Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
File: mzYg1nmOfrGGY5xFSKBpavbjBYk.mft (raw, json)
Hash identifier: adLlCAFDwWHoyT7MHHGIBAfnuoW/GL6clcVj8z5O6Nc=
Subject key identifier: D6:82:3C:46:86:19:67:77:85:31:F0:C1:7C:25:14:FE:B9:7D:3B:48
Authority key identifier: 9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89
Certificate issuer: /CN=9b3620d6798e7eb186639c4548a0696af6e30589
Certificate serial: 019CAC0FC67DD7BA9836BD9A25B319451E6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
Manifest number: 07EC
Signing time: Mon 02 Mar 2026 01:00:40 +0000
Manifest this update: Mon 02 Mar 2026 01:00:40 +0000
Manifest next update: Tue 03 Mar 2026 01:00:40 +0000
Files and hashes: 1: H2UHdxs--mUhysff_fZAcgdRx8M.roa (hash: +4m/DoxWlWwqGWh1EfHl8rJsWNMtyllJ1qewG1BywTo=)
2: mzYg1nmOfrGGY5xFSKBpavbjBYk.crl (hash: 8u/o3cuV0HrCW1n5c8xyoj+79ociojfaFeh3xESz0ts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:c6:7d:d7:ba:98:36:bd:9a:25:b3:19:45:1e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b3620d6798e7eb186639c4548a0696af6e30589
Validity
Not Before: Mar 2 01:00:40 2026 GMT
Not After : Mar 3 01:00:40 2026 GMT
Subject: CN=d6823c46861967778531f0c17c2514feb97d3b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:99:55:ce:26:7d:84:72:88:2e:ad:ab:8b:29:
8b:90:a9:97:36:51:60:54:df:24:7c:d5:3c:a9:a8:
5a:26:88:21:c0:3f:7c:41:ee:ea:da:45:b5:73:2c:
14:6f:c0:cc:1b:b2:48:d8:cd:d8:ff:d5:7e:b8:de:
f3:4f:5b:43:e8:55:03:fb:57:cd:8d:83:64:6e:0c:
a4:dc:92:b5:34:ba:b3:bd:03:5f:ef:35:dd:0f:18:
73:cc:ec:cc:5c:f3:66:ca:6c:7a:b0:a7:b6:37:6d:
b5:64:4c:fd:22:44:13:93:71:78:0c:25:f1:f0:16:
19:a1:73:40:65:6a:f2:ab:a6:0b:e8:90:72:06:72:
ba:6d:67:b0:24:db:95:14:2d:09:60:ff:16:42:e7:
dc:9a:8b:45:cd:09:22:80:b7:40:a3:b5:16:04:c8:
8e:85:d6:4d:db:1f:0d:1f:cc:05:75:b2:94:cb:7e:
46:d9:f5:0f:f2:c0:33:5d:f8:51:36:d2:4e:f6:01:
96:f5:42:01:17:de:91:3d:62:37:65:c1:a5:0e:61:
72:db:56:93:aa:7f:42:ba:19:92:75:8f:89:31:b1:
e5:a3:c4:31:85:3b:ac:23:57:2c:b3:6b:e7:ad:4c:
f5:bf:05:19:54:20:f9:4b:03:a6:d4:4b:aa:55:08:
db:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:82:3C:46:86:19:67:77:85:31:F0:C1:7C:25:14:FE:B9:7D:3B:48
X509v3 Authority Key Identifier:
keyid:9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:4d:13:22:56:82:c7:21:2f:67:20:72:12:af:db:ea:b9:11:
19:8c:7d:aa:1d:00:af:27:2e:57:be:85:4e:42:ee:20:0a:10:
a3:46:ff:23:ce:c5:87:73:44:89:b6:21:84:f7:be:2a:54:b2:
25:8c:ee:76:5d:3c:a6:b4:9c:e7:b8:a6:25:d9:39:38:1a:ce:
af:eb:7f:4b:2e:b3:c8:d0:af:7b:f3:46:24:2a:1b:a8:43:e4:
22:ea:67:bf:aa:13:95:4a:c8:67:73:c3:3e:42:00:b1:50:a8:
8d:13:bf:b8:87:e9:86:1d:be:7a:d6:fc:5b:2d:76:ca:60:95:
5a:57:dc:d3:77:8d:6b:3b:a4:f2:74:b9:54:56:dd:78:cd:e5:
02:d7:cf:06:fb:d2:bc:b3:bf:2d:2c:2a:da:cd:9b:5c:9f:fd:
16:b2:5c:63:18:33:14:25:1f:eb:08:ea:8c:a6:58:9f:64:82:
63:07:32:f3:dd:73:65:30:26:24:40:f7:d9:81:e1:6a:01:1b:
18:76:cc:33:4f:d9:78:07:90:5f:3f:07:0f:9c:06:2a:b5:c1:
32:d7:5b:12:eb:4c:e1:b0:3f:b3:99:14:02:90:30:34:91:4b:
59:9f:7e:76:90:e0:13:42:09:e4:c7:1c:09:1f:cc:ea:5c:c9:
0a:7a:a1:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:15:47 2026 by rpki-client