Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
File: MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft (raw, json)
Hash identifier: zF0rHMZrdoYe5viXDAMhCe0jYcyAweWg69u7J6/l7r0=
Subject key identifier: FD:12:28:13:67:8A:96:97:EC:9E:F6:9C:9C:51:B6:50:D3:8F:24:59
Authority key identifier: 33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
Certificate issuer: /CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Certificate serial: 019CACEB9325642CE76B508A28B8ACD7EC0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
Manifest number: DA
Signing time: Mon 02 Mar 2026 05:00:45 +0000
Manifest this update: Mon 02 Mar 2026 05:00:45 +0000
Manifest next update: Tue 03 Mar 2026 05:00:45 +0000
Files and hashes: 1: KK2v8jbRzNSix0weCfB4skmPx1c.roa (hash: IiO9IAaVWkqsheg2TwTcJmbBFyNTvk8JujR9HRPRERw=)
2: MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl (hash: Ybn30Vna0g+OUlgcvortT7evC3gcY3MPEXxmNXgc5bs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:93:25:64:2c:e7:6b:50:8a:28:b8:ac:d7:ec:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Validity
Not Before: Mar 2 05:00:45 2026 GMT
Not After : Mar 3 05:00:45 2026 GMT
Subject: CN=fd122813678a9697ec9ef69c9c51b650d38f2459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6d:bf:6a:53:fa:3d:a5:0e:f7:a9:a6:03:65:
4a:59:8e:f6:ac:0d:d7:94:e6:47:26:46:19:3d:19:
ad:e9:d3:24:b5:0a:e2:de:f7:0a:b2:c1:6b:46:6e:
78:fe:86:9c:9e:d9:68:83:43:95:70:34:61:b4:a5:
14:2a:34:39:4b:ac:8d:8e:fb:a6:5c:6d:e0:b5:35:
1b:ce:1f:1d:8d:d0:e6:e2:cd:46:1f:a9:2e:e0:84:
5f:92:c4:32:0d:7d:ab:8d:29:a6:2b:8d:d5:b0:f6:
d2:0c:a5:b7:d1:4d:5b:cc:e0:e0:19:d0:70:28:5a:
81:08:c1:a6:17:39:ab:90:56:1d:e3:25:d9:3a:d9:
2c:58:4b:21:db:e3:7e:4d:49:75:9e:c9:14:40:26:
ab:7e:6b:dc:0a:c6:17:9d:92:f2:f3:e1:e5:c7:47:
b8:2c:5a:75:6c:9c:6d:17:be:16:85:8b:96:fd:3b:
98:d7:f7:38:6b:4d:dd:29:68:d2:ab:47:b1:ae:c3:
b2:9f:4f:f8:5f:d7:cf:c9:3a:bd:d7:b3:1f:95:c5:
08:ef:b7:ae:49:84:48:c9:60:94:7e:0a:31:af:b0:
87:0b:eb:77:97:ea:02:ef:b5:43:ec:2e:b5:18:a5:
38:d9:26:2d:49:16:e5:7a:be:f2:11:9d:15:c8:4f:
cb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:12:28:13:67:8A:96:97:EC:9E:F6:9C:9C:51:B6:50:D3:8F:24:59
X509v3 Authority Key Identifier:
keyid:33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:6c:4d:5a:35:b7:59:0e:41:a0:4b:01:b3:22:01:7d:5f:d6:
ce:2e:e1:7a:d1:71:f1:85:ae:22:52:3e:f0:bf:cf:c5:a8:a2:
b4:d8:81:e3:14:f6:7f:32:4f:be:55:6a:09:95:9f:f5:e8:f2:
37:cb:e7:ef:b8:55:c7:74:b0:86:b8:a8:35:9e:6a:39:d6:c4:
de:6d:17:ee:7f:50:62:ba:54:3f:8d:3b:c7:f1:40:9a:8d:cf:
4d:be:25:9b:1d:12:30:88:d7:1e:fe:89:c3:89:d1:e4:d0:fd:
86:3c:eb:1a:40:b1:0f:c0:21:a2:bf:6a:60:23:d2:f0:35:7a:
72:cb:52:2e:e6:ef:6d:3d:46:38:22:50:75:ac:53:db:86:56:
ce:3b:c8:ca:45:1d:ac:ab:1b:c0:be:af:11:be:e2:50:66:f8:
91:e8:45:4e:59:de:24:84:1e:70:e0:c2:43:45:a9:08:90:83:
57:a3:e7:2b:db:e7:cb:d3:5a:46:f8:47:a4:6c:02:e6:83:1e:
ac:66:5f:73:d1:22:b4:c1:f5:7f:55:1c:23:42:9e:0f:b4:9e:
77:e3:f1:bd:b8:71:7d:e1:20:c2:56:aa:99:9f:d7:be:dd:df:
6e:e7:67:72:5d:c2:e6:14:e8:3f:14:52:ec:17:73:14:0b:11:
b9:d0:56:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:37:05 2026 by rpki-client