Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
File: MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft (raw, json)
Hash identifier: fvFLf0UQkd47JDNuijOQVJPb4fZo+W9Cgib1IWkGc+s=
Subject key identifier: D1:AC:5B:B5:87:C6:46:56:05:01:4F:5F:04:10:09:91:E1:71:5A:4D
Authority key identifier: 33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
Certificate issuer: /CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Certificate serial: 019D9C6384D507D5409A99B11B6850437896
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
Manifest number: 0156
Signing time: Fri 17 Apr 2026 17:01:00 +0000
Manifest this update: Fri 17 Apr 2026 17:01:00 +0000
Manifest next update: Sat 18 Apr 2026 17:01:00 +0000
Files and hashes: 1: KK2v8jbRzNSix0weCfB4skmPx1c.roa (hash: IiO9IAaVWkqsheg2TwTcJmbBFyNTvk8JujR9HRPRERw=)
2: MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl (hash: Y5ulJ8q7MHqPX+05ayznHGBvArUVlgLmeo1J9gRLRhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:84:d5:07:d5:40:9a:99:b1:1b:68:50:43:78:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33343229de251cc8825a7c44c8fe93e4acdbc115
Validity
Not Before: Apr 17 17:01:00 2026 GMT
Not After : Apr 18 17:01:00 2026 GMT
Subject: CN=d1ac5bb587c6465605014f5f04100991e1715a4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b7:35:0b:79:74:4f:6e:12:fd:80:a2:e4:49:
76:4d:fa:56:5c:89:7a:fe:22:e7:b1:70:67:29:3e:
7f:51:81:b6:af:d9:b1:c9:67:38:15:19:c9:b0:85:
bf:5a:cf:3d:35:8b:ff:15:de:18:28:12:55:65:a7:
b0:0a:9d:1c:b3:b7:ef:d2:af:6c:d6:42:8c:ec:81:
d7:a9:f5:74:d2:86:ad:6f:52:b1:8f:b7:7c:c4:9b:
1b:88:49:9d:30:6b:b8:de:80:81:a5:13:b6:89:15:
e3:bf:fd:43:7a:d8:a9:c1:39:c6:ed:0c:45:5c:c7:
2e:50:de:be:ed:e7:c0:24:bd:de:bf:91:be:56:77:
37:e9:36:8e:75:8d:e7:3e:31:1e:a0:1b:a7:1a:4d:
88:9b:29:5f:64:46:98:06:b9:83:ef:35:c6:d5:63:
3a:29:37:4e:fe:63:7a:2b:d4:e5:fd:8c:3b:15:e7:
9e:da:49:3f:37:39:a0:8a:7a:88:61:5c:8a:83:29:
92:68:97:dd:b2:77:cc:f1:b4:be:5b:08:fd:31:41:
4c:9b:bd:47:d3:86:34:10:63:69:5b:6e:55:49:a1:
4e:47:0d:a1:b3:95:d1:d6:0a:24:1a:b2:29:cc:fc:
ff:cb:c8:14:2d:6f:f0:a8:1b:b3:8d:dd:ef:40:69:
c5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AC:5B:B5:87:C6:46:56:05:01:4F:5F:04:10:09:91:E1:71:5A:4D
X509v3 Authority Key Identifier:
keyid:33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:cb:12:7c:6e:d2:d4:47:fc:95:89:28:c7:95:f0:0f:0e:f4:
88:34:6e:04:11:0f:a4:61:41:eb:4e:d2:91:77:08:c4:39:a5:
1d:87:26:82:cf:9a:b0:4a:16:f0:ef:d4:25:e4:9f:d4:e5:e1:
06:5a:2b:65:cf:46:32:17:a7:58:8a:55:ae:55:24:a5:ba:e6:
54:7d:22:47:98:1d:8b:b5:e7:ed:58:c1:98:50:f4:19:e0:6b:
c6:ea:2f:67:bf:b9:9c:b4:15:5b:2d:8f:e0:9e:2d:0b:e2:80:
27:c4:72:36:c1:27:a7:c7:60:8f:ec:0b:af:6d:2f:c7:a9:25:
45:e8:3e:24:ec:e4:3f:07:a9:46:ed:27:cc:4d:c2:0f:35:af:
5b:78:a9:2b:0d:cd:06:ab:b1:ed:d4:8b:ac:84:ab:2d:b0:19:
87:e4:41:0e:85:fa:40:e3:ba:c8:3b:16:69:0e:1a:82:9c:61:
d5:fa:f9:ef:59:a4:76:9e:44:46:db:b7:9b:5b:c0:b2:86:42:
d6:e0:54:70:97:b1:c8:c0:7b:81:61:94:51:ea:c9:22:0e:d9:
da:2a:14:39:2a:f1:99:76:97:6f:c4:78:56:6a:e2:f0:aa:7a:
0a:ef:70:d7:fd:bc:88:6e:c6:99:83:5e:c2:b1:41:2c:03:97:
40:62:f3:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:17:03 2026 by rpki-client