Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: MuM1LNvvI1bzj2OhMhJiePh0VEm4RTchkHZLl4NyekU=
Subject key identifier: B6:16:9E:EF:27:7B:E4:A0:A6:62:2D:36:DC:40:F2:7B:20:0E:A6:D9
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 019D9850026BBFC6696B42F2165CB99BEAF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0FAB
Signing time: Thu 16 Apr 2026 22:01:13 +0000
Manifest this update: Thu 16 Apr 2026 22:01:13 +0000
Manifest next update: Fri 17 Apr 2026 22:01:13 +0000
Files and hashes: 1: Nh6TGiZWo0EOxhMqHLoTd_RYjgw.roa (hash: jvTmWCCcSLAGtI/9GquGJ7vRIPsivGfTGeyKsvphVGk=)
2: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: WQJte9uru7paTBti1BbaIhHUx8sIIvSpZwAZ3kxOyTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:02:6b:bf:c6:69:6b:42:f2:16:5c:b9:9b:ea:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Apr 16 22:01:13 2026 GMT
Not After : Apr 17 22:01:13 2026 GMT
Subject: CN=b6169eef277be4a0a6622d36dc40f27b200ea6d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:be:07:6e:75:55:ee:7f:5a:b3:8f:d8:7a:ec:
09:1d:f9:ad:90:e2:78:8a:fb:8b:66:ad:7b:a3:fb:
c7:42:ef:ce:a0:44:f1:99:81:d1:d5:46:96:38:10:
e5:8c:d5:95:cf:fa:b4:1f:ba:04:43:48:0f:98:fc:
47:32:23:fe:c4:8c:0e:46:22:eb:a4:42:4a:e4:e3:
2f:da:57:4f:00:38:84:1c:b2:98:aa:5a:48:44:b2:
bc:f9:c5:d6:a2:cd:94:a1:ef:d8:b3:b8:85:3c:54:
32:85:e6:72:5a:8f:a0:fd:46:9b:e2:6d:2c:87:55:
ca:bc:0e:ab:79:5c:4d:73:aa:80:42:d9:1d:b9:72:
dc:ef:09:75:53:14:33:ba:c1:c0:93:c6:8d:91:08:
c1:95:3e:ef:39:e9:0a:b5:d4:d7:cf:7b:0b:12:72:
44:19:0d:db:c5:7f:2f:34:4e:fd:26:63:30:83:f4:
11:9b:59:b6:28:46:6c:35:f7:9e:24:2f:a7:a7:e1:
70:ff:f6:55:1a:c6:69:0f:b8:99:b0:18:c3:fa:93:
aa:d5:b1:a2:2a:97:a1:c5:39:43:68:47:a1:25:4a:
cf:02:5c:b7:fc:6c:75:10:65:3e:f2:ee:75:63:16:
52:d0:b1:e9:14:02:4e:96:ac:5e:cf:95:6b:6d:97:
3b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:16:9E:EF:27:7B:E4:A0:A6:62:2D:36:DC:40:F2:7B:20:0E:A6:D9
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:86:16:26:56:0e:28:b3:70:89:58:8c:ff:97:e6:5b:0e:6f:
09:3a:cc:9c:17:c3:aa:e6:1e:78:4c:10:0a:75:19:1a:20:92:
a9:12:b1:da:fb:38:e2:8b:c0:13:f6:90:29:f9:6c:97:15:dc:
f9:d1:4e:fb:55:74:80:c8:83:e2:8f:7e:03:f5:fe:3a:90:16:
a3:42:24:20:78:bb:ea:c8:bb:23:94:95:fa:c6:29:9d:8a:f6:
43:b6:31:2c:b4:ef:2e:ae:fe:76:a6:1a:e2:e3:2f:af:f7:7d:
23:9a:7d:3b:3d:4f:bb:be:36:5c:b9:f0:84:61:b8:7f:9a:71:
06:9d:c0:16:0b:29:f1:3c:b2:6a:1c:19:9f:f4:92:e8:b5:1c:
45:18:b7:3f:f9:06:87:c7:d1:77:05:f7:df:79:6c:32:32:14:
46:7d:20:38:02:ff:dc:35:8a:be:1b:74:aa:d6:41:b0:8b:5e:
e1:88:6a:3c:f1:d6:57:3f:21:16:f7:e8:26:e5:6e:ff:3a:3b:
13:99:d6:a4:64:28:8c:5f:73:a7:29:9d:5c:9d:74:4f:b5:f5:
38:34:d8:66:80:e9:7a:a0:13:4c:31:94:c8:89:df:6e:8b:31:
a1:04:86:0c:fe:33:d1:9c:fe:30:7a:6e:21:8b:0e:4f:80:ec:
1f:9d:64:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:16:40 2026 by rpki-client