Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
File: z65GEYj_we8vOhR0VxqUOaVTdKw.mft (raw, json)
Hash identifier: VbhqzdOHQroGlHEnqFUMMTVQrP9U7hMPWE++FlhkDWI=
Subject key identifier: 67:A5:8A:81:A9:69:3D:E5:95:CD:73:24:60:C3:23:9D:40:26:FC:99
Authority key identifier: CF:AE:46:11:88:FF:C1:EF:2F:3A:14:74:57:1A:94:39:A5:53:74:AC
Certificate issuer: /CN=cfae461188ffc1ef2f3a1474571a9439a55374ac
Certificate serial: 019D3865D194121CDD901375E6FC32BDBB04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
Manifest number: 05AA
Signing time: Sun 29 Mar 2026 07:01:29 +0000
Manifest this update: Sun 29 Mar 2026 07:01:29 +0000
Manifest next update: Mon 30 Mar 2026 07:01:29 +0000
Files and hashes: 1: qa609O6nvF5j_vNVUt5PgsUqisU.roa (hash: lWXhrpMpwMFVcgDosqLb+66fDDl87RYvx/aoX2lkzcs=)
2: z65GEYj_we8vOhR0VxqUOaVTdKw.crl (hash: cpFvwXa5pNeh8JYk9Vdtp5DAJk9foh8lD6k4oMycY/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:d1:94:12:1c:dd:90:13:75:e6:fc:32:bd:bb:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfae461188ffc1ef2f3a1474571a9439a55374ac
Validity
Not Before: Mar 29 07:01:29 2026 GMT
Not After : Mar 30 07:01:29 2026 GMT
Subject: CN=67a58a81a9693de595cd732460c3239d4026fc99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:61:b4:cd:4a:e2:34:76:e8:d7:a8:62:94:5e:
67:1c:4f:2d:b4:9f:ad:d0:ef:9a:c8:63:a5:7e:89:
67:09:11:46:e1:c7:c1:b0:7f:46:2f:1f:8b:9b:0f:
67:8b:93:31:38:4b:48:8d:2c:ac:a5:73:70:bb:ca:
59:d9:64:f3:c2:3c:83:92:6d:06:90:ed:fc:20:db:
6d:42:fc:e0:c4:06:ca:14:ea:81:89:ac:e1:be:b8:
f3:a9:5b:2b:59:04:6c:ba:af:31:57:a5:43:31:6f:
98:0d:19:05:c1:2c:ac:7d:d4:41:d3:de:59:d1:63:
ff:05:61:c2:fa:65:96:72:fa:20:55:10:25:bf:7f:
87:ec:e7:b3:b8:47:ad:04:16:4b:86:0f:73:f7:53:
9e:01:bf:8d:c1:4a:61:b9:24:04:e7:22:4a:3e:b6:
27:ea:a7:f2:fe:19:22:11:a4:07:48:30:b9:05:94:
de:c2:09:2c:2c:8f:44:01:e5:0d:0c:ed:23:6d:08:
88:6b:2e:df:a1:93:79:e4:6a:bb:11:8f:a8:bd:d6:
80:0c:1d:db:4d:89:de:03:3c:5b:91:35:45:4d:88:
82:b3:7b:96:24:54:88:99:3d:f1:dd:aa:61:87:81:
3c:57:b5:3f:66:ad:fe:4f:26:9c:0f:97:ce:61:5f:
2d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A5:8A:81:A9:69:3D:E5:95:CD:73:24:60:C3:23:9D:40:26:FC:99
X509v3 Authority Key Identifier:
keyid:CF:AE:46:11:88:FF:C1:EF:2F:3A:14:74:57:1A:94:39:A5:53:74:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:62:ef:32:12:1e:56:1f:97:55:1b:1b:2c:0d:3b:36:a3:ee:
