Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
File: rz9wBQP0ByCoL3bvFc2mICLx-ak.mft (raw, json)
Hash identifier: MJhIk9L4B4PYI/qiUB8wbMXocNDYhI6fzlOS179gL9c=
Subject key identifier: D1:96:6C:B4:18:30:43:D6:26:5F:14:DC:66:35:31:9C:BE:A7:5C:95
Authority key identifier: AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
Certificate issuer: /CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Certificate serial: 019CE66DADA29CED9280BDC4D096EADDA701
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
Manifest number: 0F2B
Signing time: Fri 13 Mar 2026 09:01:13 +0000
Manifest this update: Fri 13 Mar 2026 09:01:13 +0000
Manifest next update: Sat 14 Mar 2026 09:01:13 +0000
Files and hashes: 1: 8LnVsjH2EwUmwFrvwngeTt29sfc.roa (hash: zoMdGFAt0JgG0lcHzQngcTPabdRrKnSlHq63qMuC6dU=)
2: rz9wBQP0ByCoL3bvFc2mICLx-ak.crl (hash: Fi+tL1MjU4e+PS9UP2wonyUHAFb26GCUO2krp1wiK10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:6d:ad:a2:9c:ed:92:80:bd:c4:d0:96:ea:dd:a7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Validity
Not Before: Mar 13 09:01:13 2026 GMT
Not After : Mar 14 09:01:13 2026 GMT
Subject: CN=d1966cb4183043d6265f14dc6635319cbea75c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:63:de:6e:fe:1f:6b:24:87:a5:d9:71:c6:f8:
83:90:ba:a2:ed:17:5c:3d:87:16:b7:82:7c:98:21:
54:6f:bb:18:ab:a0:32:e6:41:5b:bd:19:4c:d5:94:
8e:8d:8b:50:5f:b7:1f:3b:1e:2b:36:6f:ef:67:20:
4f:de:af:aa:1d:62:29:4d:ea:ff:27:a2:f2:da:ab:
c1:84:97:a8:e8:49:d7:9e:b0:89:13:8e:3f:59:7c:
fa:cb:a1:13:73:56:ec:19:97:20:73:cc:c1:cb:fd:
c7:02:67:c2:cd:ef:54:4d:33:77:ad:29:dc:2a:0d:
fc:92:a7:54:dc:68:8e:4e:76:b5:fc:85:43:95:11:
13:b8:9b:4e:ef:c6:14:95:7d:6f:d8:f3:13:5d:7c:
95:c8:4f:2e:15:df:39:e3:a1:e6:8d:82:e2:fa:24:
26:bb:e7:1b:ec:a6:1d:39:54:f8:14:c3:37:bb:0e:
1f:5b:61:3d:1f:59:e1:27:63:d1:e4:d1:7b:11:6a:
d7:65:d2:e6:cd:c5:91:cb:16:c6:47:09:72:28:af:
0a:e6:ba:ce:7b:b8:2a:ab:11:f5:e4:5d:f4:8e:e1:
0b:84:3d:4b:d3:8e:7f:95:ee:c4:52:81:1e:ca:e4:
8d:9e:cc:8a:ce:9f:6c:c1:da:5e:0a:7f:27:be:45:
c8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:96:6C:B4:18:30:43:D6:26:5F:14:DC:66:35:31:9C:BE:A7:5C:95
X509v3 Authority Key Identifier:
keyid:AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:44:0e:f5:44:81:bd:9d:6d:f0:e4:ab:0c:8b:2a:2d:3f:bb:
36:b2:74:56:e2:c2:66:50:f7:f8:76:97:d3:68:ef:72:90:75:
