Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
File: MZ7ds2aRntdfRmDPsOC25fxAFhM.mft (raw, json)
Hash identifier: uCWMINg6NeTEMbd17UKwrU6hxJ5bjwtP6uD2+3PTVa0=
Subject key identifier: BB:9E:26:C4:87:D3:2A:62:E5:21:95:08:F4:DC:A5:00:18:F6:7F:7D
Authority key identifier: 31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
Certificate issuer: /CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Certificate serial: 019D3263014F60A256FCEF2430CD54CF84BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
Manifest number: 0F5E
Signing time: Sat 28 Mar 2026 03:00:42 +0000
Manifest this update: Sat 28 Mar 2026 03:00:42 +0000
Manifest next update: Sun 29 Mar 2026 03:00:42 +0000
Files and hashes: 1: MZ7ds2aRntdfRmDPsOC25fxAFhM.crl (hash: DfOKH2sqVYqwhuq0AxTblnmiriIHollydKG15ypMDDI=)
2: _0u7vnHZdg310nUrSqnTSu55Or4.roa (hash: xOaMS4kje5xsRAQ6hRbBK0m2M3+HpCRiKnXrVnEapA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:63:01:4f:60:a2:56:fc:ef:24:30:cd:54:cf:84:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Validity
Not Before: Mar 28 03:00:42 2026 GMT
Not After : Mar 29 03:00:42 2026 GMT
Subject: CN=bb9e26c487d32a62e5219508f4dca50018f67f7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:61:84:78:1e:13:30:9a:0b:37:f4:a2:f1:f4:
e7:11:d6:f6:f7:1c:f8:a3:82:0d:17:e3:ff:62:cb:
16:13:13:e3:16:0d:d2:d7:ff:b2:98:ab:dc:1b:b1:
b4:d4:ec:5f:c5:45:e1:6c:0e:58:38:1d:f7:c7:98:
67:56:78:df:77:0c:6a:b1:bb:6d:23:ff:e0:4e:76:
06:3e:ed:c2:53:3f:6f:52:a1:f9:a2:5a:e0:3e:74:
34:ee:ab:5a:b1:a7:6a:84:2a:27:a7:c1:d3:1f:32:
57:09:24:26:43:e6:d5:97:8a:65:74:af:21:61:60:
62:60:80:19:85:d5:9b:af:6d:dd:a2:65:d0:20:92:
25:90:a1:a1:37:92:7c:48:16:40:5a:3b:ea:02:3c:
19:da:84:85:9f:4c:bd:9f:5e:fd:9f:00:62:57:4e:
50:30:a9:18:62:79:41:f4:27:d8:a7:17:23:bd:68:
12:a0:99:b2:65:a4:91:b9:e4:39:25:81:c7:ee:e2:
3b:2b:85:73:2f:10:76:dc:1b:c4:85:25:4a:7a:72:
ff:99:c7:89:dd:76:e4:77:11:11:54:8b:09:bd:0c:
ab:03:9b:ca:0e:a5:3c:03:b0:6f:3f:77:1a:59:2c:
70:05:b9:cc:02:13:78:8c:d2:39:70:76:9d:0b:7b:
74:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9E:26:C4:87:D3:2A:62:E5:21:95:08:F4:DC:A5:00:18:F6:7F:7D
X509v3 Authority Key Identifier:
keyid:31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:3c:74:5f:0d:79:de:2f:26:09:ea:f9:6f:60:76:38:6b:5b:
9f:9b:8c:e2:19:66:a0:71:3d:8d:8f:d7:56:b5:f8:29:84:19:
63:e3:47:7b:1a:9d:76:c3:49:f6:4c:9d:ba:3c:16:1c:9b:00:
28:c8:6d:d6:ff:c1:fb:66:50:05:a3:38:a8:e6:36:89:a0:d6:
8a:9b:b4:6d:b6:00:bf:d2:43:52:bf:d6:9a:b5:8e:54:05:43:
95:d0:b1:0d:33:52:0f:21:a0:93:34:e7:d3:eb:48:1f:fd:37:
26:09:9e:ff:11:3b:76:d8:63:b9:51:d2:cc:ef:60:13:dd:60:
89:35:cd:cd:b9:14:0a:7f:da:6b:2f:5d:24:21:75:e7:2a:f9:
ba:65:55:da:92:06:de:a0:4b:93:0c:01:a7:1a:ca:c1:db:a0:
45:12:57:39:a4:35:9d:fb:26:b2:bf:26:fe:17:2c:8f:54:05:
b1:16:98:15:94:30:4c:01:a8:d2:e2:14:1b:e1:2c:b9:27:94:
3c:93:b6:24:16:f4:f0:58:90:a0:c0:4f:48:ba:75:03:16:af:
e9:ef:bc:41:cb:f4:26:26:01:cc:40:c8:1b:34:21:b2:f8:88:
31:6c:8d:46:dc:79:1d:70:5b:f1:8f:2a:fc:fe:36:34:67:d5:
6d:06:e1:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 04:42:43 2026 by rpki-client