Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
File: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft (raw, json)
Hash identifier: TuJbtOzW8S9kyPysDQ4Vui0a91c1KYgDE8YIZ/PtIBQ=
Subject key identifier: F6:D2:95:3D:5F:1F:EE:9A:35:08:AC:73:78:1F:1F:EE:3C:C9:87:14
Authority key identifier: 64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
Certificate issuer: /CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Certificate serial: 019D284E151AFB9C57E33669A2AB0E01E598
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
Manifest number: 040A
Signing time: Thu 26 Mar 2026 04:01:38 +0000
Manifest this update: Thu 26 Mar 2026 04:01:38 +0000
Manifest next update: Fri 27 Mar 2026 04:01:38 +0000
Files and hashes: 1: NS4bJSf8JtisPPo4E4AUvgYiJkI.roa (hash: kNAqy7sfsX/DzrejY1IHLtdhRNkU/dXjQEKN71zDd5M=)
2: ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl (hash: zAixVeydEAC7s/LrRfE+j3FKk29We3gfv4KQtZ8mg48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:15:1a:fb:9c:57:e3:36:69:a2:ab:0e:01:e5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64cf1ee90653b7b814d6b545949bd94dde0fc6a1
Validity
Not Before: Mar 26 04:01:38 2026 GMT
Not After : Mar 27 04:01:38 2026 GMT
Subject: CN=f6d2953d5f1fee9a3508ac73781f1fee3cc98714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:de:25:14:ea:48:77:1f:7e:92:fc:f4:8f:bf:
0e:8a:81:54:ee:cc:7c:a4:59:e4:cf:1c:fb:8f:4a:
aa:74:32:2a:07:95:ca:b0:2d:26:47:b8:a3:9e:a9:
ac:61:ce:55:75:92:86:7a:96:a3:3a:60:af:60:1a:
50:b9:32:dc:6f:47:2e:2c:31:58:4b:10:f0:d3:7a:
1d:f9:1f:dd:e4:e7:fc:56:06:f7:53:a6:d4:48:e6:
73:db:29:d4:89:d0:21:2b:a1:0b:93:84:46:c5:1b:
f4:7f:ad:d4:6f:32:a9:83:77:d1:56:ee:69:b2:2c:
9a:16:63:14:3f:12:17:85:f9:70:06:4f:9f:c3:c6:
96:1a:78:0d:e6:e0:33:d0:60:fb:08:83:ab:3b:22:
38:7f:90:3b:81:26:c1:e8:2e:c4:6a:7f:f8:6a:26:
b5:6e:9f:99:d4:c8:fa:48:2b:2c:db:4f:25:a3:a3:
e3:d9:60:c4:4e:0a:fc:d7:dc:d6:d2:f7:2e:34:ca:
3a:1c:1c:62:5b:85:eb:aa:b2:51:71:8c:cd:33:ce:
82:0f:63:f1:45:a1:e2:54:65:4e:ed:6d:90:79:2a:
5a:bb:7e:14:52:37:a5:d7:4b:05:46:65:a8:fd:ae:
db:73:d6:d4:4b:b0:cf:44:76:3d:f8:95:d2:e4:93:
d6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D2:95:3D:5F:1F:EE:9A:35:08:AC:73:78:1F:1F:EE:3C:C9:87:14
X509v3 Authority Key Identifier:
keyid:64:CF:1E:E9:06:53:B7:B8:14:D6:B5:45:94:9B:D9:4D:DE:0F:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/299caa-8ccd-49c1-9029-8804dad780a1/1/ZM8e6QZTt7gU1rVFlJvZTd4PxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:63:a0:be:3a:dd:a9:b8:76:58:60:2b:50:60:32:37:25:30:
