Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json)
Hash identifier: z/qqkk5af+44jMCbBwwzMlj+50Kzu5+mfw8ghybuR9Y=
Subject key identifier: D0:3C:BF:4E:65:C9:F4:F6:35:A9:B3:A0:2F:F9:DF:AA:EF:9C:73:C5
Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Certificate serial: 019E20C831AB997FB0B290B0513A0ACE780F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
Manifest number: 097B
Signing time: Wed 13 May 2026 10:00:51 +0000
Manifest this update: Wed 13 May 2026 10:00:51 +0000
Manifest next update: Thu 14 May 2026 10:00:51 +0000
Files and hashes: 1: EeAR-0FuIgpREXK4CZj7bbiR324.roa (hash: nK35rOT9ZlV+vNlZLQE4MxQolHHOslBBZTHEZhrQ+LA=)
2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: M9KcU+TXjL9jlDOeDQLEWao7SNkSSzGqZimglSMZ27M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:31:ab:99:7f:b0:b2:90:b0:51:3a:0a:ce:78:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7
Validity
Not Before: May 13 10:00:51 2026 GMT
Not After : May 14 10:00:51 2026 GMT
Subject: CN=d03cbf4e65c9f4f635a9b3a02ff9dfaaef9c73c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f0:10:66:1c:cd:00:d6:d9:ea:31:f0:ad:a6:
34:27:08:b5:10:da:05:33:06:9e:87:63:25:98:df:
f4:2e:f4:b9:71:56:da:5c:66:25:34:d7:36:7e:cc:
84:c0:c4:63:45:01:f6:df:09:32:8f:37:f1:7c:cb:
df:04:ed:46:d1:d8:80:21:99:66:b8:c8:16:14:8a:
be:7d:45:91:4c:8b:51:99:e9:44:32:d4:08:5c:42:
88:69:65:69:c8:a1:14:5e:f7:c4:25:61:22:16:b1:
1e:e5:a0:1a:c6:a4:08:5a:e3:65:7e:1e:1d:c6:02:
36:1e:01:3d:16:08:4e:4e:07:ef:c1:39:a0:e6:2a:
c1:38:7d:c5:54:fa:ed:1d:56:ce:0f:8f:88:c2:a8:
7a:1c:c5:ad:49:71:54:43:3a:0f:3f:3c:9e:65:38:
55:44:72:35:10:e2:0c:e3:be:e8:5d:2e:16:38:8f:
79:f9:50:7e:3c:67:42:3d:e3:64:a3:d2:a9:47:e4:
82:50:5f:bf:0b:e7:e4:45:e2:4e:bc:f6:6c:05:15:
b4:41:99:72:b5:7c:ee:c1:2f:9c:30:0b:2b:df:e2:
0b:11:97:df:bd:82:e0:bd:3e:32:b9:ec:d2:86:4d:
86:90:81:1a:13:f3:75:5b:1d:77:38:2a:05:1b:cc:
b2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:3C:BF:4E:65:C9:F4:F6:35:A9:B3:A0:2F:F9:DF:AA:EF:9C:73:C5
X509v3 Authority Key Identifier:
keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:a2:24:ce:0f:58:4d:e8:35:5b:c7:c8:28:85:0f:50:66:46:
83:ad:d8:d4:3c:31:96:4c:7b:7a:1b:61:3c:ff:26:e7:b0:72:
d8:bf:68:09:41:11:f9:e9:f9:3f:76:08:2e:c5:d9:e2:8a:b3:
50:d8:93:85:38:5b:d6:ec:2c:8b:42:2b:c4:9e:bb:21:a1:1e:
ab:2a:56:1e:48:9b:12:53:1c:e5:19:af:e1:b6:03:eb:73:89:
80:89:de:68:b0:68:19:bd:46:3b:f7:b5:87:97:fd:a5:32:9b:
ee:08:34:86:94:de:32:2a:4d:e2:25:ef:b9:72:fa:ac:ab:07:
31:75:54:55:e9:53:93:49:6f:d6:83:23:4a:d7:c0:4d:a6:fe:
6c:b3:0b:3c:39:92:ad:ac:bc:6b:18:68:9f:8e:40:6c:2d:bd:
50:fa:54:3d:6b:38:fb:8c:13:fc:7a:94:d0:c2:e8:24:1c:10:
d1:f8:e3:ed:5a:92:bc:7c:5e:67:12:86:81:1c:17:a5:7a:fe:
a8:49:c7:2a:24:49:14:ab:d9:7e:77:de:c3:d4:0a:13:e4:be:
48:a4:f6:cc:ec:b6:b9:48:f1:00:77:b2:c9:e6:8c:27:75:5f:
c9:a6:95:8b:ff:3d:88:e6:7e:db:c8:f9:4f:7a:0d:5b:43:41:
b8:69:e0:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gyDGrmX+wspCwUToKzngPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMjI0Yzg0YWViYTg1OWI5MGM4OTM2Y2JhNjE2N2VlNGM0
NGVjZTcwHhcNMjYwNTEzMTAwMDUxWhcNMjYwNTE0MTAwMDUxWjAzMTEwLwYDVQQD
EyhkMDNjYmY0ZTY1YzlmNGY2MzVhOWIzYTAyZmY5ZGZhYWVmOWM3M2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/AQZhzNANbZ6jHwraY0Jwi1ENoF
Mwaeh2MlmN/0LvS5cVbaXGYlNNc2fsyEwMRjRQH23wkyjzfxfMvfBO1G0diAIZlm
uMgWFIq+fUWRTItRmelEMtQIXEKIaWVpyKEUXvfEJWEiFrEe5aAaxqQIWuNlfh4d
xgI2HgE9FghOTgfvwTmg5irBOH3FVPrtHVbOD4+Iwqh6HMWtSXFUQzoPPzyeZThV
RHI1EOIM477oXS4WOI95+VB+PGdCPeNko9KpR+SCUF+/C+fkReJOvPZsBRW0QZly
tXzuwS+cMAsr3+ILEZffvYLgvT4yuezShk2GkIEaE/N1Wx13OCoFG8yyaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNA8v05lyfT2NamzoC/536rvnHPFMB8GA1UdIwQY
MBaAFM8iTISuuoWbkMiTbLphZ+5MROznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEt
NTk2MjI1MDMxZWUzLzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEtNTk2MjI1MDMxZWUz
LzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZKIkzg9Y
Teg1W8fIKIUPUGZGg63Y1Dwxlkx7ehthPP8m57By2L9oCUER+en5P3YILsXZ4oqz
UNiThThb1uwsi0IrxJ67IaEeqypWHkibElMc5Rmv4bYD63OJgIneaLBoGb1GO/e1
h5f9pTKb7gg0hpTeMipN4iXvuXL6rKsHMXVUVelTk0lv1oMjStfATab+bLMLPDmS
ray8axhon45AbC29UPpUPWs4+4wT/HqU0MLoJBwQ0fjj7VqSvHxeZxKGgRwXpXr+
qEnHKiRJFKvZfnfew9QKE+S+SKT2zOy2uUjxAHeyyeaMJ3VfyaaVi/89iOZ+28j5
T3oNW0NBuGngsQ==
-----END CERTIFICATE-----
Generated at Wed May 13 13:58:51 2026 by rpki-client