Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
File: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft (raw, json)
Hash identifier: jrXVRI4y++JZ5ioY8RnW5JmpX6bWkmzwOzU+N5kbPCY=
Subject key identifier: 01:3B:4F:C7:75:AC:64:B6:02:40:62:C5:6B:47:A9:A1:EE:C9:0F:A3
Authority key identifier: 64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
Certificate issuer: /CN=64aec8024caa103a8412696c7e72f77803cd8695
Certificate serial: 019D37C02BE6582F5C5FFB919E15FC903E57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
Manifest number: 12CF
Signing time: Sun 29 Mar 2026 04:00:34 +0000
Manifest this update: Sun 29 Mar 2026 04:00:34 +0000
Manifest next update: Mon 30 Mar 2026 04:00:34 +0000
Files and hashes: 1: SWC8q5CH8zumHrflzVp4e7i8dGY.roa (hash: z98d01QAmvPs9qVeEUxQJcsgJEzGZb8FADftU7i+UZw=)
2: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl (hash: 02xKbh6s/+MaZwrY5eiMFWnJW9BwOXlO/YCKR5c6prU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:2b:e6:58:2f:5c:5f:fb:91:9e:15:fc:90:3e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64aec8024caa103a8412696c7e72f77803cd8695
Validity
Not Before: Mar 29 04:00:34 2026 GMT
Not After : Mar 30 04:00:34 2026 GMT
Subject: CN=013b4fc775ac64b6024062c56b47a9a1eec90fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:3e:1a:c1:dc:8d:44:cf:f5:8e:3e:1c:de:
d7:44:df:98:40:ce:44:cb:fb:d0:70:1c:ac:5e:ca:
2a:3b:54:2f:02:39:33:6a:d7:13:64:a6:78:64:c5:
64:bb:0f:60:23:6e:99:e8:4c:9a:83:4e:f4:d0:01:
a3:4a:c9:cd:ec:ba:c0:2d:17:31:2f:88:b6:bd:f8:
d2:94:a1:e1:ee:07:c6:21:5f:8c:33:a2:1c:db:ee:
c6:80:16:31:c7:b2:e2:b8:f7:98:1a:44:db:3d:23:
30:7e:14:c5:e6:9b:db:74:99:49:f7:f6:d4:6c:7d:
8e:a6:4b:a6:a8:bd:19:b3:55:ab:68:e4:a6:76:ce:
48:74:7d:5e:cb:3d:94:e8:12:ea:4e:ea:21:7d:18:
62:1f:2c:53:0c:ac:d7:c0:70:4a:b5:f3:26:77:10:
bb:18:79:f7:6c:8e:25:97:d7:ba:04:8c:80:8a:36:
1a:29:a3:09:b8:15:59:d0:3e:ef:9b:8b:07:ba:d5:
18:4c:98:d9:1f:88:85:d5:ad:93:6d:bc:b2:ab:29:
c9:7d:c7:8f:e5:9d:bb:a8:f5:95:6e:09:17:7c:06:
e1:ec:6a:e9:a7:08:3d:f8:1e:8d:74:f7:6d:27:9f:
ad:82:3a:f6:f2:43:0e:8d:ce:80:28:bd:d1:bf:29:
e5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3B:4F:C7:75:AC:64:B6:02:40:62:C5:6B:47:A9:A1:EE:C9:0F:A3
X509v3 Authority Key Identifier:
keyid:64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:44:e8:97:85:b0:a8:68:db:3e:b2:f7:54:5d:87:09:85:0c:
ae:99:3c:52:0a:a5:85:b5:b1:db:24:5c:f1:18:01:79:e4:35:
