Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: eSqdh10ZDrd0Fd+R6FtV2xRD4kyQPbRI+h5mBDKrxiE=
Subject key identifier: 29:9F:B1:8E:B7:7E:98:BB:3F:0C:C3:39:50:8C:7F:D8:49:0B:92:DA
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 019F10E4D45742FFCF003F9929204623A4F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 0AF6
Signing time: Mon 29 Jun 2026 01:00:59 +0000
Manifest this update: Mon 29 Jun 2026 01:00:59 +0000
Manifest next update: Tue 30 Jun 2026 01:00:59 +0000
Files and hashes: 1: GvdosnM4oTQr42AAbs5kaRK7G5k.asa (hash: +q7C0091/BCLWI1y72MQuuHCj669pr/poTHiNIbXYFE=)
2: wEZZX0o5N8nlP47tu1RwoQ2y0AY.roa (hash: ddJPky6VMI6qp8TK3QriFAzhCSzbyfK/JMSPvgj4FCE=)
3: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: 9XcdkR2Uq4UWzwWWY8F7NzH0i5Qave3/M2LwXluHovs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 01:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:10:e4:d4:57:42:ff:cf:00:3f:99:29:20:46:23:a4:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: Jun 29 01:00:59 2026 GMT
Not After : Jun 30 01:00:59 2026 GMT
Subject: CN=299fb18eb77e98bb3f0cc339508c7fd8490b92da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e3:b8:99:d8:16:81:e8:03:78:16:d3:4b:a9:
53:94:3c:13:5b:68:47:3f:fa:d8:65:a4:6d:5d:16:
a7:62:7f:eb:6f:8e:90:9d:ae:e8:71:f8:9b:53:a5:
99:0d:32:05:67:77:73:93:d7:85:be:98:af:36:59:
de:c2:a0:12:9f:49:5b:49:a9:c8:3a:a6:77:1a:50:
9f:b2:74:4d:e6:1a:15:80:35:77:61:3f:0e:42:1e:
e9:68:79:29:96:c6:76:cf:01:61:53:81:ea:8c:31:
72:4c:d3:0d:09:df:f3:07:8b:36:d1:58:6c:81:df:
7c:04:62:db:69:9a:5d:f3:3c:e5:f2:15:be:45:68:
6a:53:e7:88:19:75:bf:04:ab:6d:40:23:52:f6:be:
48:86:a3:9a:39:26:6e:67:f7:59:6c:ef:53:62:1c:
f4:87:ec:f3:ef:5e:74:d5:d9:2b:86:f1:84:1d:28:
6c:a3:73:7e:32:77:67:37:67:0e:32:0c:98:43:92:
f6:34:08:9d:7b:cc:9c:15:7c:7b:12:e4:77:33:85:
e4:05:dc:d8:a1:43:c8:c3:76:26:94:8c:72:9f:1b:
7e:8f:fe:a8:c6:53:ed:c8:d1:7b:b1:d3:23:c0:76:
c4:4f:e7:7f:cb:31:b5:8e:2e:9c:57:ed:87:26:21:
96:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9F:B1:8E:B7:7E:98:BB:3F:0C:C3:39:50:8C:7F:D8:49:0B:92:DA
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:50:a5:7c:00:95:9d:ef:0e:a9:13:cb:79:7a:9e:c8:62:7c:
9f:1c:2f:45:65:7c:79:03:57:18:ad:b6:ae:aa:f2:7f:97:5b:
df:1e:fe:fb:e6:ee:e4:4c:46:4f:cd:c5:32:31:76:76:26:15:
6c:b1:d3:bf:df:67:9c:57:79:48:c4:c9:e9:89:9f:e9:81:64:
23:28:a5:07:9f:0b:10:c4:e2:1f:18:90:7e:99:ab:88:15:5e:
07:57:7d:82:4e:7f:9d:71:e7:16:f7:d3:99:7e:af:e0:95:ca:
63:14:bc:1b:8d:c8:26:83:8e:e4:13:6e:3b:d8:fa:ca:16:ef:
f9:69:a6:5e:2f:79:92:75:dd:c9:ab:6a:a7:c4:6b:87:dc:cb:
e5:26:e9:26:a8:75:62:bd:59:8d:11:2f:bb:17:ab:e0:b0:00:
80:d5:c4:8d:d8:d1:43:df:39:dc:93:cf:c5:6e:79:a6:47:ec:
21:0c:da:fa:df:80:e1:c7:b5:e1:03:10:4f:71:bf:af:fb:0c:
0e:42:be:b3:f8:a6:b2:8b:5c:89:5c:7b:86:7d:38:a5:c7:b9:
9e:56:66:7d:96:3e:4e:78:18:f5:66:97:3b:99:d6:96:d6:3c:
0f:76:7d:16:69:6a:fd:91:8b:07:61:31:ce:28:41:53:96:e0:
5d:fa:30:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Q5NRXQv/PAD+ZKSBGI6T0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjYWQ2OGY3ZThhYmFkZjQ0NzI2MjMzNDNhMzI1NjE1MDcy
MjQxODkwHhcNMjYwNjI5MDEwMDU5WhcNMjYwNjMwMDEwMDU5WjAzMTEwLwYDVQQD
EygyOTlmYjE4ZWI3N2U5OGJiM2YwY2MzMzk1MDhjN2ZkODQ5MGI5MmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOO4mdgWgegDeBbTS6lTlDwTW2hH
P/rYZaRtXRanYn/rb46Qna7ocfibU6WZDTIFZ3dzk9eFvpivNlnewqASn0lbSanI
OqZ3GlCfsnRN5hoVgDV3YT8OQh7paHkplsZ2zwFhU4HqjDFyTNMNCd/zB4s20Vhs
gd98BGLbaZpd8zzl8hW+RWhqU+eIGXW/BKttQCNS9r5IhqOaOSZuZ/dZbO9TYhz0
h+zz71501dkrhvGEHShso3N+MndnN2cOMgyYQ5L2NAide8ycFXx7EuR3M4XkBdzY
oUPIw3YmlIxynxt+j/6oxlPtyNF7sdMjwHbET+d/yzG1ji6cV+2HJiGWDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCmfsY63fpi7PwzDOVCMf9hJC5LaMB8GA1UdIwQY
MBaAFMytaPfoq630RyYjNDoyVhUHIkGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS80YmJhMDgtYmUzNi00N2ViLWFiMmMt
NjM1OWY5MmUxZDJmLzEveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS80YmJhMDgtYmUzNi00N2ViLWFiMmMtNjM1OWY5MmUxZDJm
LzEveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEVClfACV
ne8OqRPLeXqeyGJ8nxwvRWV8eQNXGK22rqryf5db3x7+++bu5ExGT83FMjF2diYV
bLHTv99nnFd5SMTJ6Ymf6YFkIyilB58LEMTiHxiQfpmriBVeB1d9gk5/nXHnFvfT
mX6v4JXKYxS8G43IJoOO5BNuO9j6yhbv+WmmXi95knXdyatqp8Rrh9zL5SbpJqh1
Yr1ZjREvuxer4LAAgNXEjdjRQ9853JPPxW55pkfsIQza+t+A4ce14QMQT3G/r/sM
DkK+s/imsotciVx7hn04pce5nlZmfZY+TngY9WaXO5nWltY8D3Z9Fmlq/ZGLB2Ex
zihBU5bgXfowsw==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:39:03 2026 by rpki-client