Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
File: Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft (raw, json)
Hash identifier: nJAOOsc6BdB4MxDc0yjVnUtIoSDQ3XcTkR/AQ6B55gw=
Subject key identifier: 3B:91:B5:91:CA:6B:1F:38:AB:5F:A6:27:FB:06:08:14:4B:11:9F:60
Authority key identifier: 67:D4:10:E7:07:B5:79:71:B1:4A:54:30:9F:02:0B:AC:BB:4D:21:B1
Certificate issuer: /CN=67d410e707b57971b14a54309f020bacbb4d21b1
Certificate serial: 019EBAA2588D01FFB56554ED5E817721E4D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
Manifest number: 0522
Signing time: Fri 12 Jun 2026 07:01:02 +0000
Manifest this update: Fri 12 Jun 2026 07:01:02 +0000
Manifest next update: Sat 13 Jun 2026 07:01:02 +0000
Files and hashes: 1: Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl (hash: cqKf6oiKQwyA8HMmQJxVrPKGpgKjxvLSxUedyIezWPU=)
2: axtr1Yfq33sGPOPOJoi8LjJUh7Q.roa (hash: nE9lYWD+wgHpWX2b2+6stth4mhkUfCemKJyIsoT/t6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 05:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:a2:58:8d:01:ff:b5:65:54:ed:5e:81:77:21:e4:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d410e707b57971b14a54309f020bacbb4d21b1
Validity
Not Before: Jun 12 07:01:02 2026 GMT
Not After : Jun 13 07:01:02 2026 GMT
Subject: CN=3b91b591ca6b1f38ab5fa627fb0608144b119f60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:52:6e:dc:98:b7:c6:e7:57:e5:da:3f:77:29:
6d:be:b6:59:33:06:48:2a:c5:85:0f:45:58:7f:95:
12:bc:07:28:37:71:a2:90:43:c1:ef:76:3e:b8:0d:
29:c7:67:7a:df:b3:f7:cf:0d:88:7e:83:64:34:c9:
43:56:88:cf:6d:56:72:1a:e6:0e:ea:5a:88:01:5e:
39:09:0b:01:fd:c2:95:47:44:fb:18:e6:02:17:11:
45:eb:be:9c:20:a9:19:17:ed:9c:32:ea:63:ce:1d:
de:9d:9d:ea:83:ef:9b:38:5d:f8:f8:7f:9f:8b:43:
14:27:7a:76:a6:27:6a:f0:ab:79:50:7d:0f:85:7f:
7e:53:ff:1c:80:ec:3b:dc:10:08:25:a9:fd:54:52:
0a:ac:0a:cf:12:24:9f:8f:b3:b9:e8:71:48:1a:25:
74:c8:84:b0:f6:85:62:df:5f:f5:a6:87:f8:ff:77:
4f:98:e0:a2:75:69:12:26:eb:5c:0e:63:39:5f:87:
20:5b:d4:6b:fe:df:03:be:12:8c:30:94:9a:84:9f:
bc:ea:fa:d9:d7:fa:83:2e:c8:aa:de:94:86:68:5b:
76:ee:74:0f:7f:2d:19:c3:d9:2d:0c:e6:6c:1e:96:
e4:22:7c:72:3a:09:32:80:29:e2:97:23:18:83:95:
48:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:91:B5:91:CA:6B:1F:38:AB:5F:A6:27:FB:06:08:14:4B:11:9F:60
X509v3 Authority Key Identifier:
keyid:67:D4:10:E7:07:B5:79:71:B1:4A:54:30:9F:02:0B:AC:BB:4D:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:a5:d9:cb:62:04:33:41:07:fb:28:1f:31:68:87:d8:32:d6:
