Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: q55v5SB+i/J1ne6BkHmaXFXn1zX+d3h7Staj9ikPxdU=
Subject key identifier: A6:98:CD:7D:3A:5A:55:43:F4:4E:0A:FD:CF:26:E7:C6:D5:9D:0B:F9
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 019D27042D3D8F52BCCED96506AA0CA0EFD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 04A2
Signing time: Wed 25 Mar 2026 22:01:18 +0000
Manifest this update: Wed 25 Mar 2026 22:01:18 +0000
Manifest next update: Thu 26 Mar 2026 22:01:18 +0000
Files and hashes: 1: 1-_85ETz5jkHerkVT2dRSmXtqgNo.roa (hash: NQXJJj/OBTH49mc/x3onWdcUiAdq+Dhq5KpAVGXEyBc=)
2: CqxV1eA1GBG3a2D5f_pPgzG42eU.roa (hash: e3jb5BkEW8pwm4wMD1gq76Tk/yf9hJs9RYXqndmqFv8=)
3: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: B0bHdgRlxi0wS1Pt2l69KV04M7XaPSAjIrlSAgeWddE=)
4: TTHbsr6S4A2WiT-5UCVCIBGXt7g.roa (hash: tSI1qiCrhqG5RTuDVwd5YnhpKn7WMz1SwKPqjeiWtZ0=)
5: a0eUHcdaR9ti-evhbAEFGBrL0Io.roa (hash: UamqmfD2F3jnX1W9WoKvN8IFkSGGaFQkzJskamkX+iU=)
6: xR7LKB9cMx20WjaSYnBDWdIRF-g.roa (hash: vumkR84YsHI2dcyHQIVTL0w8JKyaUvc5rnjqJHi4+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:2d:3d:8f:52:bc:ce:d9:65:06:aa:0c:a0:ef:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: Mar 25 22:01:18 2026 GMT
Not After : Mar 26 22:01:18 2026 GMT
Subject: CN=a698cd7d3a5a5543f44e0afdcf26e7c6d59d0bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:0e:88:f1:d3:ee:46:5e:58:40:f9:0e:27:
7c:9a:d1:31:3c:27:0d:34:76:b0:7b:86:f5:31:97:
b2:64:44:48:d3:62:be:ee:e1:34:d0:46:eb:6f:fe:
84:5f:12:9b:9b:cf:8f:93:7c:a5:d4:65:0f:33:a7:
86:75:99:0a:9c:31:69:53:9d:bf:e2:cf:2c:41:5b:
96:d8:cb:32:98:ea:4f:f6:38:c1:37:fb:3e:08:89:
cc:b8:6b:cc:23:72:60:69:2e:48:75:ae:52:48:b6:
30:7e:8c:ad:c9:77:40:d6:57:54:ef:37:8f:2b:17:
64:0d:ec:bf:40:74:c4:80:42:73:de:09:ab:b4:51:
87:99:d4:fb:00:e8:59:41:60:84:b8:c9:06:56:11:
1e:7a:e9:49:0e:b9:0c:e3:7a:a5:68:8e:9f:76:ee:
a8:dc:19:ad:eb:8d:0a:71:5b:40:e5:f9:87:c6:c4:
e8:40:d2:ef:f1:7d:4f:85:09:64:4b:9c:80:18:57:
10:3f:42:8a:d9:4a:5b:79:0b:f7:4c:2d:eb:b1:14:
15:c5:e4:c8:c2:fb:45:71:aa:b9:e4:8a:8e:59:60:
de:da:10:c7:c9:e5:c1:79:98:b2:f3:1f:78:b4:81:
c5:fe:c0:04:24:ef:6c:46:0f:76:05:a5:8d:73:54:
80:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:98:CD:7D:3A:5A:55:43:F4:4E:0A:FD:CF:26:E7:C6:D5:9D:0B:F9
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:2c:4d:56:ad:f2:12:6a:5d:36:13:f3:45:7a:cc:74:33:58:
6e:c1:c5:00:f8:2c:4b:6f:2f:63:20:1b:7d:2c:1b:be:72:4a:
63:86:5b:1e:ec:fa:95:74:57:76:0e:3e:e3:4f:01:0d:cb:85:
58:7c:2d:e3:35:4f:46:78:a1:ef:75:70:80:a5:ed:67:7f:a5:
e8:dc:fa:ba:5c:44:02:49:70:c0:bc:eb:80:67:53:76:3d:f9:
7e:0c:70:96:82:1d:a7:b7:33:75:2a:50:68:d6:55:d0:4b:50:
56:75:2e:e5:b9:13:5e:e9:2d:7b:1f:ba:83:8a:70:a2:57:20:
9b:29:94:64:46:bf:db:0b:78:6a:5f:a7:20:b5:31:76:5b:2f:
6f:89:32:03:ff:48:58:cc:46:09:ea:f0:6b:d1:16:bf:e7:fa:
d2:f7:cc:f6:75:2f:30:3f:c8:be:d3:46:8a:db:03:81:09:50:
af:78:48:45:f9:39:e6:2b:3a:bd:75:8c:c9:26:27:4e:22:d8:
27:a0:53:03:38:7b:56:d3:4b:81:22:f9:f1:f5:58:cf:64:f3:
0a:72:73:03:dd:b4:9d:5b:20:a3:3c:8a:81:57:7e:f4:af:08:
b7:fd:9f:07:72:d3:ad:0b:b1:94:fe:0e:1c:a2:81:9c:90:2d:
2a:c4:ad:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:52:21 2026 by rpki-client