Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: If9X4hehxk7e8rzAVkh6PjGuh/9M+iJtcGB+LIuuqHo=
Subject key identifier: A6:4E:7F:42:2B:09:77:6D:95:64:9D:78:FF:6F:F3:42:D4:64:AD:5E
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 019D292914AA93BA073B6A48DBE40DB38FAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 1819
Signing time: Thu 26 Mar 2026 08:00:51 +0000
Manifest this update: Thu 26 Mar 2026 08:00:51 +0000
Manifest next update: Fri 27 Mar 2026 08:00:51 +0000
Files and hashes: 1: 84a_5dunO5tT13Gn8_j3cCElA5U.roa (hash: myvurQJ8o/9M7JEPK/Rdbm3h4MrG2xioG91InHNEhRU=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: kWdFI/4rTYn9s9eY7nAbxF50zdXxrVwrtlXK+0fxOhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:14:aa:93:ba:07:3b:6a:48:db:e4:0d:b3:8f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Mar 26 08:00:51 2026 GMT
Not After : Mar 27 08:00:51 2026 GMT
Subject: CN=a64e7f422b09776d95649d78ff6ff342d464ad5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2c:3d:36:9b:3d:90:c0:c9:ac:d8:03:d9:3f:
f7:b9:0f:97:84:35:9e:f8:4e:54:92:f8:7f:c6:6d:
fe:92:fa:df:90:c3:56:84:c6:9c:81:2d:33:e1:7d:
e2:2e:9e:2e:55:3a:2e:ca:c9:0b:55:42:eb:cd:f9:
56:f3:5c:13:75:05:69:6e:45:22:49:fc:58:c7:d8:
61:23:32:13:f6:cf:2e:bc:39:15:19:bc:39:69:54:
d1:80:5d:3a:d9:47:f4:f7:c7:ea:d3:b2:5a:61:80:
b2:b4:4d:5d:07:72:63:c5:1d:05:73:e0:79:65:aa:
4f:79:d7:94:78:f7:47:93:b1:ab:e4:8d:df:34:f2:
93:d5:c2:d5:4a:8e:1b:90:0e:f1:0c:48:3b:38:e0:
fe:f0:da:8c:26:da:ee:99:3a:af:17:56:cf:7e:de:
7c:f1:13:33:ff:d0:41:4f:5e:2d:2d:c6:4c:15:27:
d7:9c:22:d2:bd:fb:3e:b5:1e:06:94:97:7c:8b:13:
58:f3:3a:2b:04:aa:fe:1e:86:b7:7d:61:f2:b6:ca:
2e:99:c1:e5:cc:07:ad:9d:46:1c:cb:48:63:8c:18:
8b:39:72:8b:15:3e:43:0d:cd:ea:b6:f4:86:9f:2f:
dc:e9:f4:d4:b7:2b:2a:0a:c1:0c:3a:29:c8:cf:82:
6b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4E:7F:42:2B:09:77:6D:95:64:9D:78:FF:6F:F3:42:D4:64:AD:5E
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:15:7a:97:cc:dd:cb:17:3d:e7:dc:70:1c:16:a6:0c:1e:d7:
77:a8:c2:9d:d6:7a:7c:18:a2:e3:ca:7e:bf:67:d4:4f:8c:f5:
45:95:92:3e:f1:48:d5:8f:d4:e4:24:ea:79:ce:73:c7:07:16:
f6:94:2b:1d:98:4f:d9:06:31:e7:91:f4:39:33:a1:5d:1c:cd:
fc:c0:7e:5c:13:09:e7:35:5f:9f:6d:2a:a7:3c:4a:61:fd:a2:
08:76:4c:23:83:b4:15:c2:aa:e3:aa:4a:8e:bd:3b:5a:99:9c:
9a:74:42:91:b9:57:54:52:1c:08:86:b8:90:26:c1:6e:e3:db:
1f:7b:f1:3b:0b:9c:6c:75:f6:22:dc:ec:8d:a9:e2:be:5d:82:
f2:ed:1a:80:7a:2e:04:9e:66:eb:0d:fa:1d:51:6d:ad:29:fe:
96:2b:88:21:49:38:73:ee:69:bf:c8:79:e8:33:92:0a:dd:81:
69:50:a8:a5:e5:8f:b2:5c:d1:0c:02:b1:8c:97:1f:c4:5d:4f:
84:d3:60:be:fd:f3:7c:ca:1d:28:9b:63:ca:8a:10:2c:ec:c4:
b7:a9:d9:1a:2a:f8:07:46:a6:60:a7:e8:16:d6:15:ff:38:23:
de:1d:13:7a:1b:ba:d8:8f:47:c3:8a:af:f9:04:84:45:01:70:
d3:da:24:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:56:56 2026 by rpki-client