d1:aa:87:4f:9e:70:5d:f0:13:12:79:0f:7d:3f:b1:fa:9e:a6:
bd:10:50:92:a5:a8:6c:0c:5e:98:50:a0:6e:32:aa:cf:cb:c3:
6f:21:67:1d:f8:23:61:b1:ef:3d:b3:98:3f:7f:e5:d4:66:bc:
c7:fd:d9:3d:b5:03:1e:ca:32:e7:81:cf:ea:f2:04:85:b1:88:
74:99:f2:e4:36:7b:76:6a:e7:10:d5:af:a7:27:d7:05:6b:a1:
45:fd:ed:e9:b5:bb:2e:9b:86:b8:64:93:fa:cc:91:5a:d9:67:
a7:ca:39:3b:48:3c:f4:57:37:2c:d2:4f:10:13:49:c2:55:58:
54:55:c2:31:a8:a4:67:46:d7:75:3c:7c:fd:1d:4b:da:d5:b4:
ca:50:54:2e:df:fe:93:a1:b9:91:89:bd:f3:f1:c3:e0:39:f3:
e4:0b:24:9b:30:37:24:c7:e6:95:f5:47:f7:cf:8f:b6:6a:5d:
eb:85:27:49:81:2b:01:38:6b:e7:7f:c5:7a:3d:b9:86:ae:23:
73:60:05:00:4a:31:5e:2c:66:da:9f:54:f9:b1:84:6c:2d:ea:
ed:16:30:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzmba2inO2SgL3E0Jbq3acBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmM2Y3MDA1MDNmNDA3MjBhODJmNzZlZjE1Y2RhNjIwMjJm
MWY5YTkwHhcNMjYwMzEzMDkwMTEzWhcNMjYwMzE0MDkwMTEzWjAzMTEwLwYDVQQD
EyhkMTk2NmNiNDE4MzA0M2Q2MjY1ZjE0ZGM2NjM1MzE5Y2JlYTc1Yzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmPebv4faySHpdlxxviDkLqi7Rdc
PYcWt4J8mCFUb7sYq6Ay5kFbvRlM1ZSOjYtQX7cfOx4rNm/vZyBP3q+qHWIpTer/
J6Ly2qvBhJeo6EnXnrCJE44/WXz6y6ETc1bsGZcgc8zBy/3HAmfCze9UTTN3rSnc
Kg38kqdU3GiOTna1/IVDlRETuJtO78YUlX1v2PMTXXyVyE8uFd8546HmjYLi+iQm
u+cb7KYdOVT4FMM3uw4fW2E9H1nhJ2PR5NF7EWrXZdLmzcWRyxbGRwlyKK8K5rrO
e7gqqxH15F30juELhD1L045/le7EUoEeyuSNnsyKzp9swdpeCn8nvkXIRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNGWbLQYMEPWJl8U3GY1MZy+p1yVMB8GA1UdIwQY
MBaAFK8/cAUD9AcgqC927xXNpiAi8fmpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcno5d0JRUDBCeUNvTDNidkZjMm1JQ0x4LWFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC83YjdmMjYtZjg0MS00NzAwLWFhZmIt
ZWFkMDYzNDE5MmNkLzEvcno5d0JRUDBCeUNvTDNidkZjMm1JQ0x4LWFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC83YjdmMjYtZjg0MS00NzAwLWFhZmItZWFkMDYzNDE5MmNk
LzEvcno5d0JRUDBCeUNvTDNidkZjMm1JQ0x4LWFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtUQO9USB
vZ1t8OSrDIsqLT+7NrJ0VuLCZlD3+HaX02jvcpB10aqHT55wXfATEnkPfT+x+p6m
vRBQkqWobAxemFCgbjKqz8vDbyFnHfgjYbHvPbOYP3/l1Ga8x/3ZPbUDHsoy54HP
6vIEhbGIdJny5DZ7dmrnENWvpyfXBWuhRf3t6bW7LpuGuGST+syRWtlnp8o5O0g8
9Fc3LNJPEBNJwlVYVFXCMaikZ0bXdTx8/R1L2tW0ylBULt/+k6G5kYm98/HD4Dnz
5AskmzA3JMfmlfVH98+Ptmpd64UnSYErAThr53/Fej25hq4jc2AFAEoxXixm2p9U
+bGEbC3q7RYwBg==
-----END CERTIFICATE-----
Generated at Fri Mar 13 11:58:40 2026 by rpki-client