81:33:aa:36:61:d2:ac:3b:fb:81:0c:31:e5:7a:f0:97:4f:6c:
1b:6a:c9:ce:84:ec:8f:85:65:a2:06:f7:36:50:a0:d9:b0:62:
72:67:35:52:99:e7:1a:6b:29:ab:bd:ed:5c:fd:24:38:0e:6f:
e2:de:46:6c:11:73:2f:e1:cf:4f:0d:cf:bd:71:77:05:0c:10:
93:5c:c7:a2:c0:51:d2:a4:53:40:91:5a:8c:69:6a:9b:c6:27:
b8:a5:7b:91:ec:df:9e:d3:f2:e0:f4:0d:76:6e:fa:94:08:ee:
c9:fe:90:df:58:dd:eb:f3:90:96:52:74:f3:f4:7c:1d:a9:5e:
96:b1:b6:c4:63:58:9a:42:43:22:03:ec:31:ab:65:5f:d6:cf:
16:52:84:51:dd:8b:0f:76:5a:80:73:b5:16:0e:3f:93:ed:36:
2f:b6:ab:4f:6d:2d:11:da:65:3d:63:bd:90:b8:57:e1:93:46:
4c:7c:f7:4b:38:a5:cf:8a:b4:31:87:47:e0:98:3c:14:99:db:
40:c1:94:6c:8e:a0:95:7c:a0:35:af:48:cf:6a:88:4f:a5:5c:
2b:21:cb:69:f6:e5:58:e2:c3:61:b7:23:30:39:a4:9a:5b:68:
0f:85:ee:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZdGUEhzdkBN15vwyvbsEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmYWU0NjExODhmZmMxZWYyZjNhMTQ3NDU3MWE5NDM5YTU1
Mzc0YWMwHhcNMjYwMzI5MDcwMTI5WhcNMjYwMzMwMDcwMTI5WjAzMTEwLwYDVQQD
Eyg2N2E1OGE4MWE5NjkzZGU1OTVjZDczMjQ2MGMzMjM5ZDQwMjZmYzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWG0zUriNHbo16hilF5nHE8ttJ+t
0O+ayGOlfolnCRFG4cfBsH9GLx+Lmw9ni5MxOEtIjSyspXNwu8pZ2WTzwjyDkm0G
kO38INttQvzgxAbKFOqBiazhvrjzqVsrWQRsuq8xV6VDMW+YDRkFwSysfdRB095Z
0WP/BWHC+mWWcvogVRAlv3+H7OezuEetBBZLhg9z91OeAb+NwUphuSQE5yJKPrYn
6qfy/hkiEaQHSDC5BZTewgksLI9EAeUNDO0jbQiIay7foZN55Gq7EY+ovdaADB3b
TYneAzxbkTVFTYiCs3uWJFSImT3x3aphh4E8V7U/Zq3+TyacD5fOYV8tyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGelioGpaT3llc1zJGDDI51AJvyZMB8GA1UdIwQY
MBaAFM+uRhGI/8HvLzoUdFcalDmlU3SsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejY1R0VZal93ZTh2T2hSMFZ4cVVPYVZUZEt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8yMDc4NzYtODBiNy00NDQzLTlmMGMt
NTVmMDZmMDYyY2UwLzEvejY1R0VZal93ZTh2T2hSMFZ4cVVPYVZUZEt3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8yMDc4NzYtODBiNy00NDQzLTlmMGMtNTVmMDZmMDYyY2Uw
LzEvejY1R0VZal93ZTh2T2hSMFZ4cVVPYVZUZEt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ2LvMhIe
Vh+XVRsbLA07NqPugTOqNmHSrDv7gQwx5Xrwl09sG2rJzoTsj4Vlogb3NlCg2bBi
cmc1UpnnGmspq73tXP0kOA5v4t5GbBFzL+HPTw3PvXF3BQwQk1zHosBR0qRTQJFa
jGlqm8YnuKV7kezfntPy4PQNdm76lAjuyf6Q31jd6/OQllJ08/R8HalelrG2xGNY
mkJDIgPsMatlX9bPFlKEUd2LD3ZagHO1Fg4/k+02L7arT20tEdplPWO9kLhX4ZNG
THz3Szilz4q0MYdH4Jg8FJnbQMGUbI6glXygNa9Iz2qIT6VcKyHLafblWOLDYbcj
MDmkmltoD4XuMQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:52 2026 by rpki-client