Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
File: ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft (raw, json)
Hash identifier: pvGxwe/Kda3Qy8VADhirJG5ae7KMss5+pw7DmnZE1mI=
Subject key identifier: FF:F8:F3:7B:D8:70:DC:BE:06:89:DD:47:F9:E4:E6:73:2A:6B:D7:08
Authority key identifier: 64:D7:F7:E1:74:17:9A:13:3E:30:C6:60:ED:FA:86:E7:4A:40:DD:95
Certificate issuer: /CN=64d7f7e174179a133e30c660edfa86e74a40dd95
Certificate serial: 019D284E590F61983BBFDEF8099681F9AE6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
Manifest number: 1882
Signing time: Thu 26 Mar 2026 04:01:56 +0000
Manifest this update: Thu 26 Mar 2026 04:01:56 +0000
Manifest next update: Fri 27 Mar 2026 04:01:56 +0000
Files and hashes: 1: ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl (hash: MCJ6gT+GHj4tH5tTR5SxetrEtjZR3PlHCZien4+pvMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:59:0f:61:98:3b:bf:de:f8:09:96:81:f9:ae:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64d7f7e174179a133e30c660edfa86e74a40dd95
Validity
Not Before: Mar 26 04:01:56 2026 GMT
Not After : Mar 27 04:01:56 2026 GMT
Subject: CN=fff8f37bd870dcbe0689dd47f9e4e6732a6bd708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c5:c8:cb:ca:1d:6e:80:6c:c7:ad:c4:2c:a7:
c5:f3:a3:a4:f6:a6:ab:72:79:82:44:8a:de:d4:96:
02:16:a4:fe:fe:af:77:84:c8:96:ff:47:1e:23:7a:
d3:18:cf:2c:3b:03:ce:dd:e0:16:68:7c:ce:56:b4:
72:e2:07:ff:ff:25:41:94:1f:a7:39:ac:44:1f:7f:
4e:3c:7d:fe:49:e9:ec:23:05:81:29:5b:bf:10:3b:
70:ad:2f:78:02:27:8c:7f:e7:f6:66:71:4e:aa:4d:
90:a4:90:c7:08:cb:49:47:5f:77:93:91:ce:14:1e:
52:c7:fc:6c:31:d4:71:6c:41:66:b5:b0:a1:4d:0a:
2b:e6:92:04:0b:32:85:d5:22:93:4b:22:4e:58:82:
a9:8c:19:0e:46:1f:b2:dd:cf:d8:1e:ff:44:b7:57:
d1:e4:bf:e4:59:94:84:5c:1f:49:23:4c:a6:5a:71:
f6:cd:f6:0f:08:ff:23:ac:39:96:ad:cd:01:e9:23:
dc:74:d4:3a:fa:ca:00:db:dc:0d:f8:a3:cb:91:fc:
f3:8e:8d:1c:0a:e0:6c:79:a4:49:78:7f:e3:8f:e9:
9b:94:11:d0:73:fc:a8:ff:a2:4c:fa:a1:db:65:f1:
7c:f8:da:bd:37:17:59:e5:e9:32:8a:63:5c:ae:d7:
ae:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F8:F3:7B:D8:70:DC:BE:06:89:DD:47:F9:E4:E6:73:2A:6B:D7:08
X509v3 Authority Key Identifier:
keyid:64:D7:F7:E1:74:17:9A:13:3E:30:C6:60:ED:FA:86:E7:4A:40:DD:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:c3:bc:c6:01:ad:d3:04:34:48:d2:7f:6d:cd:36:fd:40:2d:
54:59:15:8b:34:47:b8:c0:75:5f:72:d7:9f:9c:29:56:98:76:
41:3c:28:e2:90:e4:2c:d6:8a:eb:3a:26:e9:d0:98:02:01:46:
b7:a6:81:80:3a:ae:68:9e:bb:0e:81:3e:d8:a6:31:d4:ec:ba:
74:ad:dd:4c:ba:a7:c2:3c:8a:80:19:fb:ca:74:a7:bc:89:5d:
14:3a:8f:4a:ac:21:a2:6b:c3:22:5d:df:59:0b:aa:cb:bf:0e:
46:e6:bc:23:11:2d:82:fa:39:c3:ab:c3:cb:fa:4a:4d:15:eb:
6f:9b:df:84:c4:ce:f6:41:92:72:8b:91:78:1b:e2:e4:5c:ae:
ba:ff:fe:6d:4c:04:27:35:80:c0:e8:a0:54:a5:d6:be:90:c4:
63:78:f1:3a:66:0c:c4:37:df:f1:2c:ba:8a:95:f7:5b:bc:c9:
05:97:5e:ec:38:61:f1:5c:45:cb:d8:b6:74:0c:92:38:6c:7a:
45:09:60:55:e2:47:ae:b1:78:fd:4f:13:86:da:6c:ea:6b:ff:
95:80:55:c6:81:75:c9:9d:23:f6:ac:4b:0d:6a:da:77:1d:40:
78:bc:3a:c7:a6:8e:ca:22:49:88:04:60:99:97:d7:30:1e:02:
81:94:d1:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oTlkPYZg7v974CZaB+a5tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZDdmN2UxNzQxNzlhMTMzZTMwYzY2MGVkZmE4NmU3NGE0
MGRkOTUwHhcNMjYwMzI2MDQwMTU2WhcNMjYwMzI3MDQwMTU2WjAzMTEwLwYDVQQD
EyhmZmY4ZjM3YmQ4NzBkY2JlMDY4OWRkNDdmOWU0ZTY3MzJhNmJkNzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8XIy8odboBsx63ELKfF86Ok9qar
cnmCRIre1JYCFqT+/q93hMiW/0ceI3rTGM8sOwPO3eAWaHzOVrRy4gf//yVBlB+n
OaxEH39OPH3+SensIwWBKVu/EDtwrS94AieMf+f2ZnFOqk2QpJDHCMtJR193k5HO
FB5Sx/xsMdRxbEFmtbChTQor5pIECzKF1SKTSyJOWIKpjBkORh+y3c/YHv9Et1fR
5L/kWZSEXB9JI0ymWnH2zfYPCP8jrDmWrc0B6SPcdNQ6+soA29wN+KPLkfzzjo0c
CuBseaRJeH/jj+mblBHQc/yo/6JM+qHbZfF8+Nq9NxdZ5ekyimNcrteuUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP/483vYcNy+BondR/nk5nMqa9cIMB8GA1UdIwQY
MBaAFGTX9+F0F5oTPjDGYO36hudKQN2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk5mMzRYUVhtaE0tTU1aZzdmcUc1MHBBM1pVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS85ODNjYWEtZWYwNS00NjBmLWEyMGEt
NDE2MjQ2NWI5ODgwLzEvWk5mMzRYUVhtaE0tTU1aZzdmcUc1MHBBM1pVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS85ODNjYWEtZWYwNS00NjBmLWEyMGEtNDE2MjQ2NWI5ODgw
LzEvWk5mMzRYUVhtaE0tTU1aZzdmcUc1MHBBM1pVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW8O8xgGt
0wQ0SNJ/bc02/UAtVFkVizRHuMB1X3LXn5wpVph2QTwo4pDkLNaK6zom6dCYAgFG
t6aBgDquaJ67DoE+2KYx1Oy6dK3dTLqnwjyKgBn7ynSnvIldFDqPSqwhomvDIl3f
WQuqy78ORua8IxEtgvo5w6vDy/pKTRXrb5vfhMTO9kGScouReBvi5Fyuuv/+bUwE
JzWAwOigVKXWvpDEY3jxOmYMxDff8Sy6ipX3W7zJBZde7Dhh8VxFy9i2dAySOGx6
RQlgVeJHrrF4/U8Thtps6mv/lYBVxoF1yZ0j9qxLDWradx1AeLw6x6aOyiJJiARg
mZfXMB4CgZTR7g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:51:22 2026 by rpki-client