Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
File: mZK1NCb7YU2aWm2D9ABWamYMndI.mft (raw, json)
Hash identifier: ypn+ViYxMC/4RqM0R7pnm2l4OrJGlpWyrk9qRHp+tnE=
Subject key identifier: B5:93:8F:F7:2A:33:C7:DB:8E:B3:CC:06:F1:E7:0A:F6:BE:0C:9B:13
Authority key identifier: 99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
Certificate issuer: /CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Certificate serial: 019E31F2E90FF69EFBEF28E7D87CCD6B0601
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
Manifest number: 14E4
Signing time: Sat 16 May 2026 18:01:03 +0000
Manifest this update: Sat 16 May 2026 18:01:03 +0000
Manifest next update: Sun 17 May 2026 18:01:03 +0000
Files and hashes: 1: LKFdqAxekSyGKQc0Md8_7Xelo-E.roa (hash: hzROPb2XKPcBYg2mXSPUmlxSomnvcQdFm4oNZy6YiVs=)
2: mZK1NCb7YU2aWm2D9ABWamYMndI.crl (hash: JLqbfF7PilWAYxENYH05Uaodj72pZQR0dTG4Xo53g9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 18:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f2:e9:0f:f6:9e:fb:ef:28:e7:d8:7c:cd:6b:06:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Validity
Not Before: May 16 18:01:03 2026 GMT
Not After : May 17 18:01:03 2026 GMT
Subject: CN=b5938ff72a33c7db8eb3cc06f1e70af6be0c9b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e5:09:ed:8b:84:ef:cf:3f:3d:87:67:b0:dd:
5c:4d:fe:5d:42:77:e1:0d:29:61:b1:f5:ff:f3:e3:
f2:8c:0e:52:9f:59:a9:39:5e:e8:49:7c:1a:eb:61:
04:07:f9:c8:14:7b:6a:8b:c8:f0:f9:89:ec:8f:81:
1b:18:40:de:94:5c:35:6e:86:6b:f6:6e:7f:2b:ba:
09:8d:72:5c:23:bd:97:c0:a8:7c:34:cd:67:a5:d9:
bd:60:6f:f3:0d:e1:79:b5:ea:cb:31:4f:28:f9:c5:
8a:9e:2c:dd:39:85:a4:06:a7:4b:48:c8:3f:2e:2f:
86:df:90:52:ab:69:46:f8:4b:d0:e4:40:6f:31:cd:
72:57:02:95:62:54:fc:f4:e9:07:ff:ba:6f:fa:2a:
76:10:f4:9d:83:a1:5b:4d:6e:fa:d9:75:8e:14:ab:
b7:4b:04:7f:1f:83:37:ca:28:1e:3f:b5:06:bc:33:
c3:e4:d6:da:f0:51:3a:4f:9a:b2:52:34:7a:9e:72:
f7:6d:5d:56:d9:ca:01:2a:77:71:80:db:18:d5:96:
f7:eb:b1:95:8d:d5:cd:fe:1f:d6:f7:de:70:4f:39:
b8:a9:c0:bd:d6:78:f8:3e:45:4f:1d:4c:91:8e:0f:
d9:1a:a4:11:8a:38:a9:e5:70:45:91:2e:e9:5f:b5:
1d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:93:8F:F7:2A:33:C7:DB:8E:B3:CC:06:F1:E7:0A:F6:BE:0C:9B:13
X509v3 Authority Key Identifier:
keyid:99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:86:21:97:ad:01:fd:fb:03:7a:c2:b1:28:5e:ce:35:86:2b:
f7:75:92:ef:bc:84:ef:e3:ac:b2:f0:d2:17:6b:45:d4:fa:4a:
86:57:4a:8e:76:da:fa:66:70:48:8c:46:33:db:4d:39:75:0a:
2a:84:2d:93:16:4a:a0:59:cc:5e:b0:49:a6:d3:0d:8b:20:ef:
e0:31:92:97:8f:73:48:27:27:b5:b7:29:28:48:4c:54:60:1e:
d4:82:15:41:2a:f7:ef:d8:7f:df:20:b9:d4:6f:16:ee:6e:7d:
92:f8:bf:71:16:39:31:6e:ba:ec:9a:17:f5:0a:fc:18:b0:15:
e8:20:59:01:b1:58:87:7f:ce:59:f8:d6:f4:ea:82:15:b5:22:
96:ce:3d:85:d7:d7:4b:92:f7:df:75:e0:42:29:97:3d:1f:38:
57:25:04:d6:88:29:49:9d:5f:be:09:78:31:e7:3f:70:4e:a8:
0f:1f:67:ac:97:7f:fc:dd:81:db:e8:ed:7e:40:25:6b:43:ee:
7d:cb:22:e9:87:cc:1a:d0:35:3e:4b:4e:a5:83:ae:35:82:c2:
59:9e:6b:ab:25:71:48:b2:87:8e:be:f5:bc:5c:f3:bf:d6:a8:
12:08:c9:c1:6f:89:18:b4:b4:5a:bc:05:4f:9e:f3:e2:60:1b:
f7:42:61:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 02:07:45 2026 by rpki-client