Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
File: mKUzMIdAu70he_adzpCz9UEghFc.mft (raw, json)
Hash identifier: hh06MfZsXpPcGnX+ApKLexMq5ispE/2Cx1yEXygPXVE=
Subject key identifier: EF:FE:D0:78:1A:45:DE:91:1B:E4:8D:EA:AB:71:89:EF:5A:03:2F:09
Authority key identifier: 98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
Certificate issuer: /CN=98a533308740bbbd217bf69dce90b3f541208457
Certificate serial: 019E2B160F542CCF64F270BF1C5437D86F94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
Manifest number: 1910
Signing time: Fri 15 May 2026 10:02:06 +0000
Manifest this update: Fri 15 May 2026 10:02:06 +0000
Manifest next update: Sat 16 May 2026 10:02:06 +0000
Files and hashes: 1: 07lXNimrQBF3__ddGT3TZzLhskg.roa (hash: eoEGjhgMY6OcoxgLUe7rr3k+ew/IBEiDnKUPvz0TNYw=)
2: T3vBUADVziYVCPfMjFB5sh1dYd0.roa (hash: K9dDJUVzUK8TiZfC61uyK9tw2jY/KL9Z0G2brWNRTIY=)
3: mKUzMIdAu70he_adzpCz9UEghFc.crl (hash: KqA9FtDlxEldJAG27cCkPanxiB+vYZJDoBIZdTGySjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 10:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2b:16:0f:54:2c:cf:64:f2:70:bf:1c:54:37:d8:6f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a533308740bbbd217bf69dce90b3f541208457
Validity
Not Before: May 15 10:02:06 2026 GMT
Not After : May 16 10:02:06 2026 GMT
Subject: CN=effed0781a45de911be48deaab7189ef5a032f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:48:23:1e:77:89:cd:2a:b6:0d:02:61:9a:b4:
b0:2f:12:df:51:dd:45:13:a2:f8:64:68:82:7a:15:
f0:21:77:f2:5f:9d:7b:67:54:e5:79:68:59:d5:f5:
c7:37:e3:cc:86:47:22:e0:11:44:8c:0d:e9:a0:0e:
f5:bd:6a:a5:06:19:c8:58:ff:3e:1f:dc:2f:d9:26:
9e:7e:57:80:88:11:4b:6b:da:89:c3:a5:c4:93:91:
e4:11:27:cb:2f:74:03:de:67:e1:e9:fa:85:cf:c2:
d3:de:6c:80:58:bf:c2:8b:3e:06:a4:fa:69:a1:38:
20:4c:d0:a8:a3:86:73:7f:9c:e2:97:d1:bd:e1:01:
62:26:68:77:93:17:04:07:1f:fe:10:86:db:5c:ba:
74:52:cc:bc:47:f5:bc:56:ab:7a:f9:4c:96:b7:65:
e8:f9:07:71:e3:93:2f:6c:17:82:1a:2a:85:9d:69:
44:06:cf:e8:6e:08:bb:a2:fe:95:93:6b:01:80:78:
03:3b:7c:62:c4:54:d3:7d:a3:87:58:86:62:7a:bc:
17:61:6f:5f:21:42:9b:6f:71:8e:fd:14:45:ce:39:
1b:8a:bd:70:a2:7a:38:68:ac:43:50:62:3b:62:c8:
8d:fc:f6:f3:64:c0:48:12:b8:fc:03:fe:d2:cb:c8:
e0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:FE:D0:78:1A:45:DE:91:1B:E4:8D:EA:AB:71:89:EF:5A:03:2F:09
X509v3 Authority Key Identifier:
keyid:98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e0:2d:82:f3:f2:29:7f:8e:20:d6:13:cd:ef:a5:96:8b:73:08:
cc:21:bc:e9:0e:0e:f9:b8:e0:61:6e:11:e7:bd:65:67:23:20:
de:ae:e7:56:46:18:f1:9a:17:bf:0b:46:03:be:84:44:40:11:
42:6d:11:d9:4b:33:44:6d:ec:c4:d2:de:b1:0f:4a:fc:78:fe:
17:9f:1e:a4:26:d3:c8:9f:6b:51:01:a5:4b:e5:87:e6:a3:ed:
ef:25:5b:16:d8:21:a7:54:57:5f:c5:85:e7:17:7f:e7:50:61:
79:de:d8:7d:d0:09:3c:7d:ef:5c:b7:2b:a1:0a:e5:fc:10:ac:
25:0a:fd:24:0b:e4:e5:52:c8:d5:c6:c2:c9:10:83:6e:90:91:
44:92:13:e6:e3:3a:0e:a5:8d:75:f8:22:95:ed:7d:b2:b2:69:
a6:20:54:d6:da:77:14:e9:2a:c6:8f:5a:48:bc:cb:32:7e:d3:
ae:cf:c2:43:92:74:2c:1d:55:01:14:6a:45:30:78:64:ee:d3:
f8:fb:14:6a:ce:06:35:aa:3f:97:7b:7e:90:be:35:d1:19:92:
17:20:0f:f9:6e:ae:6f:68:df:d8:e8:74:92:72:ca:64:53:93:
c3:bf:ea:28:16:c5:29:bc:b6:bc:90:bb:2b:a7:dc:51:35:a6:
b9:1b:03:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 19:27:13 2026 by rpki-client