Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft
File: 1-_zUUVtJMDkhZ1jec45PGujjIkw.mft (raw, json)
Hash identifier: cZaGhtelXB2lBS8I2Rd2RIeK4mDZQ2qdbSBBKhhZrdU=
Subject key identifier: 58:C3:34:97:9D:B9:08:4E:19:E7:47:1F:83:63:48:79:BF:63:ED:9D
Authority key identifier: FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
Certificate issuer: /CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Certificate serial: 019D29CE61355F510E7DBE1ED516BA4B4FB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft
Manifest number: 12AB
Signing time: Thu 26 Mar 2026 11:01:24 +0000
Manifest this update: Thu 26 Mar 2026 11:01:24 +0000
Manifest next update: Fri 27 Mar 2026 11:01:24 +0000
Files and hashes: 1: 1-_zUUVtJMDkhZ1jec45PGujjIkw.crl (hash: +X7XbyWuLjoO/mUsVO+4UNP2uTfqTMsvoObvuxvS6/M=)
2: 1-sZNf9muu9U1hhvyCSyDMfB8YpI.roa (hash: ZTCQU0Xa904Op6SoRgBrlLkJy0zOrm95WiClUW4+PNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:61:35:5f:51:0e:7d:be:1e:d5:16:ba:4b:4f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Validity
Not Before: Mar 26 11:01:24 2026 GMT
Not After : Mar 27 11:01:24 2026 GMT
Subject: CN=58c334979db9084e19e7471f83634879bf63ed9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a1:ac:9f:88:09:95:c8:37:6b:01:73:7e:ff:
95:2c:9a:cb:35:f3:7f:b8:e7:50:7f:5c:59:f8:8f:
67:77:43:d0:e5:5d:14:0d:90:31:7d:e8:b4:ed:58:
86:61:da:0d:a5:5b:24:6a:3c:1c:cc:93:07:88:60:
ec:74:96:5a:d5:fc:a9:37:6f:a1:67:1a:32:42:3d:
76:77:f2:1c:5a:cf:60:0d:25:26:2a:35:72:25:06:
1d:31:c5:fa:63:d9:41:0f:d8:d3:4b:96:67:8b:0f:
2c:a1:2e:37:89:a9:19:65:63:ae:6f:a7:2e:4c:d4:
b6:2f:7c:af:14:3e:99:fe:fa:13:c8:fd:07:39:8e:
20:e2:c9:12:37:2f:56:d3:51:4c:37:cc:5c:b9:37:
15:6a:46:b6:85:93:93:82:5f:ad:02:8b:e0:38:c6:
af:1e:3f:79:2d:96:8a:53:5a:49:de:47:f2:9f:4a:
8d:f5:b7:02:b9:cc:9e:8d:ca:07:80:16:fe:59:0c:
d3:ee:1d:93:c9:de:e4:ee:61:0f:d7:2a:fe:d6:33:
11:c1:83:a3:05:06:ac:39:e4:e6:89:a0:0d:e0:c1:
22:3f:c0:ee:e0:c0:62:e9:f0:a6:86:5f:37:42:ae:
72:64:d0:ce:8b:f8:b7:0b:89:4b:66:7e:7d:2b:07:
17:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C3:34:97:9D:B9:08:4E:19:E7:47:1F:83:63:48:79:BF:63:ED:9D
X509v3 Authority Key Identifier:
keyid:FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:ca:7a:92:91:af:93:d8:ea:c8:b0:b0:44:59:8a:de:4e:9a:
97:27:6a:78:50:b5:b8:a1:92:97:2e:29:b0:4d:78:1e:4e:79:
