Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
File: MzBvg92caNG7WukbUMJukpyB0v0.mft (raw, json)
Hash identifier: HjIKgWCD8unBSjOz3fXqT85UNmCGcxA+2oHqujeEB9E=
Subject key identifier: 26:21:C6:00:30:FF:9A:0D:64:8E:C8:55:6B:C1:44:B3:4E:3D:D5:3B
Authority key identifier: 33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
Certificate issuer: /CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Certificate serial: 019CADFE7D1971544E680E04B228D8331F2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
Manifest number: 039C
Signing time: Mon 02 Mar 2026 10:01:02 +0000
Manifest this update: Mon 02 Mar 2026 10:01:02 +0000
Manifest next update: Tue 03 Mar 2026 10:01:02 +0000
Files and hashes: 1: 2FWfjreR50s05nG8c3Epkp-QpOk.roa (hash: QKVrsfHtk1frMC5gbyYQSs+jJV5TW9T1z5wCTl60joI=)
2: MzBvg92caNG7WukbUMJukpyB0v0.crl (hash: 6/uVP9gFx26lApYTIVIhSo1jCF/fcu9m3Nz+dlejNHc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:7d:19:71:54:4e:68:0e:04:b2:28:d8:33:1f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Validity
Not Before: Mar 2 10:01:02 2026 GMT
Not After : Mar 3 10:01:02 2026 GMT
Subject: CN=2621c60030ff9a0d648ec8556bc144b34e3dd53b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3a:f1:7a:44:ff:25:bd:78:94:9e:da:ae:da:
74:0e:9b:d0:b4:2d:0c:ba:60:40:4e:2c:63:d3:6d:
d4:a0:84:65:89:41:21:bc:a3:e4:1f:7f:4f:a2:7e:
8f:06:ba:c0:f8:06:4a:38:ab:6f:c5:4c:2b:97:dc:
f5:c5:e3:1f:4f:c9:45:e5:f2:55:63:57:7e:7f:be:
1f:cb:03:f1:8a:30:eb:46:9b:d8:83:0d:58:9d:83:
df:a2:32:89:1a:37:9b:7c:08:51:a4:9d:2b:78:de:
50:35:19:97:63:13:10:83:d5:d4:e7:e3:5e:aa:ba:
19:e2:bc:c0:f6:4f:37:fd:62:88:f0:f3:c4:3f:a9:
9c:b6:03:93:8d:3f:e4:7c:1b:33:ff:ee:76:45:92:
bb:1b:53:09:ab:da:db:3a:a1:6b:68:15:fb:95:0a:
e4:88:8c:47:1a:96:f1:36:3e:54:41:a0:4b:f5:86:
a8:2d:58:5f:31:a2:06:52:a6:95:56:41:80:4e:10:
e1:75:23:02:c5:89:8c:e3:e3:f6:06:f8:25:96:48:
93:78:e1:56:6b:ec:2c:9f:d8:66:8e:4b:7a:d6:81:
69:7c:a8:b5:a3:eb:c8:c0:10:ad:2d:b1:35:e6:4b:
e0:cc:8a:25:31:64:c8:2e:74:d1:d9:c6:7c:09:a0:
0a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:21:C6:00:30:FF:9A:0D:64:8E:C8:55:6B:C1:44:B3:4E:3D:D5:3B
X509v3 Authority Key Identifier:
keyid:33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:3a:06:6b:f0:a2:55:9c:58:cf:7f:ab:3d:ba:d7:05:9a:95:
b2:72:dd:ee:0f:8b:a3:0f:71:ea:85:73:05:fd:15:e1:50:da:
f0:44:02:cd:c7:05:42:4d:7f:f0:53:2e:ad:10:74:eb:19:be:
23:a7:66:dd:10:aa:65:d7:3b:fd:52:37:f6:bd:8a:1e:05:c2:
e3:ad:49:7f:c2:ef:48:c7:b2:51:1e:c8:6a:2d:8a:e3:0b:0d:
a2:f0:db:4d:5a:bd:c3:4e:f6:35:5f:e7:55:ce:6f:92:c0:85:
2f:d3:b9:b6:e8:ba:1c:46:9c:ab:fe:ba:00:f2:7b:6c:a5:f1:
25:79:55:56:54:7d:34:07:1d:c9:4c:1f:65:66:05:ad:51:ee:
6f:41:3f:2b:bc:a8:7b:f3:c7:fa:60:ca:15:17:53:df:5b:45:
19:50:b3:f5:50:9c:f4:ad:ea:89:6e:7c:66:3e:63:a3:e6:87:
5c:05:d1:3e:50:69:0c:e2:e4:82:4d:66:1f:d1:53:87:ae:fb:
fe:4d:61:75:c7:c2:db:88:55:95:c0:85:92:8b:86:6f:e1:e8:
b0:c0:cf:44:38:5e:6c:e2:c7:88:b0:30:28:df:8a:3d:1b:17:
62:6f:91:f0:89:5f:e6:b2:7f:52:6f:ad:4b:ce:22:5b:e4:a1:
5a:d9:db:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:58:23 2026 by rpki-client