Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
File: z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft (raw, json)
Hash identifier: 2NrDQLw1NHb6RcuisPLYgpotFV8x2egg/OpYruVeJuk=
Subject key identifier: CA:84:B7:50:F3:BC:6F:97:33:E0:FD:2E:3F:A8:E3:D6:A1:69:D1:D0
Authority key identifier: CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
Certificate issuer: /CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Certificate serial: 019ED2AB057F38B794635250435BDD931702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
Manifest number: 12C4
Signing time: Tue 16 Jun 2026 23:01:23 +0000
Manifest this update: Tue 16 Jun 2026 23:01:23 +0000
Manifest next update: Wed 17 Jun 2026 23:01:23 +0000
Files and hashes: 1: UbxGuXfCPU7PaazgdUkcbZmtVZU.roa (hash: U0sRu1JWMunI3dF2aemA2TfuPLAR6kavSK8Q8KfB14s=)
2: z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl (hash: N2G5s4aB8f1rkpKVS+bUCijnBref7ibwvTh8M3JcMfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d2:ab:05:7f:38:b7:94:63:52:50:43:5b:dd:93:17:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc7008c6f91722dc3b127527558ebdabc680ce6
Validity
Not Before: Jun 16 23:01:23 2026 GMT
Not After : Jun 17 23:01:23 2026 GMT
Subject: CN=ca84b750f3bc6f9733e0fd2e3fa8e3d6a169d1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0e:c4:dd:6d:2f:6f:fe:5a:5d:13:bf:dd:18:
ef:d1:69:26:74:00:70:c9:1e:66:50:22:eb:64:18:
c9:ef:90:96:cc:c4:b7:ee:aa:ce:88:58:c0:2e:0a:
fd:c6:3b:bc:5e:a7:34:bc:28:48:04:47:89:1b:72:
2e:f5:30:8b:4a:1d:89:17:ff:59:fe:35:66:86:30:
18:97:03:62:ac:63:07:f6:da:4d:a7:83:fd:35:ed:
d1:b8:7c:db:7b:1d:85:f6:c7:7c:b7:ed:30:40:a0:
2f:4b:23:fb:75:ae:a1:3e:16:41:55:3f:dd:b4:d8:
9f:13:55:02:cd:29:4f:3a:cf:32:e7:47:35:23:bb:
ba:40:4e:3f:40:46:5a:28:51:af:ca:82:b2:f6:5f:
fc:ba:cf:e7:ca:64:95:32:e4:6e:92:75:39:cf:08:
58:f0:26:1f:39:58:c1:cb:c3:5f:20:8e:fd:4a:51:
57:56:ba:78:99:f9:da:fc:5f:37:90:43:f1:3f:3f:
12:b8:d0:99:73:74:ad:3e:12:47:78:e2:2a:72:4c:
9e:73:09:2c:83:14:a3:95:15:91:36:1d:d1:00:96:
40:70:6c:10:9d:fc:1e:cb:cd:87:7e:a1:65:55:0e:
75:47:35:47:20:b6:95:32:8a:84:1a:fd:cf:c3:63:
d0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:84:B7:50:F3:BC:6F:97:33:E0:FD:2E:3F:A8:E3:D6:A1:69:D1:D0
X509v3 Authority Key Identifier:
keyid:CF:C7:00:8C:6F:91:72:2D:C3:B1:27:52:75:58:EB:DA:BC:68:0C:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8cAjG-Rci3DsSdSdVjr2rxoDOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4168da-e65c-47b6-bb61-36f24ad4a04f/1/z8cAjG-Rci3DsSdSdVjr2rxoDOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:7c:67:ed:2c:91:3d:f4:e8:fa:72:15:24:08:5a:83:3c:32:
91:00:db:83:e6:c0:93:5f:b1:4c:af:34:9c:8e:79:70:63:09:
27:49:ce:0c:cd:f5:f7:e2:b8:53:cc:63:cd:8c:70:ce:d8:ce:
d1:12:4a:92:9c:4e:13:11:ed:bb:65:86:d1:06:d0:1d:62:78:
be:06:1a:df:33:cc:f7:4d:23:53:d0:f7:f8:b7:35:c4:37:f6:
37:a5:7e:a1:fe:87:6d:80:22:25:92:ec:3a:e4:6f:87:7d:d2:
90:43:a0:d3:64:6d:08:29:90:b3:bc:7f:35:51:1a:63:1b:c3:
ed:dc:06:17:16:90:51:96:83:75:fd:53:f2:a3:be:8a:61:30:
75:05:a0:23:8f:dd:8f:29:bf:d8:c8:66:de:5f:36:e4:db:e9:
56:0d:13:54:3d:92:7f:37:bc:09:d5:29:a5:30:27:08:33:96:
de:bb:8b:59:3e:5e:da:19:37:8f:27:c7:84:e1:d9:ec:c8:36:
a0:fe:a1:4f:9e:bb:0d:e4:77:08:92:0d:78:83:a3:45:97:7f:
d2:35:40:8e:ce:21:33:8b:d5:86:b8:12:e8:5e:de:04:02:85:
86:2e:d8:be:f6:54:6b:4b:5c:67:ba:2e:b2:08:77:c8:a3:fc:
21:7c:b5:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7SqwV/OLeUY1JQQ1vdkxcCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmYzcwMDhjNmY5MTcyMmRjM2IxMjc1Mjc1NThlYmRhYmM2
ODBjZTYwHhcNMjYwNjE2MjMwMTIzWhcNMjYwNjE3MjMwMTIzWjAzMTEwLwYDVQQD
EyhjYTg0Yjc1MGYzYmM2Zjk3MzNlMGZkMmUzZmE4ZTNkNmExNjlkMWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsg7E3W0vb/5aXRO/3Rjv0WkmdABw
yR5mUCLrZBjJ75CWzMS37qrOiFjALgr9xju8Xqc0vChIBEeJG3Iu9TCLSh2JF/9Z
/jVmhjAYlwNirGMH9tpNp4P9Ne3RuHzbex2F9sd8t+0wQKAvSyP7da6hPhZBVT/d
tNifE1UCzSlPOs8y50c1I7u6QE4/QEZaKFGvyoKy9l/8us/nymSVMuRuknU5zwhY
8CYfOVjBy8NfII79SlFXVrp4mfna/F83kEPxPz8SuNCZc3StPhJHeOIqckyecwks
gxSjlRWRNh3RAJZAcGwQnfwey82HfqFlVQ51RzVHILaVMoqEGv3Pw2PQ6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMqEt1DzvG+XM+D9Lj+o49ahadHQMB8GA1UdIwQY
MBaAFM/HAIxvkXItw7EnUnVY69q8aAzmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejhjQWpHLVJjaTNEc1NkU2RWanIycnhvRE9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS80MTY4ZGEtZTY1Yy00N2I2LWJiNjEt
MzZmMjRhZDRhMDRmLzEvejhjQWpHLVJjaTNEc1NkU2RWanIycnhvRE9ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS80MTY4ZGEtZTY1Yy00N2I2LWJiNjEtMzZmMjRhZDRhMDRm
LzEvejhjQWpHLVJjaTNEc1NkU2RWanIycnhvRE9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKHxn7SyR
PfTo+nIVJAhagzwykQDbg+bAk1+xTK80nI55cGMJJ0nODM319+K4U8xjzYxwztjO
0RJKkpxOExHtu2WG0QbQHWJ4vgYa3zPM900jU9D3+Lc1xDf2N6V+of6HbYAiJZLs
OuRvh33SkEOg02RtCCmQs7x/NVEaYxvD7dwGFxaQUZaDdf1T8qO+imEwdQWgI4/d
jym/2Mhm3l825NvpVg0TVD2Sfze8CdUppTAnCDOW3ruLWT5e2hk3jyfHhOHZ7Mg2
oP6hT567DeR3CJINeIOjRZd/0jVAjs4hM4vVhrgS6F7eBAKFhi7YvvZUa0tcZ7ou
sgh3yKP8IXy10A==
-----END CERTIFICATE-----
Generated at Wed Jun 17 10:05:47 2026 by rpki-client