Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: mpxJP/6hrv+nhq82jx0aLJBbTIMiNOoSd0q8YMHNWeQ=
Subject key identifier: 4C:75:79:EB:5B:97:07:04:ED:EC:39:49:A4:64:70:0A:77:81:D6:AD
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019CAE3595995AB634507ECA61845F6FE217
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 0871
Signing time: Mon 02 Mar 2026 11:01:13 +0000
Manifest this update: Mon 02 Mar 2026 11:01:13 +0000
Manifest next update: Tue 03 Mar 2026 11:01:13 +0000
Files and hashes: 1: QHXSRTuQ2wXN4fBaqbTGI2do0QM.roa (hash: 6/Lj3vL/L1J4PjbZ1lCMZ4grKgrWI3SnlcnhAkor32k=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: vC6+KrJZKXjYnRJ3tg0nXXT7v4Kt7SrkNNC8is0dJ9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:95:99:5a:b6:34:50:7e:ca:61:84:5f:6f:e2:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Mar 2 11:01:13 2026 GMT
Not After : Mar 3 11:01:13 2026 GMT
Subject: CN=4c7579eb5b970704edec3949a464700a7781d6ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1b:53:c5:2d:1c:56:ca:0c:a8:d5:1a:ff:8c:
f8:57:e1:ce:9a:c8:68:f2:a1:96:aa:6c:ad:08:61:
a4:fb:34:55:64:1e:40:05:eb:43:82:c7:16:9a:eb:
bd:e6:87:ec:bb:40:38:f9:77:55:86:27:18:57:d7:
26:c8:71:b3:cc:a3:78:69:99:f3:4e:14:b6:16:09:
f8:10:d4:b4:4b:e2:14:9b:f8:1f:0f:42:7b:29:ad:
83:76:98:52:b0:25:24:18:1f:b0:8c:4c:2d:4b:62:
e2:be:9b:1d:e6:d0:e0:58:bd:ec:65:f2:21:ab:5d:
46:bb:8a:61:e3:6f:6f:e6:67:73:a1:23:e7:48:68:
4f:67:42:45:46:9b:b3:fc:cf:14:96:55:c1:97:cc:
2b:55:14:1c:87:2d:b0:02:39:20:fa:52:b9:d7:af:
57:58:22:c6:fc:29:b8:be:bc:d1:e6:a3:5d:07:1c:
b2:98:a0:05:38:03:43:8b:e4:f1:23:81:03:44:ff:
3f:fd:ee:83:08:a5:10:58:69:c6:f0:da:97:5f:b6:
9a:10:a5:fb:70:d0:27:7b:c9:91:12:1b:c5:61:92:
c5:eb:ee:6d:28:eb:45:90:83:70:ed:ff:15:02:c0:
0b:76:a2:56:2f:fc:71:7f:f6:7a:d2:bb:7f:55:cf:
7f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:75:79:EB:5B:97:07:04:ED:EC:39:49:A4:64:70:0A:77:81:D6:AD
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:cb:5a:a1:74:57:e0:f8:a8:bb:dc:59:26:c4:db:92:b6:e3:
99:1a:fb:3f:e4:40:e1:53:e5:99:75:55:d4:db:f5:bf:9f:9a:
8e:5e:22:40:6d:2e:95:32:b8:6b:1e:85:da:31:78:1f:2f:42:
08:46:0a:79:d5:6b:8f:f2:54:9f:a7:e8:6a:fe:de:e4:62:51:
f3:38:d5:0b:11:c0:66:ba:83:bd:bc:2c:7e:11:9b:fe:dd:5e:
f8:91:0a:5e:2e:f2:03:99:7e:7f:46:49:0d:10:28:25:67:7d:
d9:a1:27:6e:6e:28:dc:c1:7b:25:68:55:79:6c:70:ca:f0:04:
35:a8:07:84:31:53:a0:0d:4d:2b:07:84:2b:dc:55:2d:9d:1f:
73:b1:66:6e:2b:4b:8d:ef:d2:b9:98:b5:f0:c5:0a:fa:65:d0:
e7:76:07:42:24:cf:b5:a6:dc:93:fa:ee:33:f7:48:88:7b:1e:
29:78:8f:88:db:cc:36:d0:d4:2e:08:f6:73:c4:c0:8f:ae:bd:
97:f7:fa:3c:2c:a3:be:65:61:fb:72:4f:f8:0b:0e:ae:e6:c0:
ff:6f:3a:15:8d:b1:55:63:c3:9a:1b:63:f8:07:e6:ae:c5:a2:
a7:51:3c:75:7e:0c:37:88:57:99:7d:fc:12:a0:83:32:1c:19:
ea:6b:c7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:57:07 2026 by rpki-client