Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: YfqGU4mta1Qq2j+I4IkkOyXCIEv5+0xPL3e/Jm75XpA=
Subject key identifier: CE:D8:8A:7E:B6:AF:C3:B3:60:9A:F3:DC:5A:FF:3A:1E:4E:8D:16:7A
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 019CAAC64E6ACBF9954FD4D00D13C7BFBAFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0F30
Signing time: Sun 01 Mar 2026 19:00:48 +0000
Manifest this update: Sun 01 Mar 2026 19:00:48 +0000
Manifest next update: Mon 02 Mar 2026 19:00:48 +0000
Files and hashes: 1: Nh6TGiZWo0EOxhMqHLoTd_RYjgw.roa (hash: jvTmWCCcSLAGtI/9GquGJ7vRIPsivGfTGeyKsvphVGk=)
2: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: 97SDETafC6bUgwryQP+t5IRbCngtQ1TM6NC1p9VTDPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:4e:6a:cb:f9:95:4f:d4:d0:0d:13:c7:bf:ba:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Mar 1 19:00:48 2026 GMT
Not After : Mar 2 19:00:48 2026 GMT
Subject: CN=ced88a7eb6afc3b3609af3dc5aff3a1e4e8d167a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6f:5d:04:01:84:a6:c4:03:81:6d:69:91:0a:
33:67:d5:76:ed:c8:2d:49:0d:95:46:04:20:4a:06:
00:9d:fa:5a:a5:42:09:c3:e9:d1:6d:d8:b5:27:69:
42:78:d7:a3:6c:e1:51:bb:1f:79:40:5d:9e:8a:62:
39:54:12:83:7e:de:49:8f:fd:5b:40:ee:40:b6:e6:
dc:99:fb:8e:fa:66:55:cd:e3:e3:91:84:97:f2:46:
bf:eb:98:07:e0:ff:70:6c:8c:01:c2:67:0e:00:a9:
b2:73:50:5b:bf:75:f7:eb:58:a4:7e:4c:4e:33:58:
41:46:59:ac:99:ff:1c:52:f4:73:5e:30:19:0c:27:
4d:77:96:8a:15:3f:97:c7:b2:18:6a:cb:00:df:6a:
b2:31:2d:53:3c:97:77:0c:92:26:dd:8d:45:5c:3f:
94:1c:3e:45:b3:12:3f:84:76:5d:b1:20:c9:f3:5b:
86:ff:52:11:40:8e:67:df:93:f3:e7:30:69:c8:85:
6e:e8:7a:8a:e2:2f:a9:0a:3b:fc:8a:c5:b1:75:b2:
0a:ed:2d:30:33:68:43:8b:08:d0:7e:bd:f6:f0:38:
fe:a5:e9:20:13:4f:99:11:44:6b:6d:40:6c:ee:3f:
d5:ae:c8:71:14:b3:6e:16:08:9d:b1:de:89:32:c8:
95:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D8:8A:7E:B6:AF:C3:B3:60:9A:F3:DC:5A:FF:3A:1E:4E:8D:16:7A
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:79:49:0f:bf:d7:c2:1f:1f:3e:63:f9:b9:42:32:53:8c:00:
3f:56:88:d9:d0:02:5d:49:22:44:5d:5d:d9:7a:5a:2a:57:e9:
81:5d:90:46:b3:64:eb:d7:05:11:96:fc:12:2b:bd:49:28:a1:
29:e7:ea:00:2a:0f:ff:3c:ab:18:44:9a:65:98:b5:0e:2d:a2:
83:48:21:95:02:92:45:b0:20:ce:b9:0a:4e:62:d0:e2:61:c3:
f7:55:5f:f1:27:16:6f:a8:85:9c:15:a2:ca:cc:6d:a5:5d:3d:
ea:c7:61:11:ba:5e:32:7a:b1:88:de:9a:62:f4:f2:bb:d4:3c:
07:5a:5c:f4:7c:99:fe:72:1f:41:61:ec:f2:9e:a9:02:f4:e0:
62:28:88:6d:21:3b:07:56:2f:45:87:05:e9:66:09:49:20:a4:
53:fa:a1:d4:26:20:89:a2:a3:33:f6:0d:6f:22:ef:72:23:f8:
91:ff:92:17:64:5e:d6:c0:b9:67:1f:69:ca:0b:cb:20:78:08:
95:c2:da:24:6f:a6:90:67:88:93:82:15:2f:94:91:d2:f6:76:
f5:49:90:20:b5:a8:cc:36:16:8d:9d:03:e9:38:38:fd:26:37:
6a:a2:1f:76:b4:58:ee:ba:5e:d1:c4:cf:47:c1:b3:66:27:d4:
40:0b:ce:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxk5qy/mVT9TQDRPHv7r8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3MGVjNTMwNjgzOTNkOTBkYjYwMWVjMjk1ZTQyOTA4NTI1
ZTEwYzIwHhcNMjYwMzAxMTkwMDQ4WhcNMjYwMzAyMTkwMDQ4WjAzMTEwLwYDVQQD
EyhjZWQ4OGE3ZWI2YWZjM2IzNjA5YWYzZGM1YWZmM2ExZTRlOGQxNjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo29dBAGEpsQDgW1pkQozZ9V27cgt
SQ2VRgQgSgYAnfpapUIJw+nRbdi1J2lCeNejbOFRux95QF2eimI5VBKDft5Jj/1b
QO5AtubcmfuO+mZVzePjkYSX8ka/65gH4P9wbIwBwmcOAKmyc1Bbv3X361ikfkxO
M1hBRlmsmf8cUvRzXjAZDCdNd5aKFT+Xx7IYassA32qyMS1TPJd3DJIm3Y1FXD+U
HD5FsxI/hHZdsSDJ81uG/1IRQI5n35Pz5zBpyIVu6HqK4i+pCjv8isWxdbIK7S0w
M2hDiwjQfr328Dj+pekgE0+ZEURrbUBs7j/VrshxFLNuFgidsd6JMsiV6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM7Yin62r8OzYJrz3Fr/Oh5OjRZ6MB8GA1UdIwQY
MBaAFGcOxTBoOT2Q22AewpXkKQhSXhDCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnc3Rk1HZzVQWkRiWUI3Q2xlUXBDRkplRU1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9jNDI0ZDEtMjdmZC00ZjQ3LWJiNzEt
NzNkMjE4YTQ5MDNlLzEvWnc3Rk1HZzVQWkRiWUI3Q2xlUXBDRkplRU1JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9jNDI0ZDEtMjdmZC00ZjQ3LWJiNzEtNzNkMjE4YTQ5MDNl
LzEvWnc3Rk1HZzVQWkRiWUI3Q2xlUXBDRkplRU1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkXlJD7/X
wh8fPmP5uUIyU4wAP1aI2dACXUkiRF1d2XpaKlfpgV2QRrNk69cFEZb8Eiu9SSih
KefqACoP/zyrGESaZZi1Di2ig0ghlQKSRbAgzrkKTmLQ4mHD91Vf8ScWb6iFnBWi
ysxtpV096sdhEbpeMnqxiN6aYvTyu9Q8B1pc9HyZ/nIfQWHs8p6pAvTgYiiIbSE7
B1YvRYcF6WYJSSCkU/qh1CYgiaKjM/YNbyLvciP4kf+SF2Re1sC5Zx9pygvLIHgI
lcLaJG+mkGeIk4IVL5SR0vZ29UmQILWozDYWjZ0D6Tg4/SY3aqIfdrRY7rpe0cTP
R8GzZifUQAvOZw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:09:15 2026 by rpki-client