Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
File: ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft (raw, json)
Hash identifier: eYTt/BKw0J38K/6YBj6wKRe/VSTSCY18ZwniA7eujv8=
Subject key identifier: 0A:A5:5C:73:9E:D4:3F:29:65:BA:AA:8D:B7:CB:26:9D:A3:71:68:85
Authority key identifier: 65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
Certificate issuer: /CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Certificate serial: 019D333F1421641C8C9DA5BB92CEE7B6E25B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
Manifest number: 0342
Signing time: Sat 28 Mar 2026 07:01:05 +0000
Manifest this update: Sat 28 Mar 2026 07:01:05 +0000
Manifest next update: Sun 29 Mar 2026 07:01:05 +0000
Files and hashes: 1: OpiyEA7jLNoth377L3JQZRW22EA.asa (hash: r8ONgzWitytpplKZRKdun1LH8tmOWmyteR7//LNHOZ8=)
2: TBDRW3pZmuh3LqJB0SgJxwzZcn8.asa (hash: hzhoB7Z5vY10r4VrziTI+hp0NwmrNuDhAq362RHDbhc=)
3: ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl (hash: QBIzRy9a95o2s6gmUnFyR8qywSMPZeR5CBQ+UHKsU2c=)
4: rzi7m0KP8cPnEmWD-fco-_paj9U.asa (hash: lfKqSnhuUomLdxGZp4G4SFo0AldQ+I4AQDQ1X6QehlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:3f:14:21:64:1c:8c:9d:a5:bb:92:ce:e7:b6:e2:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d0932172aa2d1c77c4bb98370aab3de6ac3457
Validity
Not Before: Mar 28 07:01:05 2026 GMT
Not After : Mar 29 07:01:05 2026 GMT
Subject: CN=0aa55c739ed43f2965baaa8db7cb269da3716885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c8:01:95:2b:31:3c:1d:99:f1:9e:9d:83:87:
8e:0b:ec:1f:30:c8:0f:99:45:d3:97:74:81:71:57:
c5:7a:14:43:04:f3:39:e7:ae:5b:0a:dc:c6:18:41:
24:24:9e:b4:34:af:30:60:8b:37:2f:69:b1:8f:4a:
5d:ac:d8:06:fe:e4:24:ed:58:09:b8:18:c8:31:57:
8f:d4:a1:e8:5c:16:5f:c9:a1:9d:8e:ee:35:87:32:
3d:de:a1:9f:90:8e:1f:0f:82:da:00:f3:70:17:00:
1f:e4:57:b7:02:18:61:5a:4e:70:b6:ef:0d:08:d0:
07:45:7c:7a:91:a7:e8:d1:ed:80:f4:23:de:dc:71:
c3:03:cf:8c:77:8b:e6:04:78:df:cd:46:07:6d:99:
82:c2:e6:75:aa:2c:e4:b4:47:f9:72:38:87:03:31:
1f:99:54:52:a3:d9:e8:73:51:3b:b6:00:0d:4d:dc:
dc:cf:d6:18:29:63:e8:7f:44:c6:fb:70:9a:d5:32:
30:28:b8:84:7f:ec:ee:6b:b3:8f:d0:ce:55:f9:8e:
d2:26:98:40:90:9a:ec:29:35:67:0f:76:07:8f:9d:
35:29:5f:55:e7:ce:f1:45:ee:90:c0:06:1f:f7:13:
f8:9e:8a:46:17:ea:3d:87:fb:a8:10:d9:58:35:ba:
fa:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A5:5C:73:9E:D4:3F:29:65:BA:AA:8D:B7:CB:26:9D:A3:71:68:85
X509v3 Authority Key Identifier:
