Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
File: ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft (raw, json)
Hash identifier: rT2A3YwcOKoo8KJDgWwak0+8NdnehSGZCrcPTz6eEK8=
Subject key identifier: FC:C0:AC:DB:04:61:D8:82:59:A8:97:DD:C3:0E:14:EC:5E:C1:2A:40
Authority key identifier: 65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
Certificate issuer: /CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Certificate serial: 019E1C7D8A95FFE53D81C6F7866114F18388
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
Manifest number: 03BB
Signing time: Tue 12 May 2026 14:00:49 +0000
Manifest this update: Tue 12 May 2026 14:00:49 +0000
Manifest next update: Wed 13 May 2026 14:00:49 +0000
Files and hashes: 1: OpiyEA7jLNoth377L3JQZRW22EA.asa (hash: r8ONgzWitytpplKZRKdun1LH8tmOWmyteR7//LNHOZ8=)
2: TBDRW3pZmuh3LqJB0SgJxwzZcn8.asa (hash: hzhoB7Z5vY10r4VrziTI+hp0NwmrNuDhAq362RHDbhc=)
3: ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl (hash: aKKQsEv9M2VNDd0cpL491a1KfuUavOLsg9KkGsltL4w=)
4: m0PF4BK3O9Y2-d_izx7bC-pV_Es.asa (hash: D09pxW5zPXOvJqHki3xg8YhkV/MNoANsgzWxuDtJUNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:8a:95:ff:e5:3d:81:c6:f7:86:61:14:f1:83:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Validity
Not Before: May 12 14:00:49 2026 GMT
Not After : May 13 14:00:49 2026 GMT
Subject: CN=fcc0acdb0461d88259a897ddc30e14ec5ec12a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4e:31:41:a7:03:90:30:97:32:4b:53:93:43:
de:a1:98:6c:ae:b0:b3:b1:0b:8f:f8:5e:f1:4e:c0:
79:cd:f6:01:8d:a8:67:42:c2:94:b3:f0:6c:63:5e:
a2:7d:a5:b9:66:dd:0e:1c:24:e7:fa:66:22:11:3f:
dc:fc:f9:65:96:41:f6:2c:2e:b5:39:75:87:ef:7b:
09:e1:69:d3:fe:dc:20:38:d3:53:1c:0e:80:e1:6f:
c5:af:35:0f:d9:fe:de:02:14:24:14:b7:c6:b8:35:
44:e2:e3:9d:5d:6c:bc:97:8a:a2:1e:73:a4:af:93:
a5:12:2a:b9:01:dd:1a:93:87:17:d5:10:4a:b7:8f:
a2:ed:90:73:51:86:4f:86:47:fa:28:fe:df:98:6e:
ad:af:75:10:2c:a4:c6:ee:47:a4:5e:9a:8e:cf:99:
6c:c8:1e:a4:33:a4:9c:60:99:8a:4b:24:79:11:0c:
b1:54:ef:a0:8b:a0:8e:7c:00:41:35:ca:50:09:10:
7c:0e:80:7d:d2:b2:5b:41:84:92:39:41:56:12:24:
f5:65:8b:4c:fe:33:0a:60:2c:1c:69:d5:3a:6a:c6:
0a:04:87:28:4a:6b:11:6f:46:f8:0f:09:81:66:14:
b1:b8:5b:2b:3a:a0:82:3d:21:fe:b9:23:17:b7:84:
56:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C0:AC:DB:04:61:D8:82:59:A8:97:DD:C3:0E:14:EC:5E:C1:2A:40
X509v3 Authority Key Identifier:
keyid:65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:00:fb:6f:bc:f4:a5:06:ca:ba:0f:44:a8:29:87:4f:d6:62:
10:e8:9e:a7:c1:5d:7a:ff:9b:90:62:ea:a5:0d:5c:17:ca:35:
ad:75:d7:c0:73:6f:d7:8f:f5:87:e0:be:d3:e0:cc:2f:64:f0:
4b:11:a9:c3:71:10:4b:84:14:30:0b:7f:7d:24:7f:b9:e4:2d:
90:8e:cb:75:60:a2:0a:f5:2e:d8:19:96:16:78:98:df:50:e5:
07:9a:57:63:35:9f:e0:2e:0e:17:e7:75:ae:81:f6:69:83:55:
31:cf:38:7f:71:b0:27:b5:d8:e9:03:33:3a:12:cc:57:b6:c4:
1e:02:58:59:00:95:e9:13:18:f5:66:11:65:0f:ae:d1:aa:0f:
de:22:87:93:68:c4:f8:6f:09:5d:99:4a:0f:58:05:9b:be:56:
c1:25:c8:02:70:e9:17:7c:f9:eb:fb:96:cd:2e:a8:50:91:f6:
0c:ba:40:f9:48:ff:ea:3b:a5:ff:4e:66:12:50:10:4b:9a:06:
27:2b:fe:f4:ff:01:31:1e:cf:32:f7:9d:87:4a:7d:f8:49:f7:
ff:26:0d:b5:b7:48:83:19:9a:2e:51:c5:d3:77:ac:3d:5c:08:
1b:a7:1c:06:60:d7:94:05:df:0b:e8:d0:22:53:a0:52:a9:66:
5f:e9:85:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4cfYqV/+U9gcb3hmEU8YOIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1ZDA5MzIxNzJhYTJkMWM3N2M0YmI5ODM3MGFhYjNkZTZh
YzM0NTcwHhcNMjYwNTEyMTQwMDQ5WhcNMjYwNTEzMTQwMDQ5WjAzMTEwLwYDVQQD
EyhmY2MwYWNkYjA0NjFkODgyNTlhODk3ZGRjMzBlMTRlYzVlYzEyYTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwE4xQacDkDCXMktTk0PeoZhsrrCz
sQuP+F7xTsB5zfYBjahnQsKUs/BsY16ifaW5Zt0OHCTn+mYiET/c/PlllkH2LC61
OXWH73sJ4WnT/twgONNTHA6A4W/FrzUP2f7eAhQkFLfGuDVE4uOdXWy8l4qiHnOk
r5OlEiq5Ad0ak4cX1RBKt4+i7ZBzUYZPhkf6KP7fmG6tr3UQLKTG7kekXpqOz5ls
yB6kM6ScYJmKSyR5EQyxVO+gi6COfABBNcpQCRB8DoB90rJbQYSSOUFWEiT1ZYtM
/jMKYCwcadU6asYKBIcoSmsRb0b4DwmBZhSxuFsrOqCCPSH+uSMXt4RW8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPzArNsEYdiCWaiX3cMOFOxewSpAMB8GA1UdIwQY
MBaAFGXQkyFyqi0cd8S7mDcKqz3mrDRXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmRDVElYS3FMUngzeEx1WU53cXJQZWFzTkZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9mYTc3MTEtMzdmZi00YWVjLTk4NTMt
MWVkZGU2YzlkOTZhLzEvWmRDVElYS3FMUngzeEx1WU53cXJQZWFzTkZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9mYTc3MTEtMzdmZi00YWVjLTk4NTMtMWVkZGU2YzlkOTZh
LzEvWmRDVElYS3FMUngzeEx1WU53cXJQZWFzTkZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUwD7b7z0
pQbKug9EqCmHT9ZiEOiep8Fdev+bkGLqpQ1cF8o1rXXXwHNv14/1h+C+0+DML2Tw
SxGpw3EQS4QUMAt/fSR/ueQtkI7LdWCiCvUu2BmWFniY31DlB5pXYzWf4C4OF+d1
roH2aYNVMc84f3GwJ7XY6QMzOhLMV7bEHgJYWQCV6RMY9WYRZQ+u0aoP3iKHk2jE
+G8JXZlKD1gFm75WwSXIAnDpF3z56/uWzS6oUJH2DLpA+Uj/6jul/05mElAQS5oG
Jyv+9P8BMR7PMvedh0p9+En3/yYNtbdIgxmaLlHF03esPVwIG6ccBmDXlAXfC+jQ
IlOgUqlmX+mFPQ==
-----END CERTIFICATE-----
Generated at Tue May 12 21:29:26 2026 by rpki-client