Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
File: MzBvg92caNG7WukbUMJukpyB0v0.mft (raw, json)
Hash identifier: T+fft0vxnmyTrhe5PFRqv6TGIgGkU9c2SnD+Dahx/FY=
Subject key identifier: 17:EB:83:94:C7:D8:1D:15:BE:C9:F2:10:C5:D7:22:91:C5:AE:E9:F1
Authority key identifier: 33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
Certificate issuer: /CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Certificate serial: 019EC3007BBB2ACD9F5915AEB82F2B825AA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
Manifest number: 04B0
Signing time: Sat 13 Jun 2026 22:00:49 +0000
Manifest this update: Sat 13 Jun 2026 22:00:49 +0000
Manifest next update: Sun 14 Jun 2026 22:00:49 +0000
Files and hashes: 1: 2FWfjreR50s05nG8c3Epkp-QpOk.roa (hash: QKVrsfHtk1frMC5gbyYQSs+jJV5TW9T1z5wCTl60joI=)
2: MzBvg92caNG7WukbUMJukpyB0v0.crl (hash: 2IXiU46E1NQPkDWiiRCWzggjSEFkYXbmuqjtnXS28/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:00:7b:bb:2a:cd:9f:59:15:ae:b8:2f:2b:82:5a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Validity
Not Before: Jun 13 22:00:49 2026 GMT
Not After : Jun 14 22:00:49 2026 GMT
Subject: CN=17eb8394c7d81d15bec9f210c5d72291c5aee9f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b7:8a:6f:d6:78:75:30:ba:eb:0d:d4:23:6c:
c9:80:05:8a:09:78:61:7f:67:9e:34:ed:3a:cc:fd:
66:3a:de:d4:ae:08:ad:40:49:cf:bc:b4:43:f3:56:
ca:e8:75:92:76:b1:3e:2e:52:0b:f4:88:58:8d:6e:
63:58:bd:25:07:06:f3:20:61:a3:ea:55:d0:d5:b0:
cb:10:ac:ec:17:cf:e2:88:67:b5:15:5d:ca:68:36:
7d:c3:93:96:d8:11:73:6f:23:c9:71:a9:07:48:ea:
a5:24:3f:f7:0a:33:54:e0:a4:f3:8e:6c:88:e8:bb:
b0:bf:db:78:4f:0a:c3:d5:6a:72:c4:de:d6:74:ac:
4d:b6:b9:62:4a:d3:af:fb:bd:b0:42:de:05:fb:34:
0a:37:1d:39:1d:49:73:20:f3:0e:a3:9f:c2:2b:99:
bf:7b:f5:6d:1d:05:1f:d5:33:94:a6:d7:ed:f3:2d:
f3:68:e3:6b:91:c5:28:72:8b:4b:ed:14:4d:00:c9:
35:79:59:9a:18:53:6f:4f:13:93:50:49:0b:22:0e:
69:af:78:6a:08:3d:fb:af:e0:21:91:f6:f5:5b:b7:
af:00:a2:75:ef:f8:f0:01:cb:93:33:e7:a8:11:af:
39:a6:28:d6:dd:8f:95:09:09:a2:e1:81:d1:b3:69:
75:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:EB:83:94:C7:D8:1D:15:BE:C9:F2:10:C5:D7:22:91:C5:AE:E9:F1
X509v3 Authority Key Identifier:
keyid:33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ce:8c:13:27:4d:7a:10:7e:53:9b:4b:c7:11:8a:33:27:92:
10:11:7c:12:eb:9d:42:cc:0a:63:db:39:e9:9f:cd:d2:7d:1b:
d6:8f:91:7d:56:76:1f:4b:75:ad:fe:27:4d:14:bf:2e:f4:38:
fa:5b:c7:dd:b3:83:90:52:7b:04:9f:83:cd:6a:41:43:54:b9:
52:38:bc:2f:a9:3b:38:e5:43:76:3e:e1:61:11:de:7e:36:6c:
17:79:39:3a:43:0f:df:c5:bc:7f:4e:bb:94:41:ab:3f:a8:72:
0f:2c:3a:e7:60:5e:34:98:0c:24:4a:23:be:bf:4c:8c:f4:a6:
dd:87:f7:b0:c1:2c:a9:42:83:f9:91:ed:5c:f0:56:98:f3:f5:
84:d9:b1:ea:0d:32:34:ba:6a:1d:63:de:01:43:d0:a5:80:7d:
71:8c:8f:7c:67:e3:83:42:5c:a1:7c:9c:53:86:19:4a:ec:9d:
a1:41:c1:74:13:bf:43:83:6c:26:c1:21:ba:57:e1:d2:d9:b4:
4c:03:a0:de:89:d8:73:ac:04:0c:bf:87:65:cc:5b:43:25:fa:
f5:3d:6d:b4:bd:b1:b5:f3:e6:3a:25:5e:e0:dd:a7:d1:96:c9:
47:fb:8e:29:ee:aa:8b:22:65:31:a7:72:e9:80:e0:f7:a6:5a:
2a:65:18:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:02:16 2026 by rpki-client