d7:7f:78:61:83:05:ef:a2:02:26:fd:df:ac:4f:96:89:2b:5b:
7b:3c:be:61:70:59:d4:ac:0a:02:4e:bf:74:d1:06:92:0c:41:
51:e4:7c:e9:14:d6:75:63:26:4c:64:a4:ac:9c:38:01:98:fa:
6f:4d:83:31:0f:a5:8e:ad:54:91:5b:de:69:ed:36:89:1b:24:
2e:e7:aa:80:69:fa:ca:82:8b:a2:79:73:d0:a0:d3:bb:0b:30:
82:96:19:8f:49:50:17:88:ba:a2:12:d7:b8:05:9c:86:b8:41:
c4:fd:05:51:fd:4e:80:a2:fb:d2:a2:44:10:1b:75:ac:a6:eb:
9a:c0:ff:29:1a:fc:91:ce:eb:a5:5b:b6:85:9b:8d:90:8d:9d:
7e:86:31:32:02:cd:ef:8a:0b:56:3c:c9:8d:5b:51:fd:96:79:
d6:b6:61:56:31:f3:73:ea:1e:13:3a:bd:4e:cb:6a:3b:79:f2:
5a:aa:1c:a7:bc:b5:ba:3b:0b:45:5f:47:e6:d6:71:6e:13:e2:
05:f9:9b:f2:f2:d6:3d:74:1f:15:30:51:43:5d:b0:f7:29:a2:
e6:98:0c:3b:ad:a4:cd:9a:cd:8e:ad:f7:be:52:23:01:13:fd:
4a:92:f8:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ66oliNAf+1ZVTtXoF3IeTYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3ZDQxMGU3MDdiNTc5NzFiMTRhNTQzMDlmMDIwYmFjYmI0
ZDIxYjEwHhcNMjYwNjEyMDcwMTAyWhcNMjYwNjEzMDcwMTAyWjAzMTEwLwYDVQQD
EygzYjkxYjU5MWNhNmIxZjM4YWI1ZmE2MjdmYjA2MDgxNDRiMTE5ZjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlJu3Ji3xudX5do/dyltvrZZMwZI
KsWFD0VYf5USvAcoN3GikEPB73Y+uA0px2d637P3zw2IfoNkNMlDVojPbVZyGuYO
6lqIAV45CQsB/cKVR0T7GOYCFxFF676cIKkZF+2cMupjzh3enZ3qg++bOF34+H+f
i0MUJ3p2pidq8Kt5UH0PhX9+U/8cgOw73BAIJan9VFIKrArPEiSfj7O56HFIGiV0
yISw9oVi31/1pof4/3dPmOCidWkSJutcDmM5X4cgW9Rr/t8DvhKMMJSahJ+86vrZ
1/qDLsiq3pSGaFt27nQPfy0Zw9ktDOZsHpbkInxyOgkygCnilyMYg5VIFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDuRtZHKax84q1+mJ/sGCBRLEZ9gMB8GA1UdIwQY
MBaAFGfUEOcHtXlxsUpUMJ8CC6y7TSGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjlRUTV3ZTFlWEd4U2xRd253SUxyTHROSWJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny80ODZlN2EtMTg4ZC00NGFkLWI3Mzct
YjA5ZTc2NTUzODUyLzEvWjlRUTV3ZTFlWEd4U2xRd253SUxyTHROSWJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny80ODZlN2EtMTg4ZC00NGFkLWI3MzctYjA5ZTc2NTUzODUy
LzEvWjlRUTV3ZTFlWEd4U2xRd253SUxyTHROSWJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYaXZy2IE
M0EH+ygfMWiH2DLW1394YYMF76ICJv3frE+WiStbezy+YXBZ1KwKAk6/dNEGkgxB
UeR86RTWdWMmTGSkrJw4AZj6b02DMQ+ljq1UkVveae02iRskLueqgGn6yoKLonlz
0KDTuwswgpYZj0lQF4i6ohLXuAWchrhBxP0FUf1OgKL70qJEEBt1rKbrmsD/KRr8
kc7rpVu2hZuNkI2dfoYxMgLN74oLVjzJjVtR/ZZ51rZhVjHzc+oeEzq9TstqO3ny
Wqocp7y1ujsLRV9H5tZxbhPiBfmb8vLWPXQfFTBRQ12w9ymi5pgMO62kzZrNjq33
vlIjARP9SpL4MQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 08:35:11 2026 by rpki-client