Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
File: mzYg1nmOfrGGY5xFSKBpavbjBYk.mft (raw, json)
Hash identifier: 5j7oHJz3g373Snj6d4gK5LjEH2kd6wNzkJOS9xwcj/o=
Subject key identifier: 10:67:17:71:2F:B0:30:65:56:1B:FF:40:47:76:25:39:94:85:2A:E7
Authority key identifier: 9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89
Certificate issuer: /CN=9b3620d6798e7eb186639c4548a0696af6e30589
Certificate serial: 019D999962922E24D808511680527E4413BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
Manifest number: 0867
Signing time: Fri 17 Apr 2026 04:00:59 +0000
Manifest this update: Fri 17 Apr 2026 04:00:59 +0000
Manifest next update: Sat 18 Apr 2026 04:00:59 +0000
Files and hashes: 1: H2UHdxs--mUhysff_fZAcgdRx8M.roa (hash: +4m/DoxWlWwqGWh1EfHl8rJsWNMtyllJ1qewG1BywTo=)
2: mzYg1nmOfrGGY5xFSKBpavbjBYk.crl (hash: vS5wUsryp9zO/qHk08nJrM4DZgIOh8pgIYf81dh6uHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:62:92:2e:24:d8:08:51:16:80:52:7e:44:13:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b3620d6798e7eb186639c4548a0696af6e30589
Validity
Not Before: Apr 17 04:00:59 2026 GMT
Not After : Apr 18 04:00:59 2026 GMT
Subject: CN=106717712fb03065561bff404776253994852ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:80:f7:09:56:9f:7b:19:d4:36:bc:51:ff:cc:
4c:78:05:8a:c6:8e:69:27:7f:d3:98:87:e5:04:fa:
ed:e8:01:3e:1d:4f:08:51:23:ee:4b:91:ef:50:04:
90:38:1c:71:77:da:a8:af:2d:47:2e:c5:f5:fa:82:
5b:c1:9f:1d:57:54:29:fd:95:c5:c9:59:af:52:9d:
0e:ce:f6:53:3a:0a:d3:1c:34:14:c1:69:e9:10:62:
f1:50:2c:42:13:1b:7a:f6:24:3c:a2:be:ac:2e:e6:
42:4a:2d:94:44:6f:e5:2e:17:48:6a:b5:49:f2:c6:
b9:2f:04:0a:53:82:42:c0:dd:8c:66:7e:1d:70:f6:
a3:71:a5:7b:2d:6a:4e:df:29:d5:a8:7c:20:1a:0d:
32:6f:95:26:df:0e:df:d6:c6:6c:aa:7d:a1:ba:94:
b2:da:25:65:ae:47:1e:1f:c6:fa:9e:e0:ba:0a:d4:
98:73:13:2e:e8:df:d6:3e:ce:03:25:53:9b:14:83:
54:dc:d2:e7:6e:d6:e3:9a:3e:be:d8:47:0c:26:53:
8a:e1:a7:83:27:86:9e:f9:2c:96:26:47:15:bf:71:
0c:aa:23:15:86:3c:f4:fb:02:b4:71:ac:02:d4:c7:
89:71:5b:09:f9:64:7e:af:ce:16:37:9f:8e:ee:53:
af:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:67:17:71:2F:B0:30:65:56:1B:FF:40:47:76:25:39:94:85:2A:E7
X509v3 Authority Key Identifier:
keyid:9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:cc:73:c3:c4:f0:16:20:bd:64:0c:26:5e:d7:5b:68:73:38:
d8:d2:9d:50:db:0c:7a:97:a7:ab:11:4d:a5:0c:e3:37:43:09:
4c:eb:a6:32:6c:3f:d0:ed:00:df:3b:63:11:e1:9e:50:d2:9b:
f7:66:ac:7e:f2:fa:8d:cd:8b:02:6d:0a:ab:73:6c:e2:40:78:
a8:4e:7f:cb:ee:47:40:5d:78:70:fa:7a:87:88:28:13:36:46:
32:fa:a5:f5:36:9c:61:13:0d:57:ca:21:99:54:0b:28:24:90:
9c:22:88:4c:23:e9:b6:10:1a:0b:0d:66:d2:dd:10:bb:b4:a4:
f0:ca:bd:e0:7b:b3:b5:e2:73:09:4c:26:fb:83:f0:3c:d0:5e:
d0:19:6e:25:1c:f1:39:e8:25:5f:a0:c5:2e:78:9c:3c:ed:50:
4a:5d:3a:5b:a4:6d:3e:2a:48:03:a8:84:ff:9c:31:cc:b5:66:
cd:d6:94:59:cb:d1:2f:78:f6:41:b3:a9:36:a4:a4:be:ee:9a:
f3:e4:6c:25:44:2c:a7:b5:44:24:52:fc:bc:55:7c:00:1c:36:
68:73:e0:2b:71:c9:64:1e:e2:68:f9:e8:cb:29:d6:db:13:bf:
ff:ef:97:7b:f0:d1:1a:9b:dc:7b:72:62:e5:a4:b5:c6:f3:a1:
10:aa:1e:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:50:35 2026 by rpki-client