Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
File: MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft (raw, json)
Hash identifier: 47mg+QCgHv9K7TU6ypvIMPo33yVrkvejy/Rw6LIJGzA=
Subject key identifier: 41:47:82:AA:43:DC:BB:66:73:CA:60:6F:01:02:4B:1F:10:F4:19:34
Authority key identifier: 33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
Certificate issuer: /CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Certificate serial: 019EBFFEED1DB7F2B4AE9E0BCB24138BCA2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
Manifest number: 01ED
Signing time: Sat 13 Jun 2026 08:00:15 +0000
Manifest this update: Sat 13 Jun 2026 08:00:15 +0000
Manifest next update: Sun 14 Jun 2026 08:00:15 +0000
Files and hashes: 1: KK2v8jbRzNSix0weCfB4skmPx1c.roa (hash: IiO9IAaVWkqsheg2TwTcJmbBFyNTvk8JujR9HRPRERw=)
2: MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl (hash: 3yjTIgPRCbV/N8DYKRYpzyWVBvcClbTa1UjekUFbaqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:fe:ed:1d:b7:f2:b4:ae:9e:0b:cb:24:13:8b:ca:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Validity
Not Before: Jun 13 08:00:15 2026 GMT
Not After : Jun 14 08:00:15 2026 GMT
Subject: CN=414782aa43dcbb6673ca606f01024b1f10f41934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fa:23:02:1a:cc:e3:11:1c:1e:c2:28:fd:e1:
19:f1:b7:39:e2:76:98:f4:cb:4e:c5:83:60:ee:67:
4c:a0:7d:13:c1:6f:84:01:a3:c9:b3:bf:5d:5d:45:
3b:0f:e0:bc:1e:2c:e1:58:5f:b7:d7:33:8b:c0:15:
58:95:19:1a:b8:71:c1:a2:48:6b:05:b1:ab:84:10:
7a:a2:8b:dd:0f:7b:2c:e5:fd:c2:cf:56:67:c9:68:
ce:7d:b8:d2:c3:33:aa:b7:71:fa:09:d4:ea:18:f1:
a5:39:c0:93:d8:85:45:47:3b:5d:bb:c0:58:a5:89:
ba:7c:3f:49:ea:4d:85:ff:7b:26:75:fb:ae:36:50:
57:63:78:2d:9b:ba:34:23:ef:3e:03:bb:b3:a4:c8:
c9:a3:a1:1d:57:ed:9c:44:c8:0a:c4:2a:9b:4a:75:
99:7b:96:5d:99:b8:2d:62:29:0d:7a:e6:16:76:4f:
e6:84:ce:61:eb:a6:7f:96:61:d1:e7:6c:96:90:38:
7d:a5:ac:17:0e:75:f9:4d:94:d6:02:84:d7:6d:41:
ab:87:17:10:74:65:42:9b:88:99:30:6e:03:c3:f1:
6a:47:51:4c:76:d7:db:ee:32:d2:f2:19:f4:e1:cc:
01:1f:ba:8a:47:20:d4:15:3f:ae:bb:f9:47:dc:2f:
78:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:47:82:AA:43:DC:BB:66:73:CA:60:6F:01:02:4B:1F:10:F4:19:34
X509v3 Authority Key Identifier:
keyid:33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:e6:da:5c:b1:91:8e:2d:e3:c1:20:c3:f6:3b:d3:c3:58:c5:
7c:4c:90:9c:2c:28:fa:dc:d2:b5:bc:13:9d:a4:3d:81:52:23:
f6:d5:7a:42:b8:a1:dc:4f:99:67:46:9d:de:0f:01:65:62:73:
03:a5:23:39:38:67:56:cd:ab:7f:f4:d2:12:31:74:3a:64:b0:
b5:e4:0d:cf:82:9a:d6:37:3d:e5:c1:db:0d:4c:87:46:50:a8:
fd:c3:ef:a7:6b:5f:80:6e:36:f6:9e:0e:64:0b:d7:17:59:9e:
c3:63:b8:77:30:4f:b8:f0:2b:7c:19:6f:4c:b6:1e:99:c5:5e:
7c:c8:cf:52:a2:e9:0d:fb:83:57:49:f2:8f:a1:d7:0d:a3:ea:
71:40:1b:ce:59:8c:a0:9b:26:80:6a:38:fa:7e:19:b9:05:2d:
38:74:9e:7e:92:0e:3a:31:0f:96:63:0f:9c:28:a2:73:1c:a3:
fb:48:ce:c8:c4:6d:7d:19:f8:dc:27:c6:81:50:d6:d7:2b:9e:
18:75:f4:9c:1a:63:56:d1:cf:9e:d3:88:5d:18:3e:08:c7:9f:
00:0f:57:f7:45:64:5e:e0:7e:44:36:9d:11:ec:80:06:c9:6c:
0f:05:b9:e1:9c:de:b8:bb:16:95:c0:e6:1e:98:55:75:3e:e9:
46:da:2e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:25:33 2026 by rpki-client