d4:6b:70:0f:4e:64:4d:f6:62:df:7e:2b:5b:9a:df:b8:38:fe:
81:f7:05:6d:4b:47:ba:23:c1:89:1d:85:01:9b:a9:b5:35:7c:
be:e2:1f:84:94:14:94:cc:7b:8b:3d:3e:10:05:9e:95:9b:3a:
ac:35:5c:41:8f:30:5c:19:e5:e9:29:65:35:e9:1c:b5:83:9a:
5f:98:c4:58:c0:25:99:8c:79:fb:5b:8f:b6:79:d9:54:e2:e6:
8c:50:2e:ac:d2:d3:9c:b5:ac:d3:b1:70:87:1a:53:0d:60:2e:
ff:bb:60:a9:b1:2d:10:0e:33:c9:c1:82:f2:4f:40:5f:f1:94:
d3:0c:69:db:a6:b0:43:44:13:4c:3c:75:5f:15:cd:e8:df:65:
d5:b5:bf:39:58:68:42:b5:ef:2c:42:35:80:dc:dd:23:2c:9e:
ce:8f:c3:63:2f:d8:17:22:9e:f6:8a:21:7f:91:e0:22:d1:60:
60:8e:41:fb:6b:7a:80:02:69:51:9b:7f:44:0d:49:8b:7a:5f:
a3:67:61:ae:db:31:a5:a8:de:f0:a6:f2:30:37:2c:e7:01:ec:
36:f1:46:55
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZ0pzmE1X1EOfb4e1Ra6S0+xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiZmNkNDUxNWI0OTMwMzkyMTY3NThkZTczOGU0ZjFhZThl
MzIyNGMwHhcNMjYwMzI2MTEwMTI0WhcNMjYwMzI3MTEwMTI0WjAzMTEwLwYDVQQD
Eyg1OGMzMzQ5NzlkYjkwODRlMTllNzQ3MWY4MzYzNDg3OWJmNjNlZDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqGsn4gJlcg3awFzfv+VLJrLNfN/
uOdQf1xZ+I9nd0PQ5V0UDZAxfei07ViGYdoNpVskajwczJMHiGDsdJZa1fypN2+h
ZxoyQj12d/IcWs9gDSUmKjVyJQYdMcX6Y9lBD9jTS5Zniw8soS43iakZZWOub6cu
TNS2L3yvFD6Z/voTyP0HOY4g4skSNy9W01FMN8xcuTcVaka2hZOTgl+tAovgOMav
Hj95LZaKU1pJ3kfyn0qN9bcCucyejcoHgBb+WQzT7h2Tyd7k7mEP1yr+1jMRwYOj
BQasOeTmiaAN4MEiP8Du4MBi6fCmhl83Qq5yZNDOi/i3C4lLZn59KwcX7wIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFFjDNJeduQhOGedHH4NjSHm/Y+2dMB8GA1UdIwQY
MBaAFPv81FFbSTA5IWdY3nOOTxro4yJMMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1felVVVnRKTURraFoxamVjNDVQR3Vqaklrdy5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjgvZDY0ODZhLThmZjctNDI2Zi04ZDg2
LTA5OGQwNGNlNTFiMi8xLzEtX3pVVVZ0Sk1Ea2haMWplYzQ1UEd1ampJa3cubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzY4L2Q2NDg2YS04ZmY3LTQyNmYtOGQ4Ni0wOThkMDRjZTUx
YjIvMS8xLV96VVVWdEpNRGtoWjFqZWM0NVBHdWpqSWt3LmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACMp6
kpGvk9jqyLCwRFmK3k6alydqeFC1uKGSly4psE14Hk551GtwD05kTfZi334rW5rf
uDj+gfcFbUtHuiPBiR2FAZuptTV8vuIfhJQUlMx7iz0+EAWelZs6rDVcQY8wXBnl
6SllNekctYOaX5jEWMAlmYx5+1uPtnnZVOLmjFAurNLTnLWs07FwhxpTDWAu/7tg
qbEtEA4zycGC8k9AX/GU0wxp26awQ0QTTDx1XxXN6N9l1bW/OVhoQrXvLEI1gNzd
Iyyezo/DYy/YFyKe9oohf5HgItFgYI5B+2t6gAJpUZt/RA1Ji3pfo2dhrtsxpaje
8KbyMDcs5wHsNvFGVQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 15:01:09 2026 by rpki-client