Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
File: zkn8E0twZULK8aHvvgNPcBG0lDY.mft (raw, json)
Hash identifier: hRktUjxWsfTEz+7McsVh96p3LZVpGjhZpW0ccmkDTgQ=
Subject key identifier: 63:74:66:20:6B:72:F8:95:F7:76:16:8D:83:9F:C9:93:34:13:03:71
Authority key identifier: CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
Certificate issuer: /CN=ce49fc134b706542caf1a1efbe034f7011b49436
Certificate serial: 019D288459B2FC9DB83830A4DE8748DF4E88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
Manifest number: 07AF
Signing time: Thu 26 Mar 2026 05:00:55 +0000
Manifest this update: Thu 26 Mar 2026 05:00:55 +0000
Manifest next update: Fri 27 Mar 2026 05:00:55 +0000
Files and hashes: 1: jv18kUzHEBlDlkIHJKkxODrKqc0.roa (hash: wdFZODPpunDdGOXTc+SSGtgRA0zL9y523IFxS0/YWn0=)
2: zkn8E0twZULK8aHvvgNPcBG0lDY.crl (hash: XYF6mMjEEZNUUkwSV2alE/s228jZpDFRqSFqChpFhqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:59:b2:fc:9d:b8:38:30:a4:de:87:48:df:4e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce49fc134b706542caf1a1efbe034f7011b49436
Validity
Not Before: Mar 26 05:00:55 2026 GMT
Not After : Mar 27 05:00:55 2026 GMT
Subject: CN=637466206b72f895f776168d839fc99334130371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:95:a6:c4:74:74:ae:b0:47:ca:d5:8c:31:c1:
90:67:f7:9f:d9:be:8f:58:18:d7:d8:56:88:bc:d7:
6c:c6:28:52:56:85:0b:c0:63:b5:a5:b7:8c:ab:06:
bf:6b:2c:72:5c:10:62:54:89:01:62:1b:53:94:95:
e5:c0:93:45:90:4f:66:ea:01:14:f8:57:1b:81:e8:
3e:d3:b1:a5:cb:36:58:96:55:06:99:8b:12:c7:0a:
e1:98:2a:1e:ac:49:14:fa:54:3e:9a:63:66:6e:39:
91:d3:da:24:9a:cc:97:d0:bb:32:5b:e7:96:5a:58:
d2:71:45:e9:cb:04:67:8b:aa:0a:a7:92:ab:a5:06:
01:5a:04:26:21:c8:e8:d6:2b:0d:b5:ab:1b:f9:5f:
66:da:11:e4:79:ea:5c:06:cc:ff:bc:4f:99:50:a0:
4f:96:39:1e:7e:fe:61:53:e8:4e:bb:3c:21:a0:f5:
b4:6d:93:ea:8d:22:c5:a8:b0:65:59:aa:28:57:85:
fd:56:1a:cf:4c:1d:e6:00:99:93:6f:87:33:61:dc:
04:3d:5b:e4:33:9b:fb:94:0c:35:3e:68:e7:a3:43:
29:e6:bd:27:9f:7c:6b:ac:0f:5e:7a:f1:f3:67:e4:
3a:34:13:74:e1:de:8f:8a:0b:b4:ff:c1:28:b3:a7:
f4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:74:66:20:6B:72:F8:95:F7:76:16:8D:83:9F:C9:93:34:13:03:71
X509v3 Authority Key Identifier:
keyid:CE:49:FC:13:4B:70:65:42:CA:F1:A1:EF:BE:03:4F:70:11:B4:94:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkn8E0twZULK8aHvvgNPcBG0lDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/01dbbc-2fba-4d97-85f6-641edda06cce/1/zkn8E0twZULK8aHvvgNPcBG0lDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:93:78:f2:1c:67:f3:6c:47:82:66:8c:d1:c5:29:a1:b5:37:
