Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: BR9vivs6QjogaFSSQnhWvaDL6ruIeLlbk40CNsp/2jw=
Subject key identifier: 8B:CF:DD:1A:79:C4:EE:BA:E0:4C:ED:00:56:C1:4C:7A:BB:99:94:8A
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 019D98504C6D1DDDBC39C2634BDB771750F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 04DD
Signing time: Thu 16 Apr 2026 22:01:32 +0000
Manifest this update: Thu 16 Apr 2026 22:01:32 +0000
Manifest next update: Fri 17 Apr 2026 22:01:32 +0000
Files and hashes: 1: 1-_85ETz5jkHerkVT2dRSmXtqgNo.roa (hash: NQXJJj/OBTH49mc/x3onWdcUiAdq+Dhq5KpAVGXEyBc=)
2: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: 7jdWqMAenwUrbkqN/yxpMlOpi8t5Y/DyBjN/pdAGZRE=)
3: TTHbsr6S4A2WiT-5UCVCIBGXt7g.roa (hash: tSI1qiCrhqG5RTuDVwd5YnhpKn7WMz1SwKPqjeiWtZ0=)
4: a0eUHcdaR9ti-evhbAEFGBrL0Io.roa (hash: UamqmfD2F3jnX1W9WoKvN8IFkSGGaFQkzJskamkX+iU=)
5: n9u8fIoesd4A4uTwrOz4P1zrzO4.roa (hash: cijsYvLKzW1sG0duTGBEtXXlTm9N+GbFilwCze3Bg8c=)
6: xR7LKB9cMx20WjaSYnBDWdIRF-g.roa (hash: vumkR84YsHI2dcyHQIVTL0w8JKyaUvc5rnjqJHi4+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:4c:6d:1d:dd:bc:39:c2:63:4b:db:77:17:50:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: Apr 16 22:01:32 2026 GMT
Not After : Apr 17 22:01:32 2026 GMT
Subject: CN=8bcfdd1a79c4eebae04ced0056c14c7abb99948a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:eb:0e:cb:4f:ae:a1:6d:c0:b3:06:77:52:7f:
b9:ac:ef:a9:39:39:13:96:59:3b:79:ca:ac:12:c5:
36:c4:0c:90:2a:82:ec:d6:d5:f7:34:9c:25:a8:e3:
96:2e:eb:9f:ea:5b:4d:72:ab:ea:17:18:8c:95:5a:
12:3b:7b:00:f6:5c:51:83:df:c8:2e:ac:73:8c:46:
15:d9:7a:62:09:6b:6e:c6:92:ab:ad:57:61:b9:b2:
5d:52:de:23:c2:97:c9:1d:a7:51:c2:19:91:f3:e5:
1d:43:06:8c:96:19:40:58:d9:f8:a0:7a:62:fa:49:
26:1d:6a:c1:5a:e3:2f:77:08:05:e8:d7:51:4d:b2:
e5:f0:28:bb:f7:55:e1:79:40:a3:3b:42:36:0e:1d:
56:23:d7:6d:46:ba:cf:59:30:69:9a:cf:87:93:62:
db:fc:4e:02:d9:25:a6:a8:a1:48:a9:93:ee:e1:0f:
ad:69:a4:68:df:57:bb:0f:b0:75:bd:0e:fc:3d:a6:
98:97:f2:84:06:31:c9:a9:a6:b3:39:0a:62:39:93:
ec:39:e1:58:fe:38:07:0a:46:7b:5f:87:b5:ff:c0:
1b:bc:48:5f:b6:7a:6c:e5:b3:c6:bb:2e:7f:e9:cc:
96:df:5e:a4:7d:aa:62:df:26:58:ad:48:39:7b:12:
ce:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:CF:DD:1A:79:C4:EE:BA:E0:4C:ED:00:56:C1:4C:7A:BB:99:94:8A
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:8c:04:33:7a:79:d9:b6:89:73:89:00:8d:22:df:9d:cf:e4:
c9:20:b1:90:ab:25:1f:cd:7b:23:7c:d7:ce:84:95:29:8d:67:
e6:e2:e0:bd:87:22:57:82:3f:95:fb:6f:cf:86:c3:8f:2d:4b:
da:8e:cc:96:bf:e5:ed:68:25:d0:fb:6e:89:ff:50:8c:3f:3c:
03:4f:22:f9:27:e5:26:fe:51:b3:74:a5:27:18:33:0c:20:3c:
6f:0e:a8:c6:43:8d:a4:0a:cd:a2:de:21:e4:eb:88:74:37:25:
74:03:4b:e4:6d:d7:8f:85:6b:2f:63:bd:5a:4f:ba:c0:8d:34:
25:07:26:c6:4a:ac:7a:58:10:84:e3:2e:6a:4f:71:f7:13:35:
de:25:10:69:a8:ca:97:8d:1a:01:1b:52:b1:cc:da:f6:72:12:
c3:52:e9:5d:ef:38:1d:dd:73:7c:93:cf:65:b0:fd:3f:de:3e:
ff:1b:ab:ce:d5:c3:e9:b4:fa:ba:3c:a8:d7:ab:9f:c7:98:6a:
ee:ba:ef:6c:68:ed:21:a4:10:7e:b8:4b:d5:fa:0b:87:b9:05:
8b:bc:dc:cd:d8:8a:84:f9:f3:86:c2:a7:51:10:59:7e:e0:92:
bd:e8:ed:5d:9d:aa:eb:49:36:3e:2a:05:6b:fc:f5:23:dc:b8:
f7:9e:28:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:45:23 2026 by rpki-client