78:ca:12:43:e4:8e:08:5d:78:54:5a:67:df:67:c2:b0:03:c9:
39:f6:6a:8e:78:2b:ee:d4:3a:a8:08:3f:b3:b4:ff:4d:ea:76:
45:7f:b6:99:35:bb:d5:58:7e:06:9d:c3:1c:93:e5:d8:14:f5:
bb:37:05:dd:f3:a9:dc:bc:36:b5:14:67:d1:95:96:7a:09:49:
a4:c8:de:86:7b:bc:c9:10:1f:f9:af:67:ae:8c:42:fb:a5:b7:
e6:cb:81:aa:26:be:65:7a:28:11:b6:46:d6:ed:a0:e0:60:3f:
56:94:77:9e:7f:e4:35:66:5b:00:e1:a6:12:b3:3b:b3:15:da:
16:c4:39:06:85:e2:22:7a:2b:bd:c9:a3:26:18:aa:d9:5c:30:
32:dc:e6:63:62:44:c6:f3:7e:b0:2f:1d:ed:39:80:50:e2:b5:
9b:ec:df:60:bb:26:da:3e:96:8d:40:f9:64:d2:8d:e7:32:71:
0d:b7:1e:ae:72:96:50:3d:2e:40:ff:0a:34:60:98:25:d3:d8:
8b:a4:05:a3:43:5b:24:75:f5:36:c5:a5:e0:be:d9:7e:1f:f0:
f2:30:4d:9d:2b:36:82:f8:02:14:e1:2c:ca:2d:b8:99:73:e7:
18:b2:6a:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oThUa+5xX4zZpoqsOAeWYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0Y2YxZWU5MDY1M2I3YjgxNGQ2YjU0NTk0OWJkOTRkZGUw
ZmM2YTEwHhcNMjYwMzI2MDQwMTM4WhcNMjYwMzI3MDQwMTM4WjAzMTEwLwYDVQQD
EyhmNmQyOTUzZDVmMWZlZTlhMzUwOGFjNzM3ODFmMWZlZTNjYzk4NzE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7t4lFOpIdx9+kvz0j78OioFU7sx8
pFnkzxz7j0qqdDIqB5XKsC0mR7ijnqmsYc5VdZKGepajOmCvYBpQuTLcb0cuLDFY
SxDw03od+R/d5Of8Vgb3U6bUSOZz2ynUidAhK6ELk4RGxRv0f63UbzKpg3fRVu5p
siyaFmMUPxIXhflwBk+fw8aWGngN5uAz0GD7CIOrOyI4f5A7gSbB6C7Ean/4aia1
bp+Z1Mj6SCss208lo6Pj2WDETgr819zW0vcuNMo6HBxiW4XrqrJRcYzNM86CD2Px
RaHiVGVO7W2QeSpau34UUjel10sFRmWo/a7bc9bUS7DPRHY9+JXS5JPWLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPbSlT1fH+6aNQisc3gfH+48yYcUMB8GA1UdIwQY
MBaAFGTPHukGU7e4FNa1RZSb2U3eD8ahMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk04ZTZRWlR0N2dVMXJWRmxKdlpUZDRQeHFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8yOTljYWEtOGNjZC00OWMxLTkwMjkt
ODgwNGRhZDc4MGExLzEvWk04ZTZRWlR0N2dVMXJWRmxKdlpUZDRQeHFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8yOTljYWEtOGNjZC00OWMxLTkwMjktODgwNGRhZDc4MGEx
LzEvWk04ZTZRWlR0N2dVMXJWRmxKdlpUZDRQeHFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANGOgvjrd
qbh2WGArUGAyNyUweMoSQ+SOCF14VFpn32fCsAPJOfZqjngr7tQ6qAg/s7T/Tep2
RX+2mTW71Vh+Bp3DHJPl2BT1uzcF3fOp3Lw2tRRn0ZWWeglJpMjehnu8yRAf+a9n
roxC+6W35suBqia+ZXooEbZG1u2g4GA/VpR3nn/kNWZbAOGmErM7sxXaFsQ5BoXi
InorvcmjJhiq2VwwMtzmY2JExvN+sC8d7TmAUOK1m+zfYLsm2j6WjUD5ZNKN5zJx
DbcernKWUD0uQP8KNGCYJdPYi6QFo0NbJHX1NsWl4L7Zfh/w8jBNnSs2gvgCFOEs
yi24mXPnGLJqQA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 14:30:55 2026 by rpki-client