Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
File: zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft (raw, json)
Hash identifier: rHxAaRhxrUEQjVsu50ZKUYa0afE5V4yD+k81VqZbwhk=
Subject key identifier: 94:21:81:01:1E:AC:34:AD:30:14:A0:AB:15:4C:5B:21:51:56:E7:75
Authority key identifier: CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61
Certificate issuer: /CN=cd86b8ce222482a14f9b13468ce57e9992684961
Certificate serial: 019D28F2971644CC5162DD86B13328C484EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
Manifest number: 085C
Signing time: Thu 26 Mar 2026 07:01:20 +0000
Manifest this update: Thu 26 Mar 2026 07:01:20 +0000
Manifest next update: Fri 27 Mar 2026 07:01:20 +0000
Files and hashes: 1: tOm2mcjBn8Ym8qVAgXlaktzQgQQ.roa (hash: QA1CzDp5HJkMD+7uuzpOHwQafKh/ybfi3Yylc1GPX2k=)
2: zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl (hash: vjLaOXfvZ36wyfEdDIMOCp/L6tY5mjRdlJFxm/54Q2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:97:16:44:cc:51:62:dd:86:b1:33:28:c4:84:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd86b8ce222482a14f9b13468ce57e9992684961
Validity
Not Before: Mar 26 07:01:20 2026 GMT
Not After : Mar 27 07:01:20 2026 GMT
Subject: CN=942181011eac34ad3014a0ab154c5b215156e775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2b:bb:2b:e2:ff:8d:1f:f7:81:05:4e:b2:8e:
d8:d6:32:6f:63:1a:26:c9:c1:8c:4c:2a:be:b7:6f:
75:da:01:38:f7:fa:6c:dd:de:2d:32:91:b5:38:2b:
be:4c:39:81:36:43:74:fb:60:ec:73:8c:40:28:47:
21:4d:65:fb:5c:b4:11:f1:ff:c2:51:08:cd:39:38:
d6:3e:6e:10:03:2e:e6:7b:b7:f7:f3:bc:d1:53:7b:
5d:19:7c:85:ca:34:3e:94:0d:4f:a6:f1:7c:08:07:
65:c9:5a:a8:ec:f7:c4:fb:b4:ef:33:97:5b:58:5d:
83:4d:66:1b:f1:a8:3e:a5:05:25:d7:b0:e3:40:fd:
7e:b0:c5:2b:17:f5:2f:14:be:6b:74:17:94:06:5f:
43:c9:b6:d4:15:d2:51:ca:d3:51:69:b9:dc:e2:aa:
7f:4d:9a:9d:51:fd:bb:6f:ee:ff:87:90:b2:76:7a:
ec:94:83:f8:5d:1a:dc:b1:b4:cd:90:ac:24:7c:3d:
fb:79:da:95:74:3a:9b:5a:a1:97:76:8a:4c:1f:48:
9e:33:bf:88:a9:28:05:a3:bf:82:9f:fd:f0:94:62:
5e:cd:ef:31:7f:9c:b7:4c:d9:7c:12:fd:80:f3:36:
0a:83:aa:bc:cd:f8:37:39:af:37:04:f4:81:fb:21:
6f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:21:81:01:1E:AC:34:AD:30:14:A0:AB:15:4C:5B:21:51:56:E7:75
X509v3 Authority Key Identifier:
keyid:CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:f7:be:5f:43:c2:25:07:20:54:5b:7b:7c:e3:53:a0:c8:ff:
d0:e1:59:fb:23:aa:34:6a:cd:4f:56:6a:9e:49:11:f8:18:e6:
