Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
File: czFVtC-vxzVab8gJx9nM9bL4zcI.mft (raw, json)
Hash identifier: ezbtRzMnrljfw+YIp5eluCGT2YoPWVrP9v8R6nPAwak=
Subject key identifier: AF:96:37:9C:C7:71:86:1B:34:B8:1C:11:F4:25:F6:14:EE:AC:C9:B5
Authority key identifier: 73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
Certificate issuer: /CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Certificate serial: 019D2628238AEDD2F62DF389F436BE6C72EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
Manifest number: 07AE
Signing time: Wed 25 Mar 2026 18:00:57 +0000
Manifest this update: Wed 25 Mar 2026 18:00:57 +0000
Manifest next update: Thu 26 Mar 2026 18:00:57 +0000
Files and hashes: 1: 5-xO46xG92m4RLESqBYUlz1rTO0.roa (hash: VW7h/KCsNr8SieeOMajNaHxkUL9nYiq4PR2CnWkp8G8=)
2: czFVtC-vxzVab8gJx9nM9bL4zcI.crl (hash: MWprfm9mCN+u6hj7MzVMjvKaCHu6Xphmcze1VDehGPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:23:8a:ed:d2:f6:2d:f3:89:f4:36:be:6c:72:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Validity
Not Before: Mar 25 18:00:57 2026 GMT
Not After : Mar 26 18:00:57 2026 GMT
Subject: CN=af96379cc771861b34b81c11f425f614eeacc9b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:36:5a:7f:ac:94:39:be:bc:89:9a:8a:3e:02:
92:0f:c3:7b:a4:02:0c:26:c8:db:06:49:a2:8a:1e:
22:73:74:14:e1:2c:34:b1:2d:90:26:1f:18:84:ae:
c2:2c:5d:07:55:38:c0:99:b6:9b:97:9f:41:e1:17:
14:23:1e:cf:6b:15:e1:85:08:23:f5:29:b1:f6:2c:
ab:57:35:65:7c:24:9e:91:24:ee:d7:25:9a:e3:c3:
24:85:ca:9e:91:fd:79:3d:f1:c3:c4:7f:41:e3:c8:
a5:77:f8:be:98:cb:e4:8d:0f:bd:e4:1c:65:33:55:
0b:20:05:3c:dd:a2:4e:06:a3:91:8c:8a:41:63:d5:
46:22:b3:72:e7:bb:fb:ca:ae:d0:6d:b9:35:88:ce:
78:f6:73:5e:65:98:2e:22:7b:1e:26:c4:0a:a2:a8:
e2:dd:85:f2:01:7b:8f:8b:45:a5:b5:a0:4a:80:39:
1d:24:21:35:09:d7:00:be:69:eb:f2:f4:b4:6e:fd:
6d:05:f2:d0:c6:1f:d6:62:45:59:d5:3e:c5:a2:d1:
99:de:5a:de:d0:86:e2:4c:11:db:9b:ef:f0:cd:80:
fa:8c:4b:72:f4:65:c7:26:cd:d3:ac:7a:71:f2:e5:
57:db:a1:ec:96:90:e7:77:41:9e:bb:36:62:75:30:
70:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:96:37:9C:C7:71:86:1B:34:B8:1C:11:F4:25:F6:14:EE:AC:C9:B5
X509v3 Authority Key Identifier:
keyid:73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:fc:d6:a0:0b:e9:e7:85:0a:7b:12:ea:6c:59:05:22:3d:3e:
ad:e9:b1:48:1e:57:e9:5b:c4:c1:94:2c:b5:74:3c:2d:da:3c:
