Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
File: zE4rrFHZy3KbGnVijua0ycHp_8g.mft (raw, json)
Hash identifier: YQ9XlfSizN7VlHHr4dYDtLnSzHKDGTwjZCPi72jHbeY=
Subject key identifier: BD:38:A0:C8:1D:2C:A2:A8:A1:16:91:8F:B9:A0:3E:A0:18:A3:81:30
Authority key identifier: CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8
Certificate issuer: /CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8
Certificate serial: 019D2704755558D65B73CE67A98841FE0526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
Manifest number: 0431
Signing time: Wed 25 Mar 2026 22:01:36 +0000
Manifest this update: Wed 25 Mar 2026 22:01:36 +0000
Manifest next update: Thu 26 Mar 2026 22:01:36 +0000
Files and hashes: 1: CVwCEsbzumpXgEnKDDCCAaIDrYM.roa (hash: lxu8mh9bo97HPFI+56oJ6vzMl5ukNpSkTrJqrOGog30=)
2: zE4rrFHZy3KbGnVijua0ycHp_8g.crl (hash: W5jr4uAJuLzDkGwSGy8sYE6lVfyZsdtwjTg8Je3jKy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:75:55:58:d6:5b:73:ce:67:a9:88:41:fe:05:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8
Validity
Not Before: Mar 25 22:01:36 2026 GMT
Not After : Mar 26 22:01:36 2026 GMT
Subject: CN=bd38a0c81d2ca2a8a116918fb9a03ea018a38130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b2:a9:c4:a6:a3:5c:ae:bb:2d:40:57:b2:2e:
b6:d6:94:9b:fb:98:f8:cf:c4:07:ac:7c:49:68:7e:
21:15:cb:de:29:c4:16:6b:92:c9:73:32:50:66:43:
c4:f4:01:3c:fa:fc:4b:0e:95:98:36:0d:82:be:4c:
9e:92:3d:f4:1b:ba:55:15:cc:9e:7a:ad:4d:a2:a4:
ce:8e:75:19:76:d8:a2:dd:24:6f:6f:0a:6a:12:02:
ab:50:f5:85:c4:b2:a4:c4:97:d1:32:6d:ba:10:34:
a9:4d:30:dd:c6:b8:eb:c4:6b:c2:a8:90:22:3d:52:
dc:84:ff:a7:98:4e:ec:ef:b9:7a:0e:f5:a8:27:b2:
63:ae:36:30:b2:7f:61:db:22:51:e8:4e:8c:60:75:
34:ab:5f:e3:3f:c3:16:02:3c:c8:84:e2:4f:17:6f:
4b:68:93:51:85:96:f9:d2:f2:e4:81:66:86:5b:d8:
17:b3:aa:c2:6f:4c:25:9d:62:08:de:f9:94:d3:5c:
a6:21:35:43:c7:90:9e:26:e6:33:af:12:79:1f:7e:
b9:01:a7:df:51:35:9e:da:6f:c0:01:a2:d8:ce:47:
f3:f4:3b:4a:b0:7d:7d:88:f9:a3:ec:e1:67:88:e9:
46:10:13:67:f0:d7:d6:35:c9:42:d3:a1:a7:15:69:
ac:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:38:A0:C8:1D:2C:A2:A8:A1:16:91:8F:B9:A0:3E:A0:18:A3:81:30
X509v3 Authority Key Identifier:
keyid:CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:cc:6f:0e:1e:6a:ff:aa:55:51:3e:68:ab:93:e3:2b:5a:53:
d6:8a:5b:3a:da:f0:b8:b8:6e:0e:68:fb:22:9e:21:06:1d:a2:
58:e2:9c:20:db:fc:5e:c4:f7:11:08:61:15:93:50:f1:70:1e:
c4:47:47:ce:31:b8:22:5c:fb:27:d8:bf:9d:39:40:64:46:73:
5d:7e:b6:f9:f5:3a:72:74:43:53:d9:89:57:85:e0:ef:60:c9:
c0:8e:8b:41:e8:05:d2:48:95:2b:3d:24:7f:cb:82:79:8b:54:
00:a4:72:3c:7b:90:df:60:6e:d4:68:a1:2d:80:0e:36:f9:18:
14:a4:6f:3d:fa:99:df:90:61:da:aa:ea:d5:5c:36:17:a7:cb:
01:5a:dc:7a:19:6d:9d:ea:90:e2:8d:2b:66:2f:9c:23:b8:bd:
cb:d3:34:b8:ab:19:3c:9c:74:13:14:65:ae:bd:f5:5a:77:d2:
f5:bb:6c:6b:cc:0d:25:d6:46:29:f5:39:d6:fd:ed:4f:24:f9:
09:e9:fc:dd:1a:36:f7:f9:bb:fd:87:94:23:c4:d7:87:33:fc:
9e:10:d3:59:cf:f1:5a:98:b8:e9:59:93:00:3f:36:29:b3:32:
c3:63:48:a1:77:f1:1b:72:7a:25:c0:58:35:bb:01:9b:05:33:
0e:7c:c7:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBHVVWNZbc85nqYhB/gUmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjNGUyYmFjNTFkOWNiNzI5YjFhNzU2MjhlZTZiNGM5YzFl
OWZmYzgwHhcNMjYwMzI1MjIwMTM2WhcNMjYwMzI2MjIwMTM2WjAzMTEwLwYDVQQD
EyhiZDM4YTBjODFkMmNhMmE4YTExNjkxOGZiOWEwM2VhMDE4YTM4MTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLKpxKajXK67LUBXsi621pSb+5j4
z8QHrHxJaH4hFcveKcQWa5LJczJQZkPE9AE8+vxLDpWYNg2Cvkyekj30G7pVFcye
eq1NoqTOjnUZdtii3SRvbwpqEgKrUPWFxLKkxJfRMm26EDSpTTDdxrjrxGvCqJAi
PVLchP+nmE7s77l6DvWoJ7JjrjYwsn9h2yJR6E6MYHU0q1/jP8MWAjzIhOJPF29L
aJNRhZb50vLkgWaGW9gXs6rCb0wlnWII3vmU01ymITVDx5CeJuYzrxJ5H365Aaff
UTWe2m/AAaLYzkfz9DtKsH19iPmj7OFniOlGEBNn8NfWNclC06GnFWmsiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL04oMgdLKKooRaRj7mgPqAYo4EwMB8GA1UdIwQY
MBaAFMxOK6xR2ctymxp1Yo7mtMnB6f/IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQt
OWRhNzg4N2Y2YTJmLzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQtOWRhNzg4N2Y2YTJm
LzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATcxvDh5q
/6pVUT5oq5PjK1pT1opbOtrwuLhuDmj7Ip4hBh2iWOKcINv8XsT3EQhhFZNQ8XAe
xEdHzjG4Ilz7J9i/nTlAZEZzXX62+fU6cnRDU9mJV4Xg72DJwI6LQegF0kiVKz0k
f8uCeYtUAKRyPHuQ32Bu1GihLYAONvkYFKRvPfqZ35Bh2qrq1Vw2F6fLAVrcehlt
neqQ4o0rZi+cI7i9y9M0uKsZPJx0ExRlrr31WnfS9btsa8wNJdZGKfU51v3tTyT5
Cen83Ro29/m7/YeUI8TXhzP8nhDTWc/xWpi46VmTAD82KbMyw2NIoXfxG3J6JcBY
NbsBmwUzDnzHkA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 01:01:10 2026 by rpki-client