Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
File: RoZEuS85TK82Z722rz44aZxU8xU.mft (raw, json)
Hash identifier: LJJEXMZtcsqvCcd5LYVGTHQQARwKAMWAkvFv88iHQZc=
Subject key identifier: 2B:2A:09:2E:FA:D7:32:A1:6B:7E:85:50:91:DF:CE:91:CD:16:B7:DF
Authority key identifier: 46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15
Certificate issuer: /CN=468644b92f394caf3667bdb6af3e38699c54f315
Certificate serial: 019D390A5B2B7F71B0B84B0C44AEF9061E36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
Manifest number: 0897
Signing time: Sun 29 Mar 2026 10:01:12 +0000
Manifest this update: Sun 29 Mar 2026 10:01:12 +0000
Manifest next update: Mon 30 Mar 2026 10:01:12 +0000
Files and hashes: 1: J1Sd-NZM-sjm3Ga5_YhVMtDs0Iw.roa (hash: 5skkO0VA2fXKD8mx8GGrzwshnvuHDY9J9MdJAaUhV/8=)
2: RoZEuS85TK82Z722rz44aZxU8xU.crl (hash: qEKoKnu+NDCHtTxnyNvN7bdQrrmcarfsJ/3d4z9Bfsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:5b:2b:7f:71:b0:b8:4b:0c:44:ae:f9:06:1e:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468644b92f394caf3667bdb6af3e38699c54f315
Validity
Not Before: Mar 29 10:01:12 2026 GMT
Not After : Mar 30 10:01:12 2026 GMT
Subject: CN=2b2a092efad732a16b7e855091dfce91cd16b7df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f9:83:9b:fe:c5:b2:24:cb:e5:1d:b0:00:0d:
a5:1d:bb:89:5a:24:44:70:98:80:f7:3a:e7:c5:df:
1c:1a:e1:8e:e6:b7:33:45:49:74:02:d8:6f:1f:59:
e3:87:3f:e8:ca:f1:17:14:2f:fd:45:0b:d8:96:ef:
42:80:32:4d:70:86:82:f3:2a:e0:1b:f9:31:57:e1:
41:bd:84:d9:8a:b7:13:d2:c4:18:76:a8:ce:ad:aa:
27:11:ec:f7:f5:64:92:09:29:bc:29:a5:6a:9f:52:
96:ed:9e:c3:73:58:5e:85:98:93:f4:4f:a7:cc:98:
b9:f9:fc:44:a2:58:bd:85:ea:3f:82:96:ec:3c:1d:
64:d8:d2:94:79:7b:69:9c:ba:44:7b:3e:21:09:d8:
7e:fb:f7:0a:5f:ae:4e:9c:8b:d4:9d:e2:60:fe:af:
67:01:07:9c:65:24:09:2f:ba:34:63:1b:9f:f7:59:
b6:74:02:4e:c2:3e:92:9f:4a:cf:df:1b:ce:80:d1:
56:df:68:d6:72:b8:33:40:01:1d:5b:38:f7:3b:e8:
d4:94:80:99:4e:e8:35:71:51:97:6d:7a:54:62:3f:
b2:12:a3:85:2f:94:10:07:e9:5e:45:69:cd:52:17:
bf:69:41:d0:17:28:66:b2:c4:f8:ac:be:ec:7a:b9:
95:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2A:09:2E:FA:D7:32:A1:6B:7E:85:50:91:DF:CE:91:CD:16:B7:DF
X509v3 Authority Key Identifier:
keyid:46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:cc:81:35:5c:46:82:d8:a0:9e:57:97:eb:35:7e:59:4c:36:
