Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json)
Hash identifier: DiJOyNyOjAZLRqWxGaMISqpteJ5vYps0gecl4+22aSE=
Subject key identifier: E1:91:25:4A:AD:BC:BD:A7:52:ED:26:AF:00:2D:22:BA:D3:49:28:8C
Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Certificate serial: 019E1F1140D1049E22FC7056DE1A92997D5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
Manifest number: 1609
Signing time: Wed 13 May 2026 02:01:24 +0000
Manifest this update: Wed 13 May 2026 02:01:24 +0000
Manifest next update: Thu 14 May 2026 02:01:24 +0000
Files and hashes: 1: beStaP3U9BouVtR6HKL7Bht809g.roa (hash: 9C0Yz+gtWBKD86eXJ/yNK0jQEWAJqpkTW4DLxbpVN08=)
2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: KguZFopuM/1Ky30S2jGC1FD2YD39TITd1mMO+JQNxWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:40:d1:04:9e:22:fc:70:56:de:1a:92:99:7d:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Validity
Not Before: May 13 02:01:24 2026 GMT
Not After : May 14 02:01:24 2026 GMT
Subject: CN=e191254aadbcbda752ed26af002d22bad349288c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:71:73:e9:bc:eb:e8:e2:89:35:fa:05:91:36:
8f:54:d2:36:c1:db:a0:e6:a1:4e:33:30:27:e8:03:
af:e1:d1:1e:4a:a6:91:fa:f1:c2:b1:2c:5b:73:6b:
69:6c:9d:69:fa:c9:3c:5e:e0:8d:5d:9f:71:d3:68:
f8:6c:64:64:45:fa:7a:08:96:12:e4:94:6d:a5:85:
06:b2:36:18:ee:29:85:7f:71:6a:70:02:ca:e3:ed:
62:bf:7c:8a:e7:d9:e9:8b:da:10:05:f4:6b:55:8d:
76:0e:78:c6:40:ce:63:95:d3:92:a5:e5:88:68:8d:
be:6a:80:57:cd:15:36:4d:3d:33:53:38:dd:56:04:
06:99:d6:0a:29:a4:2b:d7:da:e1:1a:b0:c2:78:bc:
ad:20:83:37:a5:c9:9c:34:24:31:c3:0c:3a:10:f3:
23:63:b0:1e:c2:9c:ba:db:b4:a2:de:08:71:42:7a:
8b:b8:05:0b:01:94:ab:dc:b5:1a:e1:90:dd:9b:83:
82:95:fe:de:ea:81:e0:24:5a:d0:4c:41:21:eb:86:
69:03:5e:87:47:5f:6b:0d:90:2e:05:48:9d:7b:cd:
34:a8:a6:8b:ac:56:1a:64:1f:eb:46:76:27:a6:32:
87:5f:27:d0:9c:2b:09:09:23:12:f6:db:41:71:47:
69:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:91:25:4A:AD:BC:BD:A7:52:ED:26:AF:00:2D:22:BA:D3:49:28:8C
X509v3 Authority Key Identifier:
keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:6c:e0:99:b9:cf:77:5b:e1:de:5a:65:bf:ac:5d:3f:cb:a4:
47:7a:ce:54:1d:f4:bb:79:81:09:62:b9:d3:2b:42:a5:95:ab:
b3:68:6e:e9:0c:2b:4c:90:3a:71:14:79:3a:f5:c0:74:f3:05:
e2:22:d9:d7:6a:94:76:a5:6a:29:c4:a1:4b:8a:33:7a:f6:15:
8d:1f:b7:02:c9:a7:cb:a5:73:f0:1a:cd:20:04:80:33:c5:c9:
a5:a2:62:97:f6:84:90:ab:f5:88:f2:21:69:2d:f5:b5:69:f4:
2a:32:da:aa:0b:52:f7:f6:1e:a1:e2:e0:76:30:a8:fe:cc:a4:
47:32:32:47:4b:ae:62:d9:77:8b:b9:49:62:fd:0d:1c:f5:90:
9f:08:54:94:4d:24:eb:b7:ce:f3:70:9f:f9:41:e0:16:b0:08:
cd:bc:a8:99:1d:5a:20:2a:8c:a0:0a:73:20:c0:d1:16:ff:f3:
45:fa:8e:51:7a:b6:02:fe:36:12:38:24:96:9e:80:c0:78:2f:
44:31:0d:9c:26:67:4c:58:ef:28:9d:e7:8f:64:59:da:6a:21:
8f:08:3c:0e:64:81:22:c6:91:d2:6f:ef:0b:25:92:4b:93:32:
8e:0d:a9:fc:b8:4b:dd:68:13:98:b6:8e:4f:83:58:8d:7d:8c:
55:86:ad:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fEUDRBJ4i/HBW3hqSmX1bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMTQzNjkwMjMwYTQ0MGE2OGI3YThhYTk4Mjc5ZjJmNjVk
ZmVlMjgwHhcNMjYwNTEzMDIwMTI0WhcNMjYwNTE0MDIwMTI0WjAzMTEwLwYDVQQD
EyhlMTkxMjU0YWFkYmNiZGE3NTJlZDI2YWYwMDJkMjJiYWQzNDkyODhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHFz6bzr6OKJNfoFkTaPVNI2wdug
5qFOMzAn6AOv4dEeSqaR+vHCsSxbc2tpbJ1p+sk8XuCNXZ9x02j4bGRkRfp6CJYS
5JRtpYUGsjYY7imFf3FqcALK4+1iv3yK59npi9oQBfRrVY12DnjGQM5jldOSpeWI
aI2+aoBXzRU2TT0zUzjdVgQGmdYKKaQr19rhGrDCeLytIIM3pcmcNCQxwww6EPMj
Y7Aewpy627Si3ghxQnqLuAULAZSr3LUa4ZDdm4OClf7e6oHgJFrQTEEh64ZpA16H
R19rDZAuBUide800qKaLrFYaZB/rRnYnpjKHXyfQnCsJCSMS9ttBcUdp0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOGRJUqtvL2nUu0mrwAtIrrTSSiMMB8GA1UdIwQY
MBaAFM0UNpAjCkQKaLeoqpgnny9l3+4oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8wOTQ1NmUtYTcxYy00M2IzLWJkNDAt
OGVlM2Q5OGNhZDViLzEvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS8wOTQ1NmUtYTcxYy00M2IzLWJkNDAtOGVlM2Q5OGNhZDVi
LzEvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGmzgmbnP
d1vh3lplv6xdP8ukR3rOVB30u3mBCWK50ytCpZWrs2hu6QwrTJA6cRR5OvXAdPMF
4iLZ12qUdqVqKcShS4ozevYVjR+3Asmny6Vz8BrNIASAM8XJpaJil/aEkKv1iPIh
aS31tWn0KjLaqgtS9/YeoeLgdjCo/sykRzIyR0uuYtl3i7lJYv0NHPWQnwhUlE0k
67fO83Cf+UHgFrAIzbyomR1aICqMoApzIMDRFv/zRfqOUXq2Av42Ejgklp6AwHgv
RDENnCZnTFjvKJ3nj2RZ2mohjwg8DmSBIsaR0m/vCyWSS5Myjg2p/LhL3WgTmLaO
T4NYjX2MVYat4A==
-----END CERTIFICATE-----
Generated at Wed May 13 08:59:39 2026 by rpki-client