Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json)
Hash identifier: QO4NiGsyueMdoDzn7vmeFcFQ5skp3d+eu3IsCMZ6wZU=
Subject key identifier: 7B:12:34:AD:19:20:F4:CC:05:4C:EA:02:5E:F6:00:71:B8:7D:D2:10
Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3
Certificate serial: 019D39AF38A46A3C60ED4B9A3D19DF8EDA21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
Manifest number: 11FE
Signing time: Sun 29 Mar 2026 13:01:17 +0000
Manifest this update: Sun 29 Mar 2026 13:01:17 +0000
Manifest next update: Mon 30 Mar 2026 13:01:17 +0000
Files and hashes: 1: L2qJI7yRbblQboJ_mw8-jepGvkU.roa (hash: QrheslDEw6JQRvz6jkCSMc1vh9NuFBMIWo/PVUBPvp4=)
2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: E+oe5vomX76splJVhfGMlwhnN+fCZ0dIsNuDY3l6d5Q=)
3: z7Q7Uc4sfRearIOg2fguIub7LO8.asa (hash: 8s++qk0Ww4g7wtu1bl1zax9iy1ShimKiVPRsQryJkyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:38:a4:6a:3c:60:ed:4b:9a:3d:19:df:8e:da:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3
Validity
Not Before: Mar 29 13:01:17 2026 GMT
Not After : Mar 30 13:01:17 2026 GMT
Subject: CN=7b1234ad1920f4cc054cea025ef60071b87dd210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c3:f0:de:97:0f:8a:4e:57:64:08:da:79:ba:
74:9f:08:53:e1:a8:09:53:4c:3e:21:04:6d:ee:76:
d4:e5:81:9a:89:9d:af:ec:9a:81:e9:8a:6d:e8:ec:
97:ff:76:72:0d:7a:4e:91:2f:68:cf:f2:06:ce:8a:
92:07:51:85:fb:06:2c:20:89:7f:73:ad:7d:a9:8a:
62:d8:7e:2b:b1:01:b0:31:c2:86:51:d6:3a:f4:b8:
d7:11:7d:d8:74:61:70:0e:f9:d6:06:45:6f:d6:2f:
fd:29:df:39:cc:6c:85:78:a8:b2:5c:d9:7f:75:39:
5a:9d:4b:98:00:9a:c3:df:62:5a:81:20:28:d8:09:
d0:be:43:21:4a:c5:b7:06:15:50:ed:6e:8b:94:c7:
da:28:20:14:5d:8f:3d:05:bb:0e:89:f1:59:bf:1c:
1c:c6:ea:36:45:df:bb:4d:ce:6e:38:19:63:4a:37:
87:1b:e5:29:66:00:f6:60:cc:b5:7c:f7:a3:06:08:
85:fe:fd:af:af:3d:e6:21:67:b6:5f:e0:ff:37:a8:
ba:a6:ab:ed:25:4c:32:85:23:66:34:2e:35:ae:68:
26:55:a0:b0:ac:45:c9:fb:52:c4:c4:39:8d:ce:83:
c9:b8:2d:96:24:c6:99:3d:2e:07:ca:6b:05:36:f4:
83:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:12:34:AD:19:20:F4:CC:05:4C:EA:02:5E:F6:00:71:B8:7D:D2:10
X509v3 Authority Key Identifier:
keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:b0:2d:59:d5:7f:1c:34:38:b3:b0:10:5c:16:bd:87:64:71:
35:e7:e2:8f:ca:f8:de:75:72:99:14:c7:a3:49:fb:4a:be:57:
e5:76:60:93:76:6a:60:27:28:26:c9:68:ff:c3:3d:ef:db:e3:
32:e2:c1:2c:7f:24:ea:37:5b:46:8a:ba:e1:e3:57:bd:18:31:
91:14:67:e9:d3:9f:2f:fe:ee:d1:b4:f4:eb:19:16:00:ed:c8:
57:2e:f1:e0:7a:b8:35:fe:db:e3:81:e4:10:aa:34:e5:ca:50:
fa:f4:99:73:c3:36:2e:2e:e2:e2:a2:66:2c:8c:9b:6e:83:87:
9b:78:9b:0b:c9:01:4c:5e:11:26:7b:1c:03:23:49:ea:a3:30:
3e:61:66:a1:49:bd:46:18:8f:68:f1:e5:5a:f9:b7:e2:da:ba:
55:0c:3c:d7:a0:89:37:e7:f5:09:d9:16:5b:27:8f:54:ae:94:
c2:82:f1:d3:be:c2:61:90:55:59:2d:d4:f2:c4:9f:c9:d8:16:
71:fc:21:b8:71:bb:10:45:e7:b5:ed:30:80:0f:b0:30:71:63:
7d:03:5d:b4:ba:f7:50:4f:22:bd:1a:6c:ca:f6:2d:73:64:03:
45:43:3d:4c:af:28:21:66:e7:bf:80:17:fe:31:31:80:d6:db:
45:07:df:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:52:50 2026 by rpki-client