Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
File: zT5kktRzFSDB7tvNopZ5UArAg6s.mft (raw, json)
Hash identifier: Eg3Bu0w8yxR2uyhIxZPQTRabDLptLHCNCHM0NGv5s9s=
Subject key identifier: 4F:D4:A4:1B:76:32:5B:53:28:C4:C9:EB:67:BD:36:40:73:C8:22:DA
Authority key identifier: CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
Certificate issuer: /CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Certificate serial: 019CAB3488427D72EE2DF977DE31279A26FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
Manifest number: 0714
Signing time: Sun 01 Mar 2026 21:01:12 +0000
Manifest this update: Sun 01 Mar 2026 21:01:12 +0000
Manifest next update: Mon 02 Mar 2026 21:01:12 +0000
Files and hashes: 1: C-10eoHVV_ERuNuHp1M0fCx__Ag.roa (hash: kJJFsA3C5xKnlbqZn0ozkgC1qO7Vwfq9ha16s0RBd0k=)
2: zT5kktRzFSDB7tvNopZ5UArAg6s.crl (hash: qkLVejGVPcFwsVSe9iJ+mwUQjPBA4rM/nxOQ66onZHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:88:42:7d:72:ee:2d:f9:77:de:31:27:9a:26:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3e6492d4731520c1eedbcda29679500ac083ab
Validity
Not Before: Mar 1 21:01:12 2026 GMT
Not After : Mar 2 21:01:12 2026 GMT
Subject: CN=4fd4a41b76325b5328c4c9eb67bd364073c822da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d8:3a:7a:bc:7a:9f:3c:0e:ae:42:08:01:91:
b5:e0:7a:02:6e:10:ca:55:9d:4d:e9:61:75:57:91:
82:f1:7b:16:b9:24:a0:a2:db:22:94:69:d9:b9:35:
ea:bd:1e:8e:21:1d:1f:3d:95:e0:79:42:19:47:14:
34:01:48:19:57:44:1a:b4:99:d8:d5:31:b1:bb:00:
a0:52:01:3a:58:0e:5c:66:4e:66:14:17:91:c6:fc:
e0:0b:d0:1e:7a:e4:61:de:84:19:91:06:81:5c:7f:
c0:fb:14:31:fb:18:d6:9c:e2:dc:ba:ac:b4:43:fa:
94:57:aa:b0:8d:50:b1:84:4e:dc:ac:e4:0f:0e:6b:
d9:32:3a:e3:bf:d5:a5:5d:ca:05:63:3c:0e:c2:e3:
d4:e9:4e:74:ba:0a:bd:bb:5a:c2:9a:9e:d0:42:f6:
d1:61:fe:d1:59:a6:60:6a:13:1d:21:a3:38:ac:51:
1e:eb:63:ad:cb:19:49:88:6b:c4:cc:3d:2c:12:ba:
4a:da:d7:e9:34:20:13:0e:4f:69:34:02:e4:6b:e7:
b9:77:5e:1e:c1:6a:0b:92:6d:38:ea:a6:3f:f0:81:
02:e6:2c:f9:98:82:4e:5e:6d:54:77:e6:0e:34:a3:
da:76:d5:55:96:81:1c:8f:ef:d8:d4:82:56:89:24:
7a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D4:A4:1B:76:32:5B:53:28:C4:C9:EB:67:BD:36:40:73:C8:22:DA
X509v3 Authority Key Identifier:
keyid:CD:3E:64:92:D4:73:15:20:C1:EE:DB:CD:A2:96:79:50:0A:C0:83:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zT5kktRzFSDB7tvNopZ5UArAg6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7a1274-03ac-494d-ba8e-cfcffa3c0665/1/zT5kktRzFSDB7tvNopZ5UArAg6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:57:61:23:17:6d:63:84:fb:0a:4a:f4:e9:ce:b6:bd:a1:94:
23:a8:13:db:77:13:c9:5f:fe:6e:0e:4a:26:a1:6e:07:f5:4d:
be:b5:19:72:01:ad:7d:9e:2c:4b:53:c3:27:3c:1c:56:d8:16:
11:c0:ad:cf:15:6e:57:85:85:8b:6d:88:06:e0:7f:d5:b1:29:
ac:44:42:53:bf:29:40:9e:5b:11:f5:bd:40:24:08:f9:0e:c9:
6e:6b:4e:90:89:dd:64:d6:c2:67:1a:03:9f:ad:ac:fe:4c:cd:
af:e6:a1:8d:dc:a5:49:ab:ec:de:25:7b:b2:f8:af:65:d8:4f:
b7:06:57:c7:56:a5:29:1a:22:83:ff:5c:93:92:7e:21:c4:fa:
9a:6c:6b:18:62:c1:ff:4e:2f:81:af:b0:7f:08:b0:67:83:bc:
c7:56:de:a6:58:f8:7a:40:b4:5f:56:75:f9:14:36:19:bc:11:
28:73:f0:1d:4b:73:67:0a:d5:6d:2d:d0:cc:7d:89:a0:b7:f7:
61:ea:1d:d1:15:00:ee:27:85:52:7f:3c:22:c0:25:53:5e:e1:
72:e4:28:a9:22:60:bf:9d:58:a9:e1:93:ee:bc:ff:34:ed:75:
5b:d2:2d:f1:90:b6:75:e6:50:16:3d:0c:ad:7d:a8:21:1f:76:
a2:4c:3d:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNIhCfXLuLfl33jEnmib9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkM2U2NDkyZDQ3MzE1MjBjMWVlZGJjZGEyOTY3OTUwMGFj
MDgzYWIwHhcNMjYwMzAxMjEwMTEyWhcNMjYwMzAyMjEwMTEyWjAzMTEwLwYDVQQD
Eyg0ZmQ0YTQxYjc2MzI1YjUzMjhjNGM5ZWI2N2JkMzY0MDczYzgyMmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4dg6erx6nzwOrkIIAZG14HoCbhDK
VZ1N6WF1V5GC8XsWuSSgotsilGnZuTXqvR6OIR0fPZXgeUIZRxQ0AUgZV0QatJnY
1TGxuwCgUgE6WA5cZk5mFBeRxvzgC9AeeuRh3oQZkQaBXH/A+xQx+xjWnOLcuqy0
Q/qUV6qwjVCxhE7crOQPDmvZMjrjv9WlXcoFYzwOwuPU6U50ugq9u1rCmp7QQvbR
Yf7RWaZgahMdIaM4rFEe62OtyxlJiGvEzD0sErpK2tfpNCATDk9pNALka+e5d14e
wWoLkm046qY/8IEC5iz5mIJOXm1Ud+YONKPadtVVloEcj+/Y1IJWiSR6TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE/UpBt2MltTKMTJ62e9NkBzyCLaMB8GA1UdIwQY
MBaAFM0+ZJLUcxUgwe7bzaKWeVAKwIOrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelQ1a2t0UnpGU0RCN3R2Tm9wWjVVQXJBZzZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS83YTEyNzQtMDNhYy00OTRkLWJhOGUt
Y2ZjZmZhM2MwNjY1LzEvelQ1a2t0UnpGU0RCN3R2Tm9wWjVVQXJBZzZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS83YTEyNzQtMDNhYy00OTRkLWJhOGUtY2ZjZmZhM2MwNjY1
LzEvelQ1a2t0UnpGU0RCN3R2Tm9wWjVVQXJBZzZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ1dhIxdt
Y4T7Ckr06c62vaGUI6gT23cTyV/+bg5KJqFuB/VNvrUZcgGtfZ4sS1PDJzwcVtgW
EcCtzxVuV4WFi22IBuB/1bEprERCU78pQJ5bEfW9QCQI+Q7JbmtOkIndZNbCZxoD
n62s/kzNr+ahjdylSavs3iV7svivZdhPtwZXx1alKRoig/9ck5J+IcT6mmxrGGLB
/04vga+wfwiwZ4O8x1beplj4ekC0X1Z1+RQ2GbwRKHPwHUtzZwrVbS3QzH2JoLf3
Yeod0RUA7ieFUn88IsAlU17hcuQoqSJgv51YqeGT7rz/NO11W9It8ZC2deZQFj0M
rX2oIR92okw9nQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 07:45:26 2026 by rpki-client