41:5a:da:e8:12:1e:bc:ff:a1:5f:85:83:8d:11:62:f2:ad:d8:
9e:18:39:3d:58:6b:b3:7d:4b:0e:a9:11:3f:59:97:db:d8:fa:
2e:a6:dc:f3:02:a5:f0:61:62:67:5c:b2:61:62:8b:02:60:22:
6c:a1:2c:30:bb:cb:a7:4a:2b:0c:19:ca:5c:6b:9e:e6:0b:3c:
cd:83:b4:d4:06:36:14:50:20:37:8e:f1:50:a3:6b:06:9d:7c:
de:68:2e:c2:e5:4f:d0:dc:96:49:9f:95:96:61:e0:da:b6:ab:
02:d9:2a:f8:88:8e:a4:48:2b:fe:5d:63:14:da:26:a5:5d:de:
c3:a5:1c:a2:79:be:52:a9:c7:e9:07:a3:73:32:e5:84:1a:11:
d4:ca:60:23:70:99:3e:b5:25:39:86:30:0a:2b:3e:4c:6a:34:
a3:9e:59:ec:61:8f:bd:a8:aa:e0:ac:cc:a8:ea:cc:fb:69:62:
b4:d1:09:27:a8:32:c7:06:ae:b9:7d:10:f0:52:0e:41:aa:23:
b0:7d:80:5f:b9:ac:25:57:49:58:28:c6:fb:49:07:5f:99:54:
95:dc:61:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wCvmWC9cX/uRnhX8kD5XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0YWVjODAyNGNhYTEwM2E4NDEyNjk2YzdlNzJmNzc4MDNj
ZDg2OTUwHhcNMjYwMzI5MDQwMDM0WhcNMjYwMzMwMDQwMDM0WjAzMTEwLwYDVQQD
EygwMTNiNGZjNzc1YWM2NGI2MDI0MDYyYzU2YjQ3YTlhMWVlYzkwZmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3E+GsHcjUTP9Y4+HN7XRN+YQM5E
y/vQcBysXsoqO1QvAjkzatcTZKZ4ZMVkuw9gI26Z6Eyag0700AGjSsnN7LrALRcx
L4i2vfjSlKHh7gfGIV+MM6Ic2+7GgBYxx7LiuPeYGkTbPSMwfhTF5pvbdJlJ9/bU
bH2OpkumqL0Zs1WraOSmds5IdH1eyz2U6BLqTuohfRhiHyxTDKzXwHBKtfMmdxC7
GHn3bI4ll9e6BIyAijYaKaMJuBVZ0D7vm4sHutUYTJjZH4iF1a2TbbyyqynJfceP
5Z27qPWVbgkXfAbh7Grppwg9+B6NdPdtJ5+tgjr28kMOjc6AKL3Rvynl7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAE7T8d1rGS2AkBixWtHqaHuyQ+jMB8GA1UdIwQY
MBaAFGSuyAJMqhA6hBJpbH5y93gDzYaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWks3SUFreXFFRHFFRW1sc2ZuTDNlQVBOaHBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8wZjI0ZGQtZWY0YS00ZGJmLWIyMGQt
YjAzOWMyNGI5OWNhLzEvWks3SUFreXFFRHFFRW1sc2ZuTDNlQVBOaHBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS8wZjI0ZGQtZWY0YS00ZGJmLWIyMGQtYjAzOWMyNGI5OWNh
LzEvWks3SUFreXFFRHFFRW1sc2ZuTDNlQVBOaHBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw0Tol4Ww
qGjbPrL3VF2HCYUMrpk8UgqlhbWx2yRc8RgBeeQ1QVra6BIevP+hX4WDjRFi8q3Y
nhg5PVhrs31LDqkRP1mX29j6Lqbc8wKl8GFiZ1yyYWKLAmAibKEsMLvLp0orDBnK
XGue5gs8zYO01AY2FFAgN47xUKNrBp183mguwuVP0NyWSZ+VlmHg2rarAtkq+IiO
pEgr/l1jFNompV3ew6Uconm+UqnH6QejczLlhBoR1MpgI3CZPrUlOYYwCis+TGo0
o55Z7GGPvaiq4KzMqOrM+2litNEJJ6gyxwauuX0Q8FIOQaojsH2AX7msJVdJWCjG
+0kHX5lUldxhtQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:20:19 2026 by rpki-client