Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft
File: Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft (raw, json)
Hash identifier: RSb8keXQ6YvzLYn9AZ5HifoWU1/KwHs7Q4fBQylRicM=
Subject key identifier: DA:A2:94:BC:46:96:2B:F8:3C:00:DC:1D:CB:F1:FB:C7:32:EB:A0:A9
Authority key identifier: 67:BA:97:9D:D0:8D:BE:03:C1:74:8A:02:2F:A6:65:4D:36:11:94:0F
Certificate issuer: /CN=67ba979dd08dbe03c1748a022fa6654d3611940f
Certificate serial: 019F10AE10921684C165311FB01B9CAFB162
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft
Manifest number: 0119
Signing time: Mon 29 Jun 2026 00:01:10 +0000
Manifest this update: Mon 29 Jun 2026 00:01:10 +0000
Manifest next update: Tue 30 Jun 2026 00:01:10 +0000
Files and hashes: 1: CuP-Ha4tOWBJT0pI4E4cOyq4rrs.roa (hash: PnhyGfN8Xq/cQidLwJYXET+Yc1KaRnRUtuvyvf2jYVs=)
2: Z7qXndCNvgPBdIoCL6ZlTTYRlA8.crl (hash: FIA/6fn6Rg66kaa/tC+Hywa/ElV7UKCHH6bh/wiZHe0=)
3: Z_qYOE4e2l4gEvD0IWAegIDMPig.asa (hash: eWA5Ad2XFQpR/DOWcwIfkGbSUhBVracuKwSeTKFgw50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 00:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:10:ae:10:92:16:84:c1:65:31:1f:b0:1b:9c:af:b1:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67ba979dd08dbe03c1748a022fa6654d3611940f
Validity
Not Before: Jun 29 00:01:10 2026 GMT
Not After : Jun 30 00:01:10 2026 GMT
Subject: CN=daa294bc46962bf83c00dc1dcbf1fbc732eba0a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:0f:68:2f:67:9a:66:6b:d5:3e:21:43:f7:91:
95:c8:70:cc:33:c6:e5:06:30:13:d4:6b:56:f0:b0:
8c:8c:c9:6b:ce:ae:29:54:62:79:ae:a6:86:a5:67:
d4:92:e0:98:6c:ff:dd:e6:42:b6:b0:df:ec:27:40:
23:d2:a0:fc:1e:a7:11:ce:89:b8:09:9b:0f:cd:73:
b0:e0:85:44:a8:ef:e9:92:3f:94:62:00:fb:44:8d:
90:60:bf:04:95:45:d7:7e:77:dd:84:c1:0d:23:b8:
7c:e5:87:5e:c0:34:b7:30:03:57:ae:9a:8e:fa:73:
5b:be:f6:07:18:29:c3:3d:c4:69:6e:b4:b3:f8:fc:
73:5d:57:85:ce:94:f4:97:30:d3:ac:91:0f:95:e9:
a5:86:f0:99:d8:a7:e3:2f:04:50:b8:93:74:8a:71:
60:1a:d3:6e:0e:24:02:f0:c5:9c:6b:0b:61:0d:79:
08:a7:90:9e:c0:61:f0:03:fd:01:a7:6a:cc:7d:15:
29:6f:7a:47:7d:a0:76:a2:df:d3:46:fe:77:2a:17:
35:f6:68:65:fd:d4:6e:0d:a2:bf:fe:5f:37:79:eb:
fd:a5:fb:31:83:54:b3:31:dc:aa:f5:3e:73:55:83:
ad:3a:e5:81:a6:4c:e0:78:41:0d:f6:08:7a:71:6e:
3b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A2:94:BC:46:96:2B:F8:3C:00:DC:1D:CB:F1:FB:C7:32:EB:A0:A9
X509v3 Authority Key Identifier:
keyid:67:BA:97:9D:D0:8D:BE:03:C1:74:8A:02:2F:A6:65:4D:36:11:94:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/b30c04-eefa-4531-90d0-0144fd77ebe4/1/Z7qXndCNvgPBdIoCL6ZlTTYRlA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:33:ac:df:e6:6a:07:c4:68:fd:b5:31:98:00:0c:74:18:51:
0d:1b:c1:36:5a:0c:00:89:13:03:ee:f3:6f:9a:c3:4a:77:54:
60:20:bb:92:86:18:86:e1:49:35:59:4d:5b:b8:c4:7e:a7:8c:
9f:e0:10:0f:1a:96:b3:6a:76:c9:09:1f:43:fc:f0:68:ea:1a:
8d:a9:67:90:fa:90:8f:3e:26:b1:45:c5:f3:23:d9:db:f9:b4:
41:43:a4:d2:94:99:b1:d1:5f:40:ac:ea:85:03:3b:6b:86:1b:
11:ab:06:05:e1:81:a1:48:4d:06:b4:5e:f3:2f:c7:a1:5f:df:
c1:17:13:61:f7:65:38:e2:62:4f:fd:d8:6f:bf:d1:fa:47:ef:
91:b7:86:74:bc:5a:f9:0d:dc:40:e3:3f:6c:40:fd:77:d9:bc:
8c:ff:a0:c6:e4:14:aa:e6:ea:f8:70:86:fd:68:29:fb:38:97:
1b:86:fc:68:10:bb:96:ec:e5:83:c6:02:80:76:04:64:9b:81:
cd:37:69:a7:bb:76:de:ee:e6:b6:6b:52:68:c3:f2:77:2a:8a:
8d:8e:3c:45:d4:49:66:3f:a5:d5:45:0a:5e:4b:8f:39:e3:40:
bc:c0:04:35:69:70:fb:d6:91:e0:7d:29:22:cd:82:8a:10:13:
0e:82:13:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:37:29 2026 by rpki-client