Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: GAIDvk8Ho/MhWOVEqKkOe4xBlfMkf7642d3UfFSDedA=
Subject key identifier: F6:6F:03:A4:F5:19:AA:F7:DC:C4:88:C6:8B:6D:8D:03:9B:B2:B8:C4
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 019DCF3E90BFE8E1250F4E30D648C76A61AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 186F
Signing time: Mon 27 Apr 2026 14:01:16 +0000
Manifest this update: Mon 27 Apr 2026 14:01:16 +0000
Manifest next update: Tue 28 Apr 2026 14:01:16 +0000
Files and hashes: 1: 84a_5dunO5tT13Gn8_j3cCElA5U.roa (hash: myvurQJ8o/9M7JEPK/Rdbm3h4MrG2xioG91InHNEhRU=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: +qXKhJTbSuyA6uW05CsLYB5WUB78g12wRDTXB3jxuPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:3e:90:bf:e8:e1:25:0f:4e:30:d6:48:c7:6a:61:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Apr 27 14:01:16 2026 GMT
Not After : Apr 28 14:01:16 2026 GMT
Subject: CN=f66f03a4f519aaf7dcc488c68b6d8d039bb2b8c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:01:18:e0:77:6c:b2:4b:cd:7b:a8:c1:f4:23:
ea:1f:96:5a:b2:ba:90:e6:7f:7c:51:fb:c6:aa:e8:
1c:f7:e0:59:51:3b:b0:30:76:a2:90:e0:47:6d:7f:
a4:25:78:27:76:12:40:50:5a:57:27:f6:52:ce:a0:
1a:29:4a:f6:2f:99:bd:dd:b4:66:85:b9:51:c2:74:
0f:7d:31:00:4d:95:f8:5b:98:0e:12:c6:7b:09:98:
6e:1d:35:a1:32:bd:4e:c9:8c:f2:63:e3:b5:64:ce:
bb:bb:62:9d:ab:2f:26:b8:f6:73:60:98:5d:a3:21:
a2:8f:c4:3d:58:c8:e7:9a:23:79:ac:f1:6b:80:f9:
b6:20:d8:38:77:fa:86:8c:55:dc:91:33:fc:42:ca:
59:cd:2c:db:60:b4:04:b1:9f:2a:a6:99:97:82:c1:
c4:73:b9:08:09:09:8e:79:e9:5f:e7:0d:b5:54:92:
37:2f:85:4f:b6:4d:ac:f6:5b:aa:32:71:44:32:c5:
f3:df:c3:a8:50:6a:df:da:8f:e5:19:b5:0e:14:dc:
8e:71:6a:ae:9c:08:24:83:02:7d:c4:86:c1:2f:0a:
77:e2:7c:6d:65:0b:a2:90:b4:35:b9:4c:90:59:d4:
f8:dc:4c:78:64:5a:7b:12:20:83:de:d0:56:c6:18:
71:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:6F:03:A4:F5:19:AA:F7:DC:C4:88:C6:8B:6D:8D:03:9B:B2:B8:C4
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:46:f3:2d:b5:7a:65:3a:ee:9c:ba:98:ee:3d:b3:15:b6:ec:
27:17:a0:ef:e6:d3:34:f9:6b:e6:51:c8:23:2c:89:ad:9e:10:
e2:fc:79:08:c6:93:fb:f4:9e:2c:5b:9a:bf:fa:0b:ed:16:34:
5d:3b:1c:c5:cf:c2:26:75:57:da:50:97:5f:aa:13:c2:c8:72:
c5:5e:79:7a:aa:57:e3:e8:8f:e9:8b:ac:5d:d3:80:02:e9:31:
03:59:84:60:6c:c8:04:fa:94:c1:ce:86:41:9e:e1:e4:95:20:
22:ec:e2:c6:7e:b5:48:c8:51:50:28:b7:e9:cf:e5:e1:dc:23:
6c:01:23:dd:fa:bc:81:eb:a3:05:13:72:4f:ec:18:e2:94:0e:
fe:25:b1:93:08:c2:d8:d3:05:8e:c2:e1:30:32:d8:cf:e5:1d:
97:d0:1b:a0:ee:90:b3:09:29:c1:58:91:b6:7a:d0:28:dd:b1:
fd:8c:b3:a2:dc:71:d5:8b:6e:d2:7f:ea:68:a3:50:a5:6f:c9:
ce:14:aa:8c:58:a6:0d:31:d6:1f:8a:b6:fe:a6:62:0d:60:ca:
62:bd:e2:ae:95:cf:28:00:0f:d7:73:64:8f:5c:4f:97:52:35:
73:45:ba:ff:c9:80:23:32:ba:3c:5b:93:77:62:9c:bc:f0:fe:
d7:0e:6c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:30:24 2026 by rpki-client