Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
File: RoZEuS85TK82Z722rz44aZxU8xU.mft (raw, json)
Hash identifier: pa49VZ7PQZUNEYN/LF5jiTX6rrgJlMX8z/muvILgYgo=
Subject key identifier: 53:C1:AD:E5:47:A7:63:F3:BE:F0:51:6E:2A:C5:A2:3A:12:0F:FB:DA
Authority key identifier: 46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15
Certificate issuer: /CN=468644b92f394caf3667bdb6af3e38699c54f315
Certificate serial: 019EBB46743F5E5D4E7A5892AE677DA29CB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
Manifest number: 095F
Signing time: Fri 12 Jun 2026 10:00:17 +0000
Manifest this update: Fri 12 Jun 2026 10:00:17 +0000
Manifest next update: Sat 13 Jun 2026 10:00:17 +0000
Files and hashes: 1: J1Sd-NZM-sjm3Ga5_YhVMtDs0Iw.roa (hash: 5skkO0VA2fXKD8mx8GGrzwshnvuHDY9J9MdJAaUhV/8=)
2: RoZEuS85TK82Z722rz44aZxU8xU.crl (hash: u81pzfn8bcyhgBFJpZ3JncJL9YCFTQc1+5o81FEnvZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bb:46:74:3f:5e:5d:4e:7a:58:92:ae:67:7d:a2:9c:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468644b92f394caf3667bdb6af3e38699c54f315
Validity
Not Before: Jun 12 10:00:17 2026 GMT
Not After : Jun 13 10:00:17 2026 GMT
Subject: CN=53c1ade547a763f3bef0516e2ac5a23a120ffbda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:73:52:d6:df:be:78:17:f5:09:72:71:0a:d1:
99:49:45:8a:ed:ad:9a:4f:d2:0b:73:a8:6e:88:37:
0d:3d:8d:6b:7d:0b:e1:0a:07:68:8b:64:5c:3d:a0:
9a:8a:cd:27:69:74:56:db:d8:00:fc:6d:24:a5:69:
f1:ee:08:c1:64:47:39:94:b7:0f:37:af:7d:93:7b:
c3:ef:51:03:81:7e:7b:99:44:98:f2:cb:75:92:70:
67:95:86:40:9e:f8:24:a5:d0:c7:26:0a:7e:44:0d:
99:99:ca:4d:35:a9:86:23:e7:4b:69:9d:bf:25:9a:
33:df:9f:c4:3b:7e:e6:0c:da:e2:02:47:ab:c7:46:
dc:20:e8:27:9f:d2:87:63:42:21:fc:03:e5:e2:24:
2a:7d:48:68:cd:ec:d7:ed:67:eb:50:8f:c4:0f:78:
13:33:41:2d:0d:1d:1c:68:d1:92:b5:9d:5e:51:f1:
4f:59:ba:e2:b4:32:37:dc:82:6d:69:78:4a:fe:0f:
6f:6b:a9:73:cc:ea:35:cf:0c:fc:9c:d9:dc:ba:b6:
d7:df:f8:45:49:57:17:e8:29:0a:af:a8:3c:eb:70:
a4:60:31:3e:f4:f7:7c:82:43:aa:b3:35:d9:b0:94:
70:99:f3:62:fa:20:66:d6:45:d6:48:7c:e6:63:a0:
5c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C1:AD:E5:47:A7:63:F3:BE:F0:51:6E:2A:C5:A2:3A:12:0F:FB:DA
X509v3 Authority Key Identifier:
keyid:46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:de:e2:b4:d8:94:13:e2:44:b9:52:23:09:5e:c3:8e:58:e4:
