab:e0:33:7f:53:ba:11:44:96:8d:19:2b:48:
a1:e3:2f:7a:54:05:8a:54:7c:e0:9f:8b:9d:19:e8:3d:69:f9:
75:bb:19:4d:9e:f3:4c:34:49:e4:61:5e:ff:48:13:8a:67:41:
1e:78:43:23:16:2d:72:4d:4c:61:3f:bc:b0:fd:25:c8:5a:2b:
d1:37:53:63:88:b2:c7:7c:a6:41:95:87:90:62:4e:79:af:f1:
86:82:c8:c1:47:e6:a8:7f:3e:41:36:c6:6c:6e:94:45:0e:b9:
8b:c4:f9:34:01:9f:7f:d6:65:48:3c:8d:40:07:34:0d:ba:a2:
91:64:b8:a8:e3:31:17:08:13:c4:09:8d:14:41:f1:e0:b4:19:
85:17:30:4d:1d:b2:bb:a9:d5:c0:5e:f4:ea:07:c0:75:97:77:
27:33:af:3d:af:9c:6f:fc:da:1a:ed:23:ed:e7:d7:9c:02:56:
a0:30:c5:68:e6:53:71:f4:a6:23:6c:c9:ea:30:d7:99:b9:fe:
8a:d5:4c:7b:ec:32:40:bb:8c:c7:2a:d0:91:53:0c:9a:5f:df:
54:22:8f:5e:af:2b:61:48:5a:19:05:11:1d:56:21:80:5e:8b:
0e:36:d8:ed:e0:4b:a5:40:42:df:45:ad:d2:5b:b5:00:b8:5e:
74:49:82:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:01:49 2026 by rpki-client