Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json)
Hash identifier: shH9PcB34aQrW7Jk01SALM217KzjiUK9WDZXsBTWK2s=
Subject key identifier: 68:1D:00:47:97:3C:29:17:77:91:03:DD:E2:83:54:26:F4:65:F2:4B
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 019DCFE346EE4E0C6A96594583F9AA2F3B04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
Manifest number: 0907
Signing time: Mon 27 Apr 2026 17:01:11 +0000
Manifest this update: Mon 27 Apr 2026 17:01:11 +0000
Manifest next update: Tue 28 Apr 2026 17:01:11 +0000
Files and hashes: 1: QHXSRTuQ2wXN4fBaqbTGI2do0QM.roa (hash: 6/Lj3vL/L1J4PjbZ1lCMZ4grKgrWI3SnlcnhAkor32k=)
2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: JRyRfRxrpDdqeQThEmye1C0SnvUrtDC2n/lDJ+o71Zw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e3:46:ee:4e:0c:6a:96:59:45:83:f9:aa:2f:3b:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Apr 27 17:01:11 2026 GMT
Not After : Apr 28 17:01:11 2026 GMT
Subject: CN=681d0047973c2917779103dde2835426f465f24b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c6:f4:d5:09:df:9d:64:73:0f:d6:f9:f6:a7:
5c:8d:35:1b:4c:9e:4c:25:19:a2:24:ea:85:8d:fc:
aa:04:0d:4c:18:72:e9:fd:92:74:79:78:cf:10:04:
57:57:59:47:97:37:f0:ff:4f:33:68:1f:0e:9b:9f:
e2:6e:f3:38:02:de:84:4a:81:48:93:e6:9f:e9:1f:
f8:c5:95:28:54:db:f6:29:48:a2:a6:77:f7:96:e0:
e5:e9:37:a6:1a:c6:04:56:da:f6:99:95:b9:0f:93:
76:0b:e7:ad:a0:6a:8e:c7:5e:33:d4:df:bf:71:29:
cd:71:35:22:7d:cd:8a:a8:43:82:08:fc:a5:f2:34:
86:33:96:bf:9d:7f:a3:12:3e:e0:f1:3b:e6:b0:3d:
e0:24:1c:21:8d:b7:ec:ff:6b:35:2e:4a:46:05:c5:
9d:6d:b2:08:85:8e:ca:6c:ff:3b:31:b3:5b:84:45:
5d:c8:53:a8:65:82:55:bf:e1:fd:98:60:51:b7:25:
c5:06:aa:0a:6c:19:ff:8a:30:e9:ba:00:f7:a7:ca:
cd:33:ac:6b:0c:2f:94:e6:78:40:59:6c:f4:d4:e4:
af:c1:4d:20:e7:d7:35:d8:ef:85:b9:60:dd:15:e2:
76:17:7b:f0:b9:7c:da:87:f1:37:83:49:4a:0f:ea:
9e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1D:00:47:97:3C:29:17:77:91:03:DD:E2:83:54:26:F4:65:F2:4B
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:9b:ad:f9:61:0b:b8:b9:4d:32:b8:6c:46:18:ce:64:e6:ef:
5a:ab:48:b2:b6:97:c9:a1:3e:55:ef:76:7e:d3:66:e4:49:b0:
2d:8a:26:48:93:b8:2f:b1:3f:26:6e:15:ea:05:94:29:71:f7:
19:84:82:75:d9:c0:aa:2d:ae:20:78:c7:c9:28:d5:91:ef:32:
5b:f7:86:be:1f:82:bd:96:e5:be:eb:e4:6c:2a:0d:81:b0:1c:
96:ad:ee:b5:d4:99:fa:0b:04:52:26:89:28:e0:b4:48:e1:12:
81:d5:5d:5d:7b:8a:f7:c9:c8:2f:3b:52:24:e0:6c:88:7c:6d:
5f:46:fe:a0:03:c1:e8:15:f7:64:f7:b7:f7:a3:50:4b:b3:cf:
8e:a5:85:0f:7e:e4:54:75:7d:68:ad:5e:9a:ed:1e:8c:21:9c:
75:9a:1e:af:18:8a:21:09:00:29:d8:3f:fa:af:98:61:ce:62:
ec:9f:9e:0c:c3:74:8d:40:b3:b5:b3:9f:3b:e5:47:11:76:e2:
a9:47:7c:0c:00:67:3a:92:ad:92:4b:7c:07:7a:2a:12:51:ac:
33:1f:ad:4a:20:1b:0e:90:9d:4c:ca:dd:ee:5c:f4:31:7a:6e:
48:39:3d:cc:34:a2:f2:c9:7b:e6:59:21:0f:08:cd:79:5a:63:
e9:c8:08:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 22:28:48 2026 by rpki-client