Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
File: fZK2dHUnB1UTaoo8qALKEsisfnc.mft (raw, json)
Hash identifier: eH823dH7mum6sj8l3RGbSB/2r6qGHnvWbKwXFK1PBvQ=
Subject key identifier: 4E:C0:E2:50:37:FF:4A:AF:4B:53:43:58:BF:07:9A:91:B6:97:F8:43
Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Certificate serial: 019CEC6FA4A6B446728A7F9DE4E8F299913A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
Manifest number: 0F91
Signing time: Sat 14 Mar 2026 13:01:05 +0000
Manifest this update: Sat 14 Mar 2026 13:01:05 +0000
Manifest next update: Sun 15 Mar 2026 13:01:05 +0000
Files and hashes: 1: Q69BGamqP9_WoNnMCdnt1bm0Zuk.asa (hash: vaww5N01JjWWsrnL1Alu05fhe0e30iMVsw9GtNm8F+s=)
2: ecJkAb9L5BLrJG4sRdndteYMNv8.roa (hash: wE2gGvfsffXq2etxDqbfTLucpqrE1NBT6xi3whuXMTQ=)
3: fZK2dHUnB1UTaoo8qALKEsisfnc.crl (hash: qQxTNrseZn2vTnpVkI1T8As9vn7VsMMz/zlqMOMowFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ec:6f:a4:a6:b4:46:72:8a:7f:9d:e4:e8:f2:99:91:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Validity
Not Before: Mar 14 13:01:05 2026 GMT
Not After : Mar 15 13:01:05 2026 GMT
Subject: CN=4ec0e25037ff4aaf4b534358bf079a91b697f843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2f:cb:dd:d7:25:fc:76:b3:6b:d7:c7:95:9b:
f6:41:f3:0f:cb:9b:d1:7b:d4:4d:2d:c2:8b:5f:af:
c4:53:ba:cc:5e:45:c3:36:f8:45:6e:ff:f8:22:45:
57:20:3f:3d:9c:8f:28:37:ca:5c:7f:a8:f6:33:0e:
9b:9b:29:d4:05:39:3b:92:95:b5:08:ae:6a:c6:16:
fa:7b:00:2a:b2:3c:ee:2d:c9:33:1d:b8:07:5d:0c:
0a:18:96:f3:b0:f8:92:a1:f7:1e:31:bb:d8:7e:5c:
c0:42:30:c3:aa:12:54:3a:b8:27:cd:1b:ad:04:c6:
7a:87:5a:1b:57:f4:cc:4b:4a:e8:34:f0:52:a3:e4:
3b:4d:76:e7:da:80:a2:63:6b:04:a9:cc:c8:09:8d:
27:f4:4c:bd:54:69:5d:1c:5d:d5:bc:f8:aa:3f:04:
7c:66:f6:78:24:c5:d8:cb:aa:54:5f:8c:f4:34:76:
ca:92:cb:42:d8:2b:6b:62:e6:92:dc:46:39:44:cc:
44:52:06:a6:50:4b:21:0c:8a:db:00:34:bb:24:24:
22:d9:56:d3:c3:f9:cd:a8:7c:1f:42:2f:7e:94:f8:
2c:64:c9:29:dc:2d:36:ad:ac:d6:74:78:12:86:08:
7a:f8:46:60:90:62:a4:77:70:42:67:bc:dc:c1:bf:
24:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C0:E2:50:37:FF:4A:AF:4B:53:43:58:BF:07:9A:91:B6:97:F8:43
X509v3 Authority Key Identifier:
keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:45:b2:3d:64:4c:b1:0c:0c:82:8d:05:d5:ca:34:f0:c1:d5:
