Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: e9TPhkZ3AyQtA1cEioABcH14cvatrRhXZLVKSExyRZU=
Subject key identifier: 1C:D1:1F:42:4D:D6:24:08:63:E3:F0:E7:78:2A:23:5E:7A:97:D6:F1
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 019E1E6C9192AAC1E9F48CC2D51B47123C8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 1898
Signing time: Tue 12 May 2026 23:01:32 +0000
Manifest this update: Tue 12 May 2026 23:01:32 +0000
Manifest next update: Wed 13 May 2026 23:01:32 +0000
Files and hashes: 1: 84a_5dunO5tT13Gn8_j3cCElA5U.roa (hash: myvurQJ8o/9M7JEPK/Rdbm3h4MrG2xioG91InHNEhRU=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: 91Zi+KKtK9CGrdpXz4Ab4RcAmn3LP7bmklT4yjzPgrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:91:92:aa:c1:e9:f4:8c:c2:d5:1b:47:12:3c:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: May 12 23:01:32 2026 GMT
Not After : May 13 23:01:32 2026 GMT
Subject: CN=1cd11f424dd6240863e3f0e7782a235e7a97d6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:63:26:22:12:25:86:1a:02:21:4c:19:56:91:
27:ad:53:7a:d2:fe:ff:51:69:e0:d5:90:bd:dd:fc:
d9:d0:66:e4:cb:8a:b1:fb:1b:f8:82:7a:87:51:94:
9c:0c:8f:63:de:03:48:74:5b:17:6f:e8:41:7d:f2:
7b:c9:f3:ee:fe:ab:56:58:6e:66:93:e3:e3:ac:28:
7c:da:0f:76:83:3c:6f:93:7e:55:b8:2b:4b:fd:31:
1e:71:1b:87:1c:fe:31:68:ff:c3:70:b2:79:5d:1a:
5a:89:fd:a0:3e:73:cf:96:3b:dd:e3:c4:df:cb:5c:
77:d7:70:d5:33:6f:ba:4f:b5:fd:54:e1:66:9b:f5:
44:0c:0a:28:2c:41:8f:b5:df:46:6d:78:5e:08:92:
13:91:24:57:70:a0:64:d7:e6:29:51:dc:c5:77:59:
cf:06:c1:c2:f1:46:23:23:e8:60:6d:bb:12:6b:fe:
d5:fc:ff:6b:08:02:14:b0:d0:f0:9f:0f:dc:bb:e5:
06:59:7b:ce:e6:ee:4b:30:11:03:0e:6a:f6:15:00:
ac:78:67:07:69:11:33:5b:ad:b9:37:2b:b9:86:3e:
0d:a0:51:e1:a9:f5:6e:7a:4a:72:3d:f2:99:34:46:
3a:33:71:01:85:f9:48:3b:e2:87:13:a5:b2:c2:3f:
1e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D1:1F:42:4D:D6:24:08:63:E3:F0:E7:78:2A:23:5E:7A:97:D6:F1
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:2a:f7:c4:93:22:e1:7d:0b:b1:65:05:41:94:35:a5:bb:71:
fb:67:f7:06:4b:fb:74:0d:a7:20:2e:fb:ad:c7:63:a3:a5:f8:
51:bb:0b:ac:34:b4:e7:c0:ab:00:5e:c5:02:4c:3c:5a:39:16:
4c:3b:8a:ca:1a:28:63:e1:f4:ce:1a:46:e4:d2:ce:71:2b:2e:
df:86:b5:3d:d5:ed:6c:d3:7f:f2:f0:ce:97:b3:bd:20:fe:58:
fe:64:aa:25:97:8b:98:40:3d:2f:07:f1:cb:e9:75:1e:da:32:
a7:cf:69:e8:27:8f:07:c4:67:07:70:21:41:be:f9:77:ca:6d:
91:05:e7:91:5d:85:de:7c:6b:dc:c4:a2:2e:f7:75:5c:c3:00:
54:52:dd:5e:84:c9:b9:e1:63:d9:04:9e:ae:85:69:69:83:cf:
76:d3:d0:c4:f2:84:4f:98:ab:02:18:96:1c:73:43:98:35:98:
22:35:92:4e:99:cd:22:dc:f1:6e:8b:27:4e:48:cc:58:9a:4d:
04:0b:22:69:98:60:c9:b4:b9:ed:f5:ba:ec:59:f1:36:6c:18:
84:9a:e5:c5:79:9e:0f:26:8e:df:81:05:f1:07:b6:01:c0:7c:
e7:d1:28:59:69:9b:9c:75:4a:de:31:1a:0f:95:39:a2:75:2c:
be:65:64:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:13:38 2026 by rpki-client