77:e3:5d:79:e0:d3:4a:f1:00:a1:11:88:95:9f:f6:ff:3f:15:
d1:6b:e0:73:21:be:d1:be:62:f9:f0:dd:3e:81:41:f9:ca:99:
8e:94:81:f6:17:43:32:0c:40:28:f0:06:07:11:72:28:f1:d1:
36:cd:1f:96:5c:f5:a9:f3:a8:44:8d:5c:aa:e1:0b:6b:b4:96:
64:87:a0:70:c8:6a:27:98:ad:c7:40:cc:29:b9:3c:50:de:a9:
d1:d3:99:db:fa:52:62:d4:eb:a3:76:47:e4:a0:99:f5:ad:e7:
d3:3c:43:6f:2f:62:e7:51:b6:a9:b3:2e:27:cd:fd:54:f5:80:
3c:09:b1:dd:65:b8:78:cc:d1:f9:05:ef:95:54:9e:e2:1d:6c:
c1:b8:14:c3:1a:b1:57:cb:e3:49:b1:14:d4:8b:24:5d:97:23:
22:86:ef:76:e6:3a:14:2d:c5:41:85:a0:9a:74:27:b5:6a:de:
7d:fa:bd:9b:5c:32:9c:2b:9b:a8:07:34:66:ff:7f:69:b3:78:
ec:b0:20:d2:de:e4:ec:be:de:49:b7:9a:e2:55:cc:57:d8:f9:
a9:22:ac:b9:d4:ab:f5:bb:5e:fa:be:f8:57:ce:2b:12:3a:34:
47:f6:71:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ohFmy/J24ODCk3odI306IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNDlmYzEzNGI3MDY1NDJjYWYxYTFlZmJlMDM0ZjcwMTFi
NDk0MzYwHhcNMjYwMzI2MDUwMDU1WhcNMjYwMzI3MDUwMDU1WjAzMTEwLwYDVQQD
Eyg2Mzc0NjYyMDZiNzJmODk1Zjc3NjE2OGQ4MzlmYzk5MzM0MTMwMzcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JWmxHR0rrBHytWMMcGQZ/ef2b6P
WBjX2FaIvNdsxihSVoULwGO1pbeMqwa/ayxyXBBiVIkBYhtTlJXlwJNFkE9m6gEU
+Fcbgeg+07GlyzZYllUGmYsSxwrhmCoerEkU+lQ+mmNmbjmR09okmsyX0LsyW+eW
WljScUXpywRni6oKp5KrpQYBWgQmIcjo1isNtasb+V9m2hHkeepcBsz/vE+ZUKBP
ljkefv5hU+hOuzwhoPW0bZPqjSLFqLBlWaooV4X9VhrPTB3mAJmTb4czYdwEPVvk
M5v7lAw1Pmjno0Mp5r0nn3xrrA9eevHzZ+Q6NBN04d6Pigu0/8Eos6f0AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGN0ZiBrcviV93YWjYOfyZM0EwNxMB8GA1UdIwQY
MBaAFM5J/BNLcGVCyvGh774DT3ARtJQ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS8wMWRiYmMtMmZiYS00ZDk3LTg1ZjYt
NjQxZWRkYTA2Y2NlLzEvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS8wMWRiYmMtMmZiYS00ZDk3LTg1ZjYtNjQxZWRkYTA2Y2Nl
LzEvemtuOEUwdHdaVUxLOGFIdnZnTlBjQkcwbERZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaJN48hxn
82xHgmaM0cUpobU3d+NdeeDTSvEAoRGIlZ/2/z8V0WvgcyG+0b5i+fDdPoFB+cqZ
jpSB9hdDMgxAKPAGBxFyKPHRNs0fllz1qfOoRI1cquELa7SWZIegcMhqJ5itx0DM
Kbk8UN6p0dOZ2/pSYtTro3ZH5KCZ9a3n0zxDby9i51G2qbMuJ839VPWAPAmx3WW4
eMzR+QXvlVSe4h1swbgUwxqxV8vjSbEU1IskXZcjIobvduY6FC3FQYWgmnQntWre
ffq9m1wynCubqAc0Zv9/abN47LAg0t7k7L7eSbea4lXMV9j5qSKsudSr9bte+r74
V84rEjo0R/ZxDg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:13:23 2026 by rpki-client