Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
File: z6ExZhMNKdWtimB9gUmNpmAm0DY.mft (raw, json)
Hash identifier: 1QKMJGij9iPo5BoWGUPi0M5dM14GYJlJgIBWxZvfFEY=
Subject key identifier: D7:D7:79:75:22:A2:86:D6:B0:24:45:2C:D7:78:BB:3A:92:1F:C1:B0
Authority key identifier: CF:A1:31:66:13:0D:29:D5:AD:8A:60:7D:81:49:8D:A6:60:26:D0:36
Certificate issuer: /CN=cfa13166130d29d5ad8a607d81498da66026d036
Certificate serial: 019D38D328BC81D77FB642185E9FCDFD65C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
Manifest number: 059E
Signing time: Sun 29 Mar 2026 09:00:55 +0000
Manifest this update: Sun 29 Mar 2026 09:00:55 +0000
Manifest next update: Mon 30 Mar 2026 09:00:55 +0000
Files and hashes: 1: 4-70XZL_LoLYwCdfws1cTL2SnVk.roa (hash: E/rkxdhnUNVw1rmGpTXdl2JJv9S4hDWoZIecolBNcc4=)
2: z6ExZhMNKdWtimB9gUmNpmAm0DY.crl (hash: BTmZgTkCsX8SqttJhPa7SItOZ2bpkjgzGiN/2wfRn50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:28:bc:81:d7:7f:b6:42:18:5e:9f:cd:fd:65:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfa13166130d29d5ad8a607d81498da66026d036
Validity
Not Before: Mar 29 09:00:55 2026 GMT
Not After : Mar 30 09:00:55 2026 GMT
Subject: CN=d7d7797522a286d6b024452cd778bb3a921fc1b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6f:c1:26:1f:c2:90:77:7e:e2:0f:e0:3e:71:
17:9a:8e:b7:f4:7e:2e:48:93:37:86:d3:6d:88:cb:
97:f5:de:a2:fa:f4:0a:09:f6:db:70:77:04:59:dd:
4a:9c:2d:81:a1:e1:91:6f:96:1d:8d:00:66:61:e1:
ee:10:0e:4e:63:d0:e8:a7:53:0b:bb:a6:c4:7d:30:
a1:6c:39:97:7c:dc:e2:46:21:d8:57:79:2b:e5:86:
4e:3a:3c:28:fe:00:08:8e:6d:ce:1a:96:1c:81:61:
2b:f1:93:3c:30:27:be:96:f7:43:00:f8:17:63:c8:
3f:87:de:41:3e:c5:5b:1b:b7:cc:54:60:dc:8b:4c:
c8:16:fe:d3:6a:b1:33:41:90:bb:45:c0:36:dc:f6:
80:fd:f4:c2:cd:f7:5f:1a:ca:97:ee:69:39:e2:2f:
9e:4c:76:d1:c4:0c:a5:67:d5:48:a5:fb:48:4c:84:
3d:0a:4a:50:e2:3a:d8:b5:33:eb:be:da:30:e6:75:
54:db:d6:59:63:0e:4b:39:3d:df:fc:63:30:02:6d:
3f:17:94:05:e7:3d:55:5c:d0:3c:f1:5f:22:dc:34:
9c:22:4b:56:fd:ec:66:ec:fb:95:c2:79:11:78:23:
8c:29:22:5f:42:af:40:42:cf:4a:4e:1d:d8:77:9c:
2f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D7:79:75:22:A2:86:D6:B0:24:45:2C:D7:78:BB:3A:92:1F:C1:B0
X509v3 Authority Key Identifier:
keyid:CF:A1:31:66:13:0D:29:D5:AD:8A:60:7D:81:49:8D:A6:60:26:D0:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z6ExZhMNKdWtimB9gUmNpmAm0DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/46ed8d-3f2f-473d-bed5-0c66bd34019a/1/z6ExZhMNKdWtimB9gUmNpmAm0DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:7d:83:04:9d:bd:14:93:fc:f3:c5:50:d1:3f:0a:b0:b8:3f:
50:86:6f:6c:a0:32:84:3a:be:6c:d1:32:d4:78:3a:ea:e2:79:
dd:4e:38:96:0d:ee:4e:0e:10:14:20:6e:9f:12:ba:a9:26:f1:
06:99:28:4c:1f:c8:b4:b4:75:bd:6d:17:96:8c:ed:1f:c7:fa:
a9:df:2d:43:e3:9a:41:66:22:9a:fe:1e:46:4e:df:2e:64:44:
c3:d1:65:04:13:35:59:e9:25:a3:13:3f:fe:04:5f:71:74:b4:
63:16:f9:45:fc:64:6a:6f:92:d4:fb:8a:2b:56:e5:ef:90:24:
70:2f:51:d1:92:cc:fe:6a:ef:62:b1:77:4d:65:bb:59:ca:5f:
87:8c:7a:81:5f:06:fd:bc:9c:0d:c2:87:e8:87:f0:21:cf:03:
d8:94:ad:2c:06:1d:79:a3:07:33:c7:70:09:66:32:1c:77:45:
5f:c1:2e:20:3e:df:d8:f5:a9:ee:78:29:5d:55:9e:8d:bb:16:
95:dc:d0:43:14:55:37:fc:5f:13:b1:fd:a7:9a:4c:55:aa:f9:
8c:02:56:0d:58:df:83:26:61:0f:d0:a4:7e:77:b8:5f:59:11:
19:d6:0c:34:f0:49:d4:31:06:ae:a3:dd:49:9f:f4:4a:8c:34:
1d:1d:55:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:52 2026 by rpki-client