b6:06:49:6c:7a:ba:3c:a9:c7:e2:24:44:2e:3c:0f:11:89:ec:
4a:24:43:d6:1a:d1:b7:20:1c:c2:32:7e:f6:c9:01:d3:b6:87:
b2:1e:67:5e:6e:d7:e0:c0:2c:59:7e:5c:20:9c:7e:b8:66:5e:
52:51:55:09:f1:5a:2d:18:3f:d1:43:6b:9c:66:90:be:c6:b3:
a2:74:0d:bf:ce:06:c5:4f:92:49:71:d3:5a:cc:1e:33:5b:13:
93:d7:3b:03:ef:31:12:d2:9d:46:bf:65:bc:3e:c4:3b:b1:4c:
6b:3f:45:d2:93:17:2c:51:5d:2d:17:5d:d4:6e:9b:87:cc:a6:
3d:6e:e6:68:74:f1:c6:a2:b7:76:31:6f:d4:8c:67:bb:75:00:
cb:ee:17:af:ad:c0:8e:1d:05:83:d5:e1:c9:bd:a4:df:f3:dd:
22:dc:80:38:bc:4a:8d:a3:d8:1d:9f:a9:73:a1:09:4a:9c:84:
07:df:0d:ea:b6:ac:b2:d2:92:ef:f9:e0:dd:cf:b5:e8:85:6e:
db:b7:f1:ff:ce:35:c6:a9:6b:93:29:f0:8f:05:89:15:d7:74:
4e:b6:25:31:73:77:71:87:52:f6:8c:38:1f:42:f2:0b:01:75:
3e:37:d4:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ67RnQ/Xl1OeliSrmd9opywMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2ODY0NGI5MmYzOTRjYWYzNjY3YmRiNmFmM2UzODY5OWM1
NGYzMTUwHhcNMjYwNjEyMTAwMDE3WhcNMjYwNjEzMTAwMDE3WjAzMTEwLwYDVQQD
Eyg1M2MxYWRlNTQ3YTc2M2YzYmVmMDUxNmUyYWM1YTIzYTEyMGZmYmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXNS1t++eBf1CXJxCtGZSUWK7a2a
T9ILc6huiDcNPY1rfQvhCgdoi2RcPaCais0naXRW29gA/G0kpWnx7gjBZEc5lLcP
N699k3vD71EDgX57mUSY8st1knBnlYZAnvgkpdDHJgp+RA2ZmcpNNamGI+dLaZ2/
JZoz35/EO37mDNriAkerx0bcIOgnn9KHY0Ih/APl4iQqfUhozezX7WfrUI/ED3gT
M0EtDR0caNGStZ1eUfFPWbritDI33IJtaXhK/g9va6lzzOo1zwz8nNncurbX3/hF
SVcX6CkKr6g863CkYDE+9Pd8gkOqszXZsJRwmfNi+iBm1kXWSHzmY6BcdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFPBreVHp2PzvvBRbirFojoSD/vaMB8GA1UdIwQY
MBaAFEaGRLkvOUyvNme9tq8+OGmcVPMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wOTE4NDEtMDJmZS00NGRiLWJhMTYt
YTVlMTNiNGZiMTJiLzEvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8wOTE4NDEtMDJmZS00NGRiLWJhMTYtYTVlMTNiNGZiMTJi
LzEvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJd7itNiU
E+JEuVIjCV7DjljktgZJbHq6PKnH4iRELjwPEYnsSiRD1hrRtyAcwjJ+9skB07aH
sh5nXm7X4MAsWX5cIJx+uGZeUlFVCfFaLRg/0UNrnGaQvsazonQNv84GxU+SSXHT
WsweM1sTk9c7A+8xEtKdRr9lvD7EO7FMaz9F0pMXLFFdLRdd1G6bh8ymPW7maHTx
xqK3djFv1Ixnu3UAy+4Xr63Ajh0Fg9Xhyb2k3/PdItyAOLxKjaPYHZ+pc6EJSpyE
B98N6rasstKS7/ng3c+16IVu27fx/841xqlrkynwjwWJFdd0TrYlMXN3cYdS9ow4
H0LyCwF1PjfUGw==
-----END CERTIFICATE-----
Generated at Fri Jun 12 11:29:08 2026 by rpki-client