Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json)
Hash identifier: mBFKHxiMIcY17tzwf+1TMCQBZ5w8hqjxGLfXM/tWKnQ=
Subject key identifier: 53:C7:9B:C3:F8:BB:E2:70:3E:1E:C4:59:58:80:E3:86:8C:96:D5:44
Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Certificate serial: 019D99D0AB8DFC55D3C616F4C44173650B2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
Manifest number: 071C
Signing time: Fri 17 Apr 2026 05:01:22 +0000
Manifest this update: Fri 17 Apr 2026 05:01:22 +0000
Manifest next update: Sat 18 Apr 2026 05:01:22 +0000
Files and hashes: 1: soD_TVroUhn4kOalbV5_zUUFF5o.roa (hash: 6MD8ohn7IGtOGpcI8Sh4nU/dqGzhAaKyVoNKEGen+rQ=)
2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: fuMWdvsgL3ezh+Psy8nDxeQBoJOUE0AjaogCLJ4RWHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:ab:8d:fc:55:d3:c6:16:f4:c4:41:73:65:0b:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba
Validity
Not Before: Apr 17 05:01:22 2026 GMT
Not After : Apr 18 05:01:22 2026 GMT
Subject: CN=53c79bc3f8bbe2703e1ec4595880e3868c96d544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:52:65:92:5d:55:57:91:27:34:24:64:ca:de:
06:0b:b1:8a:26:64:57:35:f7:26:18:16:12:24:06:
c1:5f:a4:f4:1c:0d:0f:b7:db:23:76:71:9a:6f:94:
96:28:c5:0b:1d:69:75:ba:d6:a5:dc:8d:02:8e:04:
ce:31:ce:1c:fa:69:e1:60:bb:7f:ac:e1:03:09:ae:
c3:8a:44:28:0c:15:4d:75:1f:b1:7b:86:e1:e2:9c:
84:12:d1:ff:9b:fb:20:b3:c2:86:d9:ab:77:e5:dd:
25:d2:9a:1a:07:d9:1a:8b:85:47:b9:d3:c8:24:20:
74:6a:72:1a:c6:48:af:5c:86:18:d2:07:51:4b:04:
29:db:50:88:74:3b:dc:ed:88:02:b6:f1:9b:8a:5c:
c1:4f:5c:bb:9b:59:34:84:32:bd:52:d6:7e:34:17:
a0:af:2d:c6:22:f0:79:b6:7d:a9:65:9c:9e:5c:43:
69:35:4a:bf:a3:ce:5f:4f:2d:b6:ce:2b:13:42:fc:
c9:16:b6:1c:c5:48:44:70:3b:9b:f7:5b:ef:9e:c9:
02:98:f7:4a:2a:11:71:ba:d2:4d:5f:37:e4:b8:33:
cc:ee:40:82:9d:c0:b4:58:06:02:ad:35:76:57:c9:
3d:a2:37:1d:13:40:72:a9:4c:35:f7:13:82:18:0f:
63:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C7:9B:C3:F8:BB:E2:70:3E:1E:C4:59:58:80:E3:86:8C:96:D5:44
X509v3 Authority Key Identifier:
keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:aa:49:c2:77:01:f9:2d:dc:57:c6:b1:30:90:7c:03:13:b7:
7f:16:2c:ae:3b:9d:ce:a0:18:cc:71:2a:30:38:4f:4f:d4:1d:
cc:0d:a2:42:dd:98:06:43:2a:e4:20:49:03:67:e8:cc:5a:50:
87:71:4a:d5:a3:61:e2:c1:b1:9d:53:c5:28:02:54:d5:97:12:
2a:53:37:86:1e:84:73:0d:e5:65:36:3c:13:f4:0c:4e:1f:7f:
3c:6c:e5:b4:96:1c:bc:04:29:a5:b5:2e:11:e6:ad:bd:7b:2c:
41:b2:fd:d1:a4:da:17:93:49:9a:c9:18:2d:88:d2:2d:be:aa:
67:0a:2f:a9:b9:39:fb:63:8b:4a:d4:27:de:e0:81:d2:a8:a9:
ec:c1:00:7d:b8:b4:c1:cd:d4:a0:70:ce:ef:67:cd:ad:b8:4c:
ec:a0:61:50:77:e1:ba:38:0f:54:43:2d:d2:7a:df:1a:55:2d:
62:e2:62:26:86:f6:40:81:be:36:04:d5:4f:cc:05:a3:9c:72:
ae:0d:c5:f5:35:b3:c9:e0:76:7c:a9:55:22:cf:1c:42:54:6e:
7c:5a:99:a1:a0:c8:50:1b:bc:bf:f4:c5:6c:21:c0:7a:de:39:
0a:79:9c:60:e0:89:c7:5d:4e:cf:b6:1b:14:00:43:2d:36:6e:
32:ff:ad:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0KuN/FXTxhb0xEFzZQssMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkZmY1YjNjZGFmMmVhZDFiYzMzMDk0MTFiZjk0OTJjZDk4
N2FmYmEwHhcNMjYwNDE3MDUwMTIyWhcNMjYwNDE4MDUwMTIyWjAzMTEwLwYDVQQD
Eyg1M2M3OWJjM2Y4YmJlMjcwM2UxZWM0NTk1ODgwZTM4NjhjOTZkNTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1Jlkl1VV5EnNCRkyt4GC7GKJmRX
NfcmGBYSJAbBX6T0HA0Pt9sjdnGab5SWKMULHWl1utal3I0CjgTOMc4c+mnhYLt/
rOEDCa7DikQoDBVNdR+xe4bh4pyEEtH/m/sgs8KG2at35d0l0poaB9kai4VHudPI
JCB0anIaxkivXIYY0gdRSwQp21CIdDvc7YgCtvGbilzBT1y7m1k0hDK9UtZ+NBeg
ry3GIvB5tn2pZZyeXENpNUq/o85fTy22zisTQvzJFrYcxUhEcDub91vvnskCmPdK
KhFxutJNXzfkuDPM7kCCncC0WAYCrTV2V8k9ojcdE0ByqUw19xOCGA9jiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFPHm8P4u+JwPh7EWViA44aMltVEMB8GA1UdIwQY
MBaAFM3/Wzza8urRvDMJQRv5SSzZh6+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9iNzZkMzQtNWYwNy00MmQ4LWExMzEt
YTg3ODFhZGQyNDIzLzEvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9iNzZkMzQtNWYwNy00MmQ4LWExMzEtYTg3ODFhZGQyNDIz
LzEvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtKpJwncB
+S3cV8axMJB8AxO3fxYsrjudzqAYzHEqMDhPT9QdzA2iQt2YBkMq5CBJA2fozFpQ
h3FK1aNh4sGxnVPFKAJU1ZcSKlM3hh6Ecw3lZTY8E/QMTh9/PGzltJYcvAQppbUu
EeatvXssQbL90aTaF5NJmskYLYjSLb6qZwovqbk5+2OLStQn3uCB0qip7MEAfbi0
wc3UoHDO72fNrbhM7KBhUHfhujgPVEMt0nrfGlUtYuJiJob2QIG+NgTVT8wFo5xy
rg3F9TWzyeB2fKlVIs8cQlRufFqZoaDIUBu8v/TFbCHAet45CnmcYOCJx11Oz7Yb
FABDLTZuMv+tHg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:58:17 2026 by rpki-client