Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
File: mZK1NCb7YU2aWm2D9ABWamYMndI.mft (raw, json)
Hash identifier: ub3Hvdv3dzEivSylZnP8qd0guHpnrhf2+r8wiJTsNLI=
Subject key identifier: 4C:A4:F8:AB:D7:FF:1C:3E:8B:A4:3A:82:A3:1A:C7:A5:64:69:2A:69
Authority key identifier: 99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
Certificate issuer: /CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Certificate serial: 019D36E4F1190B2BBC5729B99C12B22999D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
Manifest number: 1462
Signing time: Sun 29 Mar 2026 00:01:06 +0000
Manifest this update: Sun 29 Mar 2026 00:01:06 +0000
Manifest next update: Mon 30 Mar 2026 00:01:06 +0000
Files and hashes: 1: LKFdqAxekSyGKQc0Md8_7Xelo-E.roa (hash: hzROPb2XKPcBYg2mXSPUmlxSomnvcQdFm4oNZy6YiVs=)
2: mZK1NCb7YU2aWm2D9ABWamYMndI.crl (hash: kLDkZLnU4Cdy/uZaHtFWFAV/QSrfuM716qwekB24baw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 00:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:e4:f1:19:0b:2b:bc:57:29:b9:9c:12:b2:29:99:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Validity
Not Before: Mar 29 00:01:06 2026 GMT
Not After : Mar 30 00:01:06 2026 GMT
Subject: CN=4ca4f8abd7ff1c3e8ba43a82a31ac7a564692a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ca:d6:62:ed:9a:f9:7f:3e:2a:e0:a3:8d:f6:
f8:e5:80:de:69:28:55:21:a9:5c:1c:6d:50:0b:fe:
86:9e:8a:09:ed:4f:f4:e5:1e:31:90:10:2d:3b:21:
d6:0b:89:c0:32:de:56:73:0c:84:71:e2:c8:08:62:
4d:ca:a0:bf:29:23:fb:dc:14:21:8d:5b:d3:b3:65:
c0:8b:6f:21:e2:12:31:12:4c:a8:0e:2d:4b:26:23:
c5:a0:f0:1e:27:f6:08:58:86:f7:0c:b7:91:73:da:
5a:be:09:8e:9c:c5:fd:b1:37:a0:a6:c4:74:90:e4:
9d:a2:4e:ff:a1:96:5b:ac:00:b0:d2:22:96:51:87:
a7:76:00:4c:a7:23:7f:af:27:2d:45:39:07:4e:bd:
5f:13:5a:ca:33:95:90:af:32:f4:34:d8:6c:b8:10:
a7:6a:aa:b1:38:3d:be:d6:88:30:43:51:cc:cc:ee:
e7:a9:3c:9e:36:90:e7:21:be:ec:fe:42:20:05:33:
43:31:5e:55:7e:65:9d:86:61:db:cf:98:1d:e7:fc:
87:dc:de:ad:b5:0c:b2:0b:7f:5b:82:17:ad:5b:29:
6b:b7:08:e1:8b:e5:74:e5:43:ce:04:1f:52:0c:23:
e1:eb:b1:b0:8c:78:35:0e:b7:82:ad:51:1b:76:c8:
7b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A4:F8:AB:D7:FF:1C:3E:8B:A4:3A:82:A3:1A:C7:A5:64:69:2A:69
X509v3 Authority Key Identifier:
keyid:99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:97:40:84:37:66:3e:0d:93:8c:e0:c2:3d:83:f5:85:e9:75:
44:e8:82:1a:70:10:4b:c6:a8:48:b5:d4:43:44:b7:a6:71:73:
b0:f4:8b:9d:c9:fc:47:e6:98:4f:0a:d8:f3:e6:7c:69:3b:06:
37:31:2e:8b:7e:2c:45:c1:76:44:bc:b9:d4:c9:2b:da:9e:99:
3d:70:65:22:04:54:73:7a:d5:d1:25:64:dc:b7:2d:00:64:bf:
0d:00:59:1f:7d:d1:11:17:0b:cf:e1:73:8c:bc:4c:4c:69:58:
3d:5d:da:57:42:59:cb:cb:f1:b2:41:03:07:37:94:f7:99:31:
6c:47:2f:14:ea:09:42:7c:e5:6f:90:6a:43:9e:20:2d:13:fd:
b8:d0:a0:68:50:e3:60:58:2e:5c:74:60:c8:6c:98:88:c5:c7:
db:6f:57:c7:fa:70:38:2e:55:b6:d9:01:c2:da:c5:9c:d8:66:
29:cc:1c:ce:b2:2c:32:7c:43:00:c8:57:ca:81:1b:a9:c1:32:
13:04:dc:04:c7:64:ad:58:12:26:21:7a:65:3e:13:58:01:c0:
d7:f7:ae:d2:c2:7f:98:80:b8:cf:8d:ad:f2:0a:86:0a:4e:d0:
c9:1b:6a:72:9f:8c:e8:44:c8:46:62:ab:1a:19:48:5b:91:79:
b9:b7:6e:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ025PEZCyu8Vym5nBKyKZnQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5OTJiNTM0MjZmYjYxNGQ5YTVhNmQ4M2Y0MDA1NjZhNjYw
YzlkZDIwHhcNMjYwMzI5MDAwMTA2WhcNMjYwMzMwMDAwMTA2WjAzMTEwLwYDVQQD
Eyg0Y2E0ZjhhYmQ3ZmYxYzNlOGJhNDNhODJhMzFhYzdhNTY0NjkyYTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6srWYu2a+X8+KuCjjfb45YDeaShV
IalcHG1QC/6GnooJ7U/05R4xkBAtOyHWC4nAMt5WcwyEceLICGJNyqC/KSP73BQh
jVvTs2XAi28h4hIxEkyoDi1LJiPFoPAeJ/YIWIb3DLeRc9pavgmOnMX9sTegpsR0
kOSdok7/oZZbrACw0iKWUYendgBMpyN/ryctRTkHTr1fE1rKM5WQrzL0NNhsuBCn
aqqxOD2+1ogwQ1HMzO7nqTyeNpDnIb7s/kIgBTNDMV5VfmWdhmHbz5gd5/yH3N6t
tQyyC39bghetWylrtwjhi+V05UPOBB9SDCPh67GwjHg1DreCrVEbdsh7RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEyk+KvX/xw+i6Q6gqMax6VkaSppMB8GA1UdIwQY
MBaAFJmStTQm+2FNmlptg/QAVmpmDJ3SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVpLMU5DYjdZVTJhV20yRDlBQldhbVlNbmRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC85MDE3MmEtOTY5Yi00NmRhLTgwODgt
NzkxYTYyZDJkOGFiLzEvbVpLMU5DYjdZVTJhV20yRDlBQldhbVlNbmRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC85MDE3MmEtOTY5Yi00NmRhLTgwODgtNzkxYTYyZDJkOGFi
LzEvbVpLMU5DYjdZVTJhV20yRDlBQldhbVlNbmRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI5dAhDdm
Pg2TjODCPYP1hel1ROiCGnAQS8aoSLXUQ0S3pnFzsPSLncn8R+aYTwrY8+Z8aTsG
NzEui34sRcF2RLy51Mkr2p6ZPXBlIgRUc3rV0SVk3LctAGS/DQBZH33RERcLz+Fz
jLxMTGlYPV3aV0JZy8vxskEDBzeU95kxbEcvFOoJQnzlb5BqQ54gLRP9uNCgaFDj
YFguXHRgyGyYiMXH229Xx/pwOC5VttkBwtrFnNhmKcwczrIsMnxDAMhXyoEbqcEy
EwTcBMdkrVgSJiF6ZT4TWAHA1/eu0sJ/mIC4z42t8gqGCk7QyRtqcp+M6ETIRmKr
GhlIW5F5ubdujw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:12 2026 by rpki-client