Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json)
Hash identifier: LjN+dxo9GeKnmFJob2u6G+xOvlOoKkkOsJZefHTNIPY=
Subject key identifier: 0A:05:83:89:6D:84:D2:53:30:B4:72:64:45:0E:63:71:7B:75:83:22
Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304
Certificate serial: 019D273AD31CD8EED739349F2C346CD04724
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 23:00:59 +0000
Manifest this update: Wed 25 Mar 2026 23:00:59 +0000
Manifest next update: Thu 26 Mar 2026 23:00:59 +0000
Files and hashes: 1: pjZgFrUWO8BOoL-HaPMDCBP4Z3k.roa (hash: DJfWljw06kfL4VTqBzgexrUkOVmGrJBBRKqjdLiN9zA=)
2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: BUNbgClmC1IaPWtnNN1J1nRK8woWWK5gqXpVb23BPKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:d3:1c:d8:ee:d7:39:34:9f:2c:34:6c:d0:47:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304
Validity
Not Before: Mar 25 23:00:59 2026 GMT
Not After : Mar 26 23:00:59 2026 GMT
Subject: CN=0a0583896d84d25330b47264450e63717b758322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0d:39:17:be:0e:31:e9:2f:fc:4c:71:61:f7:
30:d3:36:8d:d3:68:30:d1:3d:d6:40:0f:c5:f5:cc:
87:c8:8a:80:d0:71:d5:06:f5:d4:52:be:5a:3c:75:
dd:fa:ad:c0:5d:a1:31:c3:fd:c9:51:b4:be:03:cb:
d2:d4:28:6a:8a:27:bb:02:77:4b:90:de:53:6e:01:
94:15:d8:e0:28:a5:ab:c4:02:56:40:72:07:fd:fc:
43:f7:5e:1e:9d:30:a7:bd:2c:34:a1:06:9c:f0:88:
d1:85:60:6f:89:1d:07:7a:e1:18:2f:72:ed:d7:00:
ec:92:42:30:7f:fd:6e:2d:98:93:89:f8:4f:30:db:
74:02:ae:68:e0:11:07:ab:cb:96:38:0c:a3:dd:44:
b4:58:2a:95:9a:dd:29:3e:ff:68:32:83:7d:30:9e:
9e:9d:86:82:b6:e7:3c:43:d7:6a:6c:27:29:d5:82:
2d:c0:60:10:80:54:5a:a0:78:0c:b5:e8:f1:03:17:
dd:94:54:63:d4:bb:9a:b4:4f:75:56:67:5d:c6:3f:
66:0f:59:2b:40:2a:67:c5:d7:ed:5c:54:f3:5e:14:
8a:bf:81:ed:74:1f:03:a7:89:d3:13:88:dc:79:1a:
8d:ff:ef:b3:eb:96:41:ba:be:ef:f7:48:42:d8:9d:
03:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:05:83:89:6D:84:D2:53:30:B4:72:64:45:0E:63:71:7B:75:83:22
X509v3 Authority Key Identifier:
keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:b1:e1:ff:5b:1f:7c:99:a6:7c:4c:83:7d:25:cc:e6:6a:f1:
97:64:74:90:81:4f:5a:4f:11:ba:c0:b8:30:aa:00:f9:d7:65:
2e:41:b6:45:f8:b3:15:5f:1e:24:99:e0:52:c2:00:4e:69:5b:
29:4d:10:ad:0b:56:91:0f:be:5e:36:dd:59:63:28:0f:53:b2:
9f:0a:74:f8:02:8a:3c:13:3b:79:9f:07:37:51:ff:ad:08:c1:
1f:8e:42:4f:02:dd:86:08:f0:b3:ba:8f:af:6a:a5:8e:9e:cf:
60:b2:9e:7b:b3:17:54:e0:42:4f:86:c6:3d:83:a8:5f:ef:9d:
1a:e1:9c:c9:3c:ee:35:a0:37:8b:18:10:98:b7:ff:d0:bf:a2:
98:93:ca:23:6b:89:d1:77:b8:f8:20:81:97:e2:1b:66:c9:97:
f0:ed:65:34:b7:1f:ad:ff:e3:a4:4f:84:96:99:9a:e5:52:de:
d1:fc:e1:bf:97:ed:a0:00:39:f7:70:77:f9:15:bb:98:9e:09:
0e:52:5b:55:c9:3c:28:28:27:6c:ff:e4:13:84:4e:04:99:96:
49:e2:a8:f7:15:cf:13:07:74:c3:0e:25:b6:d8:b9:ad:ca:4f:
fd:10:bd:5f:9a:0e:dd:3a:d4:26:bf:6a:ef:90:63:8f:a6:69:
e6:c3:a0:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOtMc2O7XOTSfLDRs0EckMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMzAzOGE3MTdiMTU0ZTFjZmE0NzExNjgzMmRhMjZmMjhi
MmEzMDQwHhcNMjYwMzI1MjMwMDU5WhcNMjYwMzI2MjMwMDU5WjAzMTEwLwYDVQQD
EygwYTA1ODM4OTZkODRkMjUzMzBiNDcyNjQ0NTBlNjM3MTdiNzU4MzIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3g05F74OMekv/ExxYfcw0zaN02gw
0T3WQA/F9cyHyIqA0HHVBvXUUr5aPHXd+q3AXaExw/3JUbS+A8vS1Chqiie7AndL
kN5TbgGUFdjgKKWrxAJWQHIH/fxD914enTCnvSw0oQac8IjRhWBviR0HeuEYL3Lt
1wDskkIwf/1uLZiTifhPMNt0Aq5o4BEHq8uWOAyj3US0WCqVmt0pPv9oMoN9MJ6e
nYaCtuc8Q9dqbCcp1YItwGAQgFRaoHgMtejxAxfdlFRj1LuatE91Vmddxj9mD1kr
QCpnxdftXFTzXhSKv4HtdB8Dp4nTE4jceRqN/++z65ZBur7v90hC2J0DRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAoFg4lthNJTMLRyZEUOY3F7dYMiMB8GA1UdIwQY
MBaAFK8wOKcXsVThz6RxFoMtom8osqMEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy82Y2ZiNzgtNjNiYy00ODIwLWI5MDMt
ODYwYzQ5ZDBlYjZhLzEvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy82Y2ZiNzgtNjNiYy00ODIwLWI5MDMtODYwYzQ5ZDBlYjZh
LzEvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqbHh/1sf
fJmmfEyDfSXM5mrxl2R0kIFPWk8RusC4MKoA+ddlLkG2RfizFV8eJJngUsIATmlb
KU0QrQtWkQ++XjbdWWMoD1Oynwp0+AKKPBM7eZ8HN1H/rQjBH45CTwLdhgjws7qP
r2qljp7PYLKee7MXVOBCT4bGPYOoX++dGuGcyTzuNaA3ixgQmLf/0L+imJPKI2uJ
0Xe4+CCBl+IbZsmX8O1lNLcfrf/jpE+Elpma5VLe0fzhv5ftoAA593B3+RW7mJ4J
DlJbVck8KCgnbP/kE4ROBJmWSeKo9xXPEwd0ww4ltti5rcpP/RC9X5oO3TrUJr9q
75Bjj6Zp5sOg5w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:01 2026 by rpki-client