keyid:65:D0:93:21:72:AA:2D:1C:77:C4:BB:98:37:0A:AB:3D:E6:AC:34:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdCTIXKqLRx3xLuYNwqrPeasNFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/fa7711-37ff-4aec-9853-1edde6c9d96a/1/ZdCTIXKqLRx3xLuYNwqrPeasNFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:df:a5:d3:05:fe:50:be:dc:3e:22:55:9e:f0:92:6c:36:d3:
2c:e9:c6:e0:70:84:0f:80:af:f8:b3:97:10:3f:52:49:09:5d:
d3:bf:ed:6c:73:53:b1:f0:ef:a9:1f:e0:a9:d0:78:44:a8:4e:
40:eb:4d:43:7a:7a:b4:be:5a:d6:bd:18:d9:7d:92:41:90:ba:
11:3e:97:0e:05:79:ce:2d:7f:ff:15:0a:96:a9:43:fa:ca:fd:
a9:e0:5b:ba:0c:67:67:be:6d:7e:7f:ef:99:83:d4:03:77:e7:
7a:ba:0e:53:d8:c5:8d:28:ac:0f:6b:33:3d:cb:35:78:d4:11:
2b:ea:db:38:5d:05:99:48:47:ac:7f:70:23:04:16:f7:46:cc:
2a:c4:d7:b0:15:97:78:a9:28:77:5f:cf:74:9a:03:5c:1a:fe:
4f:a3:ee:56:93:e4:b6:71:51:2d:07:db:ff:0d:ca:8b:28:ab:
22:44:2c:d8:a2:93:c5:e2:31:27:14:4d:73:f7:7e:25:f0:46:
4a:f2:27:c9:62:cc:ef:bb:98:43:76:0f:7f:42:0c:9e:97:2d:
cc:6c:f0:ff:d5:d4:b4:27:c2:c9:b2:0a:f9:7c:29:d6:96:01:
d5:bd:b0:60:b0:8a:70:27:30:a6:4d:e0:ef:e1:ad:81:44:25:
7a:86:82:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0zPxQhZByMnaW7ks7ntuJbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1ZDA5MzIxNzJhYTJkMWM3N2M0YmI5ODM3MGFhYjNkZTZh
YzM0NTcwHhcNMjYwMzI4MDcwMTA1WhcNMjYwMzI5MDcwMTA1WjAzMTEwLwYDVQQD
EygwYWE1NWM3MzllZDQzZjI5NjViYWFhOGRiN2NiMjY5ZGEzNzE2ODg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8gBlSsxPB2Z8Z6dg4eOC+wfMMgP
mUXTl3SBcVfFehRDBPM5565bCtzGGEEkJJ60NK8wYIs3L2mxj0pdrNgG/uQk7VgJ
uBjIMVeP1KHoXBZfyaGdju41hzI93qGfkI4fD4LaAPNwFwAf5Fe3AhhhWk5wtu8N
CNAHRXx6kafo0e2A9CPe3HHDA8+Md4vmBHjfzUYHbZmCwuZ1qizktEf5cjiHAzEf
mVRSo9noc1E7tgANTdzcz9YYKWPof0TG+3Ca1TIwKLiEf+zua7OP0M5V+Y7SJphA
kJrsKTVnD3YHj501KV9V587xRe6QwAYf9xP4nopGF+o9h/uoENlYNbr6EQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAqlXHOe1D8pZbqqjbfLJp2jcWiFMB8GA1UdIwQY
MBaAFGXQkyFyqi0cd8S7mDcKqz3mrDRXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmRDVElYS3FMUngzeEx1WU53cXJQZWFzTkZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9mYTc3MTEtMzdmZi00YWVjLTk4NTMt
MWVkZGU2YzlkOTZhLzEvWmRDVElYS3FMUngzeEx1WU53cXJQZWFzTkZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9mYTc3MTEtMzdmZi00YWVjLTk4NTMtMWVkZGU2YzlkOTZh
LzEvWmRDVElYS3FMUngzeEx1WU53cXJQZWFzTkZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAd+l0wX+
UL7cPiJVnvCSbDbTLOnG4HCED4Cv+LOXED9SSQld07/tbHNTsfDvqR/gqdB4RKhO
QOtNQ3p6tL5a1r0Y2X2SQZC6ET6XDgV5zi1//xUKlqlD+sr9qeBbugxnZ75tfn/v
mYPUA3fneroOU9jFjSisD2szPcs1eNQRK+rbOF0FmUhHrH9wIwQW90bMKsTXsBWX
eKkod1/PdJoDXBr+T6PuVpPktnFRLQfb/w3KiyirIkQs2KKTxeIxJxRNc/d+JfBG
SvInyWLM77uYQ3YPf0IMnpctzGzw/9XUtCfCybIK+Xwp1pYB1b2wYLCKcCcwpk3g
7+GtgUQleoaCNw==
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:38:06 2026 by rpki-client