24:c7:99:a3:91:76:aa:85:6e:84:21:8f:50:c0:39:20:cb:ca:
8c:90:72:76:55:e9:5a:22:71:2a:71:a5:fd:fd:73:1f:36:cd:
a0:8e:78:9b:c6:86:42:b1:82:40:d5:93:42:b6:f1:97:95:b3:
a1:7c:45:c2:87:43:fa:83:0f:cc:f2:8e:0a:15:dd:31:1e:26:
0a:dc:ed:a0:65:86:16:de:cf:b8:03:dc:ae:c0:42:25:e0:f4:
cc:b2:df:0b:13:19:06:fa:8e:5b:46:b4:db:11:30:89:de:23:
9b:b8:4b:2f:72:e0:8b:3e:87:e4:80:ee:72:5d:30:a6:b5:0e:
e9:22:9b:b6:01:60:3f:95:e9:44:6c:8d:8e:cf:74:de:e1:5c:
2a:b1:32:72:db:ce:5e:f0:b7:ee:c5:c2:dd:1e:9d:d5:31:34:
46:ad:c4:9b:cf:8e:4d:a4:9d:d9:30:1c:79:1f:65:30:38:7f:
f2:2c:40:99:52:73:c7:d3:74:f2:ad:8b:00:86:ae:6a:6b:85:
3c:7a:4c:04:84:0a:8c:7e:79:3b:46:20:8f:a9:d6:e9:87:ee:
79:90:bb:7a:eb:2b:92:7f:82:8e:fb:e8:51:5e:60:16:24:63:
66:b7:68:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzsb6SmtEZyin+d5OjymZE6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkOTJiNjc0NzUyNzA3NTUxMzZhOGEzY2E4MDJjYTEyYzhh
YzdlNzcwHhcNMjYwMzE0MTMwMTA1WhcNMjYwMzE1MTMwMTA1WjAzMTEwLwYDVQQD
Eyg0ZWMwZTI1MDM3ZmY0YWFmNGI1MzQzNThiZjA3OWE5MWI2OTdmODQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAry/L3dcl/Haza9fHlZv2QfMPy5vR
e9RNLcKLX6/EU7rMXkXDNvhFbv/4IkVXID89nI8oN8pcf6j2Mw6bmynUBTk7kpW1
CK5qxhb6ewAqsjzuLckzHbgHXQwKGJbzsPiSofceMbvYflzAQjDDqhJUOrgnzRut
BMZ6h1obV/TMS0roNPBSo+Q7TXbn2oCiY2sEqczICY0n9Ey9VGldHF3VvPiqPwR8
ZvZ4JMXYy6pUX4z0NHbKkstC2CtrYuaS3EY5RMxEUgamUEshDIrbADS7JCQi2VbT
w/nNqHwfQi9+lPgsZMkp3C02razWdHgShgh6+EZgkGKkd3BCZ7zcwb8kHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE7A4lA3/0qvS1NDWL8HmpG2l/hDMB8GA1UdIwQY
MBaAFH2StnR1JwdVE2qKPKgCyhLIrH53MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy8wNWU4MTQtY2FjNC00MWE4LTg3NWUt
NDEwYzY3MWU3NTc3LzEvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy8wNWU4MTQtY2FjNC00MWE4LTg3NWUtNDEwYzY3MWU3NTc3
LzEvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcEWyPWRM
sQwMgo0F1co08MHVJMeZo5F2qoVuhCGPUMA5IMvKjJBydlXpWiJxKnGl/f1zHzbN
oI54m8aGQrGCQNWTQrbxl5WzoXxFwodD+oMPzPKOChXdMR4mCtztoGWGFt7PuAPc
rsBCJeD0zLLfCxMZBvqOW0a02xEwid4jm7hLL3Lgiz6H5IDucl0wprUO6SKbtgFg
P5XpRGyNjs903uFcKrEyctvOXvC37sXC3R6d1TE0Rq3Em8+OTaSd2TAceR9lMDh/
8ixAmVJzx9N08q2LAIauamuFPHpMBIQKjH55O0Ygj6nW6YfueZC7eusrkn+Cjvvo
UV5gFiRjZrdoqg==
-----END CERTIFICATE-----
Generated at Sat Mar 14 22:35:21 2026 by rpki-client