Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
File: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft (raw, json)
Hash identifier: ihyY58NGL9NVWFHRMlOtjxjHCVE7dJHy1su/28vYvJc=
Subject key identifier: 88:66:BE:B5:4A:AD:26:43:FB:C1:CC:CF:7B:AB:A3:4E:C0:8C:D6:88
Authority key identifier: D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
Certificate issuer: /CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Certificate serial: 019D2816C0C86A9BF5A5EDF7266A7C3F3B40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
Manifest number: 05DB
Signing time: Thu 26 Mar 2026 03:01:12 +0000
Manifest this update: Thu 26 Mar 2026 03:01:12 +0000
Manifest next update: Fri 27 Mar 2026 03:01:12 +0000
Files and hashes: 1: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl (hash: HAArtygAOoq8znC4AZDnql4Km9ZL8RV48lyKV3gUdpg=)
2: qo4K2MxKuprqgn2JH-P6sbefGGQ.roa (hash: 5nQ7RiiW8bFTZTK/XJeOeCamYJvNUIxvBcEODwO0sgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:c0:c8:6a:9b:f5:a5:ed:f7:26:6a:7c:3f:3b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724
Validity
Not Before: Mar 26 03:01:12 2026 GMT
Not After : Mar 27 03:01:12 2026 GMT
Subject: CN=8866beb54aad2643fbc1cccf7baba34ec08cd688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:62:43:3d:61:2f:0e:a4:8e:bb:2b:83:c9:e4:
5d:36:9f:b9:3e:43:6a:57:17:ee:31:00:46:21:8b:
0c:d5:12:da:d1:26:ff:1c:de:6e:80:de:b8:e8:16:
e5:f4:31:d1:4f:89:aa:63:60:4c:96:c3:d1:4e:b1:
fc:a7:18:7a:bd:68:ce:fb:0e:a7:9a:23:c9:76:3d:
71:41:da:6a:14:5c:a6:30:49:fc:e9:b1:9c:38:a7:
2c:48:a5:65:68:92:57:f1:81:5b:62:a3:3e:fc:c5:
95:bb:1f:14:32:59:bd:37:29:c4:e9:07:fa:1f:5b:
59:b6:10:fc:68:99:0e:cf:0d:4b:cf:8e:cb:54:fb:
a1:d5:4f:e7:2e:e4:d9:f0:5b:aa:8e:8b:b4:48:a5:
70:9e:ca:69:a3:96:76:f9:50:32:fe:6b:6c:08:66:
f3:c9:12:59:7a:9b:9c:22:89:f5:65:09:53:21:9c:
be:26:6f:e6:97:82:34:b0:b6:2d:cd:da:20:16:48:
ff:03:f4:7b:34:de:ef:b3:a6:cb:5e:7d:30:4a:7f:
e2:09:9f:7d:6f:88:f2:68:f9:0c:10:83:5b:02:9b:
85:0c:d2:aa:63:73:aa:e2:e0:11:98:67:d2:36:ba:
ef:25:69:b1:e4:22:fa:82:ef:f6:7b:08:b1:69:63:
57:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:66:BE:B5:4A:AD:26:43:FB:C1:CC:CF:7B:AB:A3:4E:C0:8C:D6:88
X509v3 Authority Key Identifier:
keyid:D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:da:6e:f7:18:96:19:56:26:a0:45:2a:9b:2a:15:4d:d1:b5:
15:fe:ef:85:6f:8e:b3:b7:1b:79:d6:83:4d:c1:91:6f:69:7d:
fb:89:5d:8c:1a:4b:31:4b:4b:8d:83:cd:4e:5f:ea:c0:93:aa:
71:f9:ed:2c:49:c8:97:8b:f2:40:c1:30:e1:d8:44:1b:10:74:
16:6f:d6:80:20:89:7c:a1:af:37:e8:14:56:29:e4:67:4b:ea:
7f:7e:fc:1b:45:ed:31:6a:5e:09:02:be:58:fe:6e:92:d2:b7:
4f:ed:2d:73:ec:85:87:2f:75:01:d2:31:88:15:06:27:b2:1c:
b4:d6:98:fc:9d:b1:bb:9c:bb:8c:ac:cf:2b:cf:82:ad:e3:eb:
15:89:11:08:fc:fe:35:1f:74:1a:09:28:29:11:29:c6:57:de:
44:b7:2b:02:50:85:3f:86:12:c8:7f:76:d6:bf:ed:6a:22:d7:
db:19:c0:eb:b6:dc:e4:fe:7a:29:da:8a:46:96:90:c0:18:d8:
28:e0:90:43:37:f7:e9:b4:3b:d0:ec:e7:db:fd:59:87:6d:82:
19:de:51:60:4b:f1:4f:f2:d3:8f:f2:5c:67:14:ab:13:89:f6:
5d:5d:44:c7:93:55:16:56:46:25:c2:8a:f5:df:11:e4:f0:c7:
25:20:4c:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oFsDIapv1pe33Jmp8PztAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxOTkzZjc4Y2FlNDQ1OWE5YjllMjY4OWFkMzBmMGJjNDRj
YzY3MjQwHhcNMjYwMzI2MDMwMTEyWhcNMjYwMzI3MDMwMTEyWjAzMTEwLwYDVQQD
Eyg4ODY2YmViNTRhYWQyNjQzZmJjMWNjY2Y3YmFiYTM0ZWMwOGNkNjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiGJDPWEvDqSOuyuDyeRdNp+5PkNq
VxfuMQBGIYsM1RLa0Sb/HN5ugN646Bbl9DHRT4mqY2BMlsPRTrH8pxh6vWjO+w6n
miPJdj1xQdpqFFymMEn86bGcOKcsSKVlaJJX8YFbYqM+/MWVux8UMlm9NynE6Qf6
H1tZthD8aJkOzw1Lz47LVPuh1U/nLuTZ8Fuqjou0SKVwnsppo5Z2+VAy/mtsCGbz
yRJZepucIon1ZQlTIZy+Jm/ml4I0sLYtzdogFkj/A/R7NN7vs6bLXn0wSn/iCZ99
b4jyaPkMEINbApuFDNKqY3Oq4uARmGfSNrrvJWmx5CL6gu/2ewixaWNXmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIhmvrVKrSZD+8HMz3uro07AjNaIMB8GA1UdIwQY
MBaAFNGZP3jK5EWam54mia0w8LxEzGckMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8yZWJjNzktN2I5NC00YmY4LTkxMzMt
NGIwNTc3NGRlMzcxLzEvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC8yZWJjNzktN2I5NC00YmY4LTkxMzMtNGIwNTc3NGRlMzcx
LzEvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf9pu9xiW
GVYmoEUqmyoVTdG1Ff7vhW+Os7cbedaDTcGRb2l9+4ldjBpLMUtLjYPNTl/qwJOq
cfntLEnIl4vyQMEw4dhEGxB0Fm/WgCCJfKGvN+gUVinkZ0vqf378G0XtMWpeCQK+
WP5uktK3T+0tc+yFhy91AdIxiBUGJ7IctNaY/J2xu5y7jKzPK8+CrePrFYkRCPz+
NR90GgkoKREpxlfeRLcrAlCFP4YSyH921r/taiLX2xnA67bc5P56KdqKRpaQwBjY
KOCQQzf36bQ70Ozn2/1Zh22CGd5RYEvxT/LTj/JcZxSrE4n2XV1Ex5NVFlZGJcKK
9d8R5PDHJSBMVQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 14:30:32 2026 by rpki-client