0c:83:53:8e:4c:4f:aa:93:65:5f:3b:2d:da:31:06:e7:66:5e:
9f:b5:c4:0d:5b:a8:c7:76:b6:48:1f:99:29:b1:6e:69:09:77:
e5:99:4d:64:5b:a5:ec:17:3d:2f:74:88:81:7e:f7:aa:57:d7:
64:c2:25:a9:e8:4c:ca:f1:b2:cb:1d:11:f7:70:37:c1:e4:b0:
f6:0b:08:20:1c:ed:a6:07:6c:ac:17:5e:39:f4:cb:37:69:e7:
0a:ac:d4:81:be:89:4a:58:5a:48:55:aa:78:a0:fa:0f:6d:c1:
af:e2:f5:f3:46:88:ec:1b:1c:8c:2c:1e:25:a1:71:5d:81:9b:
20:48:d1:6d:2b:48:42:71:26:fa:50:b7:74:88:a8:29:2e:53:
ac:8a:1c:45:64:d9:da:dd:38:4c:6d:4f:e1:e2:95:e7:a5:e6:
87:65:08:78:cf:59:4f:e8:b5:95:ed:fe:39:09:6e:12:8c:2b:
ed:e8:ae:19:a0:26:05:a8:43:4f:09:d2:27:a7:60:39:e9:cf:
75:78:c5:c3:d8:72:41:90:18:94:7a:e4:82:2a:61:9e:7d:29:
3b:a3:28:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8pcWRMxRYt2GsTMoxITrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkODZiOGNlMjIyNDgyYTE0ZjliMTM0NjhjZTU3ZTk5OTI2
ODQ5NjEwHhcNMjYwMzI2MDcwMTIwWhcNMjYwMzI3MDcwMTIwWjAzMTEwLwYDVQQD
Eyg5NDIxODEwMTFlYWMzNGFkMzAxNGEwYWIxNTRjNWIyMTUxNTZlNzc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyu7K+L/jR/3gQVOso7Y1jJvYxom
ycGMTCq+t2912gE49/ps3d4tMpG1OCu+TDmBNkN0+2Dsc4xAKEchTWX7XLQR8f/C
UQjNOTjWPm4QAy7me7f387zRU3tdGXyFyjQ+lA1PpvF8CAdlyVqo7PfE+7TvM5db
WF2DTWYb8ag+pQUl17DjQP1+sMUrF/UvFL5rdBeUBl9DybbUFdJRytNRabnc4qp/
TZqdUf27b+7/h5CydnrslIP4XRrcsbTNkKwkfD37edqVdDqbWqGXdopMH0ieM7+I
qSgFo7+Cn/3wlGJeze8xf5y3TNl8Ev2A8zYKg6q8zfg3Oa83BPSB+yFvUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQhgQEerDStMBSgqxVMWyFRVud1MB8GA1UdIwQY
MBaAFM2GuM4iJIKhT5sTRozlfpmSaElhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvellhNHppSWtncUZQbXhOR2pPVi1tWkpvU1dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC82MDgxMTQtYTk3YS00ODc3LTk0Yzct
ZGMyZDU1NzUwM2VlLzEvellhNHppSWtncUZQbXhOR2pPVi1tWkpvU1dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC82MDgxMTQtYTk3YS00ODc3LTk0YzctZGMyZDU1NzUwM2Vl
LzEvellhNHppSWtncUZQbXhOR2pPVi1tWkpvU1dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGfe+X0PC
JQcgVFt7fONToMj/0OFZ+yOqNGrNT1ZqnkkR+BjmDINTjkxPqpNlXzst2jEG52Ze
n7XEDVuox3a2SB+ZKbFuaQl35ZlNZFul7Bc9L3SIgX73qlfXZMIlqehMyvGyyx0R
93A3weSw9gsIIBztpgdsrBdeOfTLN2nnCqzUgb6JSlhaSFWqeKD6D23Br+L180aI
7BscjCweJaFxXYGbIEjRbStIQnEm+lC3dIioKS5TrIocRWTZ2t04TG1P4eKV56Xm
h2UIeM9ZT+i1le3+OQluEowr7eiuGaAmBahDTwnSJ6dgOenPdXjFw9hyQZAYlHrk
giphnn0pO6MooA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:25:34 2026 by rpki-client