Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: Xjdu67R3GUDaVPtzlhXb0N+D8mz6seyvsQn/r7u0dcs=
Subject key identifier: 85:81:87:90:AD:5F:C2:48:60:C7:06:90:29:BA:68:74:41:38:53:2D
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 019E1D5939D9BB8D0FCE835C5FDC42B1E111
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 0523
Signing time: Tue 12 May 2026 18:00:47 +0000
Manifest this update: Tue 12 May 2026 18:00:47 +0000
Manifest next update: Wed 13 May 2026 18:00:47 +0000
Files and hashes: 1: 1-_85ETz5jkHerkVT2dRSmXtqgNo.roa (hash: NQXJJj/OBTH49mc/x3onWdcUiAdq+Dhq5KpAVGXEyBc=)
2: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: npZBDDrg7egTuUucCb8CBem9nTw99eYuaKoEDtI2zt8=)
3: TTHbsr6S4A2WiT-5UCVCIBGXt7g.roa (hash: tSI1qiCrhqG5RTuDVwd5YnhpKn7WMz1SwKPqjeiWtZ0=)
4: qzOhEMjt0ER_QeMmWb_aSnbGqDs.roa (hash: ct6/7wueiN1cFlvuwHbO2g9uKG/7TkLJNxOWY9ajqoc=)
5: xR7LKB9cMx20WjaSYnBDWdIRF-g.roa (hash: vumkR84YsHI2dcyHQIVTL0w8JKyaUvc5rnjqJHi4+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:39:d9:bb:8d:0f:ce:83:5c:5f:dc:42:b1:e1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: May 12 18:00:47 2026 GMT
Not After : May 13 18:00:47 2026 GMT
Subject: CN=85818790ad5fc24860c7069029ba68744138532d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cf:f6:d9:ca:b8:69:44:e2:94:d0:a7:f5:60:
a4:bd:ae:cf:8d:e0:03:05:16:f6:66:dc:f1:0b:00:
ad:fb:1a:cd:92:42:27:b7:1e:d7:6d:48:96:ca:02:
28:9c:2c:d0:c9:17:fd:dd:7e:04:02:88:78:78:59:
d5:06:9f:65:98:d5:f4:2a:da:ce:2c:b0:d9:d4:a8:
79:02:09:0a:95:89:b1:72:49:43:39:5b:a0:1f:2f:
c2:f2:fa:4a:c5:70:72:a0:e7:19:9b:fe:7d:33:c8:
07:b5:ad:3a:46:ba:d2:31:21:0f:0f:34:09:03:a2:
8c:8d:f4:a0:44:66:09:c3:82:af:b0:8e:32:49:97:
b2:6f:a1:74:c0:e2:ee:6b:d9:eb:ce:c5:43:b8:d5:
84:a9:24:f7:c1:63:d9:ce:0d:e7:03:64:c4:ac:7f:
d3:a2:96:e6:dc:6d:b4:a9:31:38:c5:74:ab:d1:6c:
1d:55:a0:67:64:47:f0:66:50:52:c9:05:0c:44:9c:
77:29:d1:c6:57:20:a2:36:b0:15:73:78:f2:25:ee:
02:c7:73:f5:5d:18:6a:f8:d0:af:2c:33:48:89:00:
ad:2b:c8:36:2c:5f:7b:8f:8c:ae:2b:ea:5a:19:74:
15:6d:23:6c:b2:97:b7:26:7d:dc:be:e6:10:fc:f3:
f0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:81:87:90:AD:5F:C2:48:60:C7:06:90:29:BA:68:74:41:38:53:2D
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:33:58:89:31:c4:93:36:25:d6:0a:b8:c4:c2:92:25:73:e3:
ab:5b:1a:67:cb:17:2b:0c:e2:e6:d1:fe:55:88:38:4e:b7:49:
5c:85:86:bb:d1:31:ae:86:d4:81:8e:ef:70:5f:c5:87:39:2c:
e5:a0:7f:11:b3:3e:5a:fa:69:24:25:76:74:ba:71:78:84:b1:
2c:b6:d9:a7:69:bb:1e:a8:20:71:cd:d3:57:31:a2:67:7a:84:
bc:b1:f0:55:9b:83:ea:0a:f3:9d:bb:3a:d4:ff:a8:c5:9c:07:
0f:ca:a2:17:a4:89:95:ef:b9:f9:59:24:73:02:08:59:6e:b6:
ca:75:57:cb:3a:06:a3:4e:af:3c:3c:c9:50:8e:31:ec:ee:23:
0a:b5:66:df:96:5b:ae:2f:67:ca:a0:e8:0a:06:b6:63:a2:87:
61:b8:e5:de:b9:3d:e7:6b:18:95:e2:63:99:17:cf:08:ab:88:
41:6d:a3:9b:80:56:18:1b:56:c8:51:a8:4e:9b:bc:2c:f3:7e:
41:89:cb:9e:6c:13:bb:67:2b:f4:bf:25:23:f7:3f:0d:79:cf:
6d:36:ff:bf:89:c8:a7:9f:2f:e7:ea:13:d3:b8:cf:8c:30:17:
67:47:ac:9c:7f:b1:0d:80:20:c8:6d:a4:4b:0c:3a:e2:62:bd:
45:76:3d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:00:14 2026 by rpki-client