Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
File: MzOeZKWFFMmwkemy5o4pNx5D498.mft (raw, json)
Hash identifier: 4KG5wPzhsHkke/R59vBu97HwEe6TN45w0tlAT2itYGk=
Subject key identifier: DD:0C:1A:68:77:D6:E7:03:BA:37:7F:CA:79:D5:2F:D3:C0:31:58:1C
Authority key identifier: 33:33:9E:64:A5:85:14:C9:B0:91:E9:B2:E6:8E:29:37:1E:43:E3:DF
Certificate issuer: /CN=33339e64a58514c9b091e9b2e68e29371e43e3df
Certificate serial: 019E1FEC501AC875A1E4DBB823BED3AE24B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
Manifest number: 0D51
Signing time: Wed 13 May 2026 06:00:41 +0000
Manifest this update: Wed 13 May 2026 06:00:41 +0000
Manifest next update: Thu 14 May 2026 06:00:41 +0000
Files and hashes: 1: MzOeZKWFFMmwkemy5o4pNx5D498.crl (hash: EC0wNKaWdhWOM5Hm+tnnqoPeLfrGyo3kRbQU96cgWNs=)
2: _buqN6yYSytWYhTqNPA1kKSIBNk.roa (hash: c6bP7C3wNXIAyK047P+noenWK/m8RQLknUBgsv8PDgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:50:1a:c8:75:a1:e4:db:b8:23:be:d3:ae:24:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33339e64a58514c9b091e9b2e68e29371e43e3df
Validity
Not Before: May 13 06:00:41 2026 GMT
Not After : May 14 06:00:41 2026 GMT
Subject: CN=dd0c1a6877d6e703ba377fca79d52fd3c031581c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c4:42:b6:b7:dc:3f:1e:39:18:15:5c:bb:0d:
5c:65:ae:2e:a7:a5:65:4c:5f:23:eb:63:c3:33:57:
2f:18:e8:5b:fd:bc:d5:1e:ab:62:72:5e:5c:ab:f7:
1e:85:62:8d:d5:26:ba:c7:53:01:d4:79:6e:91:ee:
d3:ec:0f:03:58:ce:c5:3b:47:d1:4a:fb:96:9e:81:
e1:6b:43:67:1e:4b:26:c9:66:3e:26:5d:98:ab:47:
1f:9c:66:c4:71:e7:f8:a4:00:bb:c7:da:f4:3d:2f:
a0:15:e1:bc:47:29:be:27:bd:b0:e0:fb:73:c5:77:
05:93:b8:ad:2b:67:8a:4c:67:df:d1:90:8f:09:3d:
86:cc:64:a1:1c:b3:24:24:94:9f:f2:97:cb:99:1f:
70:43:93:b7:ee:a5:6d:b8:32:9b:59:ea:53:cb:77:
c3:ed:38:26:07:83:47:68:c8:58:ee:17:b1:b9:f7:
9d:4d:0a:9a:b5:26:3b:69:0c:4b:76:ff:59:1f:5c:
c3:4e:7c:a1:c3:36:f2:5a:7c:d7:8e:ce:a6:60:b6:
db:c4:3d:4f:a3:7a:77:71:5a:3a:7c:d5:f8:b7:d3:
b9:87:5a:d1:9c:97:63:8c:69:07:70:ca:c8:37:b6:
d7:b1:57:ed:e8:74:49:4d:4b:cb:e5:67:b3:b0:cb:
2a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0C:1A:68:77:D6:E7:03:BA:37:7F:CA:79:D5:2F:D3:C0:31:58:1C
X509v3 Authority Key Identifier:
keyid:33:33:9E:64:A5:85:14:C9:B0:91:E9:B2:E6:8E:29:37:1E:43:E3:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:4b:70:41:ba:dd:68:4f:03:80:39:3f:bd:9f:8f:fe:ff:a0:
93:f9:bf:94:28:6a:ac:b8:13:bb:f7:74:d6:30:77:a7:3f:b7:
32:b8:82:2b:03:57:73:67:e0:e6:f0:42:b1:31:26:4e:38:dd:
01:0f:26:8d:24:e4:f0:d7:00:9e:d8:0f:5e:92:fc:c2:45:ef:
e3:78:8a:41:0a:1a:04:a4:f9:25:9e:17:42:68:c3:ec:7c:bf:
28:a4:c1:88:9e:d2:68:48:71:75:1d:63:20:7c:2d:0b:f5:12:
eb:5e:5d:ea:31:a2:2c:d1:e0:88:35:5b:60:e4:dc:2c:4b:f7:
86:e5:1f:5b:43:31:3a:9a:3f:88:94:19:4c:75:c9:bc:86:5b:
f6:9c:7a:1e:a0:c0:82:13:89:7e:ba:6e:c9:e6:b6:c8:d1:a0:
5e:1d:65:d5:7b:e8:81:8a:57:49:d0:91:f9:c7:fd:c7:1b:2b:
f7:48:d5:aa:cf:84:7c:d7:3a:dd:b4:1a:ad:74:13:51:67:bb:
58:13:f0:6f:93:c4:6d:b6:65:df:83:27:76:e7:32:e4:93:05:
1c:f7:ff:3c:23:49:05:c4:74:ee:1d:c1:81:53:83:53:f2:33:
94:ff:fa:9e:28:53:f0:58:b0:5e:17:47:f2:20:ce:41:cd:56:
46:4a:1c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:16:59 2026 by rpki-client