5a:93:7e:78:9d:39:22:0d:15:ab:63:75:22:c7:64:18:66:36:
ff:05:0f:3a:07:d9:50:cf:08:84:4f:2e:61:d8:9d:4c:d5:dc:
f1:0d:ce:ba:3a:45:61:eb:95:15:64:ac:41:5f:b9:11:97:7e:
25:8b:bd:ab:21:49:06:44:c0:f2:6a:d1:8b:5e:f2:09:2c:d4:
7a:d6:58:a5:a4:a9:0e:00:b4:52:63:28:bc:de:7f:e6:c8:83:
b7:2e:53:25:37:cb:78:fb:ac:e7:a3:63:12:8a:7e:29:cb:bb:
a6:91:18:8f:c6:29:5d:6c:0b:03:7e:bd:44:c0:7e:22:a1:29:
6b:34:c9:38:6a:24:c9:7f:e6:78:db:95:09:33:12:04:95:7d:
19:9a:e4:5d:3d:3b:18:86:8a:d9:21:47:48:d5:e0:79:94:50:
d1:74:14:c5:36:ea:17:04:3f:4d:0d:06:26:22:8b:b7:80:6a:
0d:92:9e:6e:12:ba:03:c5:8a:33:4f:5f:98:01:aa:00:d5:f5:
69:83:03:2e:dd:7f:0e:a7:0a:55:b9:b5:68:60:62:dd:23:1e:
5a:ea:56:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mKCOK7dL2LfOJ9Da+bHLsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczMzE1NWI0MmZhZmM3MzU1YTZmYzgwOWM3ZDljY2Y1YjJm
OGNkYzIwHhcNMjYwMzI1MTgwMDU3WhcNMjYwMzI2MTgwMDU3WjAzMTEwLwYDVQQD
EyhhZjk2Mzc5Y2M3NzE4NjFiMzRiODFjMTFmNDI1ZjYxNGVlYWNjOWI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2TZaf6yUOb68iZqKPgKSD8N7pAIM
JsjbBkmiih4ic3QU4Sw0sS2QJh8YhK7CLF0HVTjAmbabl59B4RcUIx7PaxXhhQgj
9Smx9iyrVzVlfCSekSTu1yWa48Mkhcqekf15PfHDxH9B48ild/i+mMvkjQ+95Bxl
M1ULIAU83aJOBqORjIpBY9VGIrNy57v7yq7Qbbk1iM549nNeZZguInseJsQKoqji
3YXyAXuPi0WltaBKgDkdJCE1CdcAvmnr8vS0bv1tBfLQxh/WYkVZ1T7FotGZ3lre
0IbiTBHbm+/wzYD6jEty9GXHJs3TrHpx8uVX26HslpDnd0GeuzZidTBwaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK+WN5zHcYYbNLgcEfQl9hTurMm1MB8GA1UdIwQY
MBaAFHMxVbQvr8c1Wm/ICcfZzPWy+M3CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3pGVnRDLXZ4elZhYjhnSng5bk05Ykw0emNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS80Y2VmZjAtMGFlNC00MTRjLWEwZjYt
ZTUxZTZlZjVkM2IxLzEvY3pGVnRDLXZ4elZhYjhnSng5bk05Ykw0emNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS80Y2VmZjAtMGFlNC00MTRjLWEwZjYtZTUxZTZlZjVkM2Ix
LzEvY3pGVnRDLXZ4elZhYjhnSng5bk05Ykw0emNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHvzWoAvp
54UKexLqbFkFIj0+remxSB5X6VvEwZQstXQ8Ldo8WpN+eJ05Ig0Vq2N1IsdkGGY2
/wUPOgfZUM8IhE8uYdidTNXc8Q3OujpFYeuVFWSsQV+5EZd+JYu9qyFJBkTA8mrR
i17yCSzUetZYpaSpDgC0UmMovN5/5siDty5TJTfLePus56NjEop+Kcu7ppEYj8Yp
XWwLA369RMB+IqEpazTJOGokyX/meNuVCTMSBJV9GZrkXT07GIaK2SFHSNXgeZRQ
0XQUxTbqFwQ/TQ0GJiKLt4BqDZKebhK6A8WKM09fmAGqANX1aYMDLt1/DqcKVbm1
aGBi3SMeWupWTg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:55 2026 by rpki-client