6e:4e:30:5a:db:bd:53:b2:e9:29:1a:e8:5e:35:c2:a9:82:5a:
3b:b6:e0:81:9d:ba:27:eb:7f:41:15:86:4b:de:cb:da:c4:03:
e8:74:4d:32:8e:f0:d0:c3:33:28:7a:79:e3:65:c2:11:66:44:
ee:4d:0d:d8:4f:c7:57:67:2b:53:64:cf:41:90:b2:05:25:78:
21:7f:d1:50:11:b2:cd:6c:d4:1a:40:d2:1d:48:0e:22:e6:83:
c7:39:1a:71:42:1f:79:ec:5d:e9:6e:de:0e:15:b1:cf:85:d1:
50:49:b2:ad:16:b5:42:8e:8c:67:ab:94:8c:1f:b1:10:e2:97:
10:56:33:3f:ed:1a:e9:e4:d0:b5:97:e7:ac:52:7d:39:4a:7e:
d6:8f:31:25:86:d3:75:5e:62:28:61:db:d1:c2:99:38:98:75:
55:1e:8e:e7:8e:f4:02:14:37:8a:9c:bc:d3:bf:5f:e2:16:fb:
c8:41:4e:84:e1:11:bb:b5:59:e9:52:e5:3e:e7:6c:52:a3:d4:
d0:2f:5b:5b:7f:d8:29:ed:b7:c4:4a:20:e5:01:19:20:b2:91:
1e:11:df:9e:20:6e:c4:9b:4c:4e:2f:fd:1b:73:1d:23:0d:60:
f3:eb:1b:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Clsrf3GwuEsMRK75Bh42MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2ODY0NGI5MmYzOTRjYWYzNjY3YmRiNmFmM2UzODY5OWM1
NGYzMTUwHhcNMjYwMzI5MTAwMTEyWhcNMjYwMzMwMTAwMTEyWjAzMTEwLwYDVQQD
EygyYjJhMDkyZWZhZDczMmExNmI3ZTg1NTA5MWRmY2U5MWNkMTZiN2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfmDm/7FsiTL5R2wAA2lHbuJWiRE
cJiA9zrnxd8cGuGO5rczRUl0AthvH1njhz/oyvEXFC/9RQvYlu9CgDJNcIaC8yrg
G/kxV+FBvYTZircT0sQYdqjOraonEez39WSSCSm8KaVqn1KW7Z7Dc1hehZiT9E+n
zJi5+fxEoli9heo/gpbsPB1k2NKUeXtpnLpEez4hCdh++/cKX65OnIvUneJg/q9n
AQecZSQJL7o0Yxuf91m2dAJOwj6Sn0rP3xvOgNFW32jWcrgzQAEdWzj3O+jUlICZ
Tug1cVGXbXpUYj+yEqOFL5QQB+leRWnNUhe/aUHQFyhmssT4rL7sermViQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCsqCS761zKha36FUJHfzpHNFrffMB8GA1UdIwQY
MBaAFEaGRLkvOUyvNme9tq8+OGmcVPMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wOTE4NDEtMDJmZS00NGRiLWJhMTYt
YTVlMTNiNGZiMTJiLzEvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8wOTE4NDEtMDJmZS00NGRiLWJhMTYtYTVlMTNiNGZiMTJi
LzEvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJcyBNVxG
gtignleX6zV+WUw2bk4wWtu9U7LpKRroXjXCqYJaO7bggZ26J+t/QRWGS97L2sQD
6HRNMo7w0MMzKHp542XCEWZE7k0N2E/HV2crU2TPQZCyBSV4IX/RUBGyzWzUGkDS
HUgOIuaDxzkacUIfeexd6W7eDhWxz4XRUEmyrRa1Qo6MZ6uUjB+xEOKXEFYzP+0a
6eTQtZfnrFJ9OUp+1o8xJYbTdV5iKGHb0cKZOJh1VR6O5470AhQ3ipy8079f4hb7
yEFOhOERu7VZ6VLlPudsUqPU0C9bW3/YKe23xEog5QEZILKRHhHfniBuxJtMTi/9
G3MdIw1g8+sb5w==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:05:01 2026 by rpki-client