Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: djH+M2Hes8ru1nkjExfdPs2SKl3gQ8v9xVIYsaJF3II=
Subject key identifier: AF:1F:6C:C4:E2:D7:00:C7:4B:C8:0B:FC:0C:A7:74:9B:60:82:5C:54
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 019CA9460D55FD30EEC687E84D8CE5D1C37D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 0460
Signing time: Sun 01 Mar 2026 12:01:06 +0000
Manifest this update: Sun 01 Mar 2026 12:01:06 +0000
Manifest next update: Mon 02 Mar 2026 12:01:06 +0000
Files and hashes: 1: 1-_85ETz5jkHerkVT2dRSmXtqgNo.roa (hash: NQXJJj/OBTH49mc/x3onWdcUiAdq+Dhq5KpAVGXEyBc=)
2: CqxV1eA1GBG3a2D5f_pPgzG42eU.roa (hash: e3jb5BkEW8pwm4wMD1gq76Tk/yf9hJs9RYXqndmqFv8=)
3: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: T5K8sS7zWsFwC6uKRp4TNVYXxOtz+fhpLkUMritBUMs=)
4: xR7LKB9cMx20WjaSYnBDWdIRF-g.roa (hash: vumkR84YsHI2dcyHQIVTL0w8JKyaUvc5rnjqJHi4+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:46:0d:55:fd:30:ee:c6:87:e8:4d:8c:e5:d1:c3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: Mar 1 12:01:06 2026 GMT
Not After : Mar 2 12:01:06 2026 GMT
Subject: CN=af1f6cc4e2d700c74bc80bfc0ca7749b60825c54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:16:de:08:48:a9:b7:41:85:74:34:4b:f5:e7:
e0:9a:83:2d:27:1c:1b:51:c8:e5:9f:d9:7b:03:70:
54:a9:7b:15:b4:c8:e1:0d:b5:38:b5:ef:63:61:86:
f9:55:5c:37:60:82:02:6a:ce:90:8e:b8:34:87:98:
26:f5:f4:4e:18:46:27:d5:e5:6c:a8:f4:9d:30:0c:
14:8f:f3:26:55:97:2d:23:b7:1f:82:49:62:22:f2:
42:6f:27:0c:be:b5:ca:3a:d1:7e:e7:56:f6:f8:ea:
71:59:31:c6:cc:80:9c:e1:c9:f5:68:f2:2d:92:98:
d5:ca:35:bf:3d:fa:81:a9:ef:6e:51:6b:04:81:4f:
17:84:22:c4:7d:75:3b:93:75:24:52:4a:35:43:ba:
e8:94:49:03:ce:36:22:07:be:50:91:90:63:f9:35:
0d:53:05:d0:81:b0:8e:2d:55:c5:c3:83:69:db:27:
03:d7:80:bd:7f:c4:02:ec:5a:c2:c4:b2:9f:7f:74:
74:ed:c8:f6:d9:b9:85:7d:a2:98:83:6c:f5:2c:d9:
fe:0e:51:49:0d:a2:d1:87:0c:5a:53:a6:d6:62:ac:
5f:fb:b2:4b:b9:99:c8:e0:5b:f4:b1:78:33:6a:54:
99:0b:84:6b:da:53:4f:65:cf:98:8b:68:af:f3:05:
0b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1F:6C:C4:E2:D7:00:C7:4B:C8:0B:FC:0C:A7:74:9B:60:82:5C:54
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:11:94:eb:97:ff:e1:3a:14:4e:dd:12:42:58:82:84:12:c6:
a3:71:27:0a:61:85:7b:2b:70:b9:ba:2d:6a:b0:a0:67:57:a0:
a0:02:8e:6a:78:f4:8b:fd:88:5c:6e:73:68:d4:1e:ab:a0:d5:
4a:03:cc:df:df:e9:cd:eb:fa:f8:2e:41:4f:57:69:3e:6d:ef:
8e:5d:57:f3:e4:d7:19:d8:92:c9:b0:a7:42:ab:9e:65:85:98:
67:9f:1b:c6:1b:c0:b9:d4:87:7e:00:5f:56:8a:8b:e5:46:db:
36:85:3a:9c:ef:c7:be:76:a8:f5:31:68:81:d6:3a:8f:87:13:
16:e4:5a:5a:3c:05:8f:ec:ae:a0:83:a4:a9:82:7a:3c:95:56:
f3:c1:55:bb:68:59:75:14:e8:bc:13:64:d0:e2:03:a6:c3:e9:
31:d1:21:55:fa:77:78:6c:19:dd:dd:36:fc:85:3f:0e:38:54:
36:cd:c9:4b:c6:d8:4c:08:64:43:6c:a2:56:f1:84:fd:5e:9c:
79:09:d5:8e:7d:3e:88:80:82:af:17:ad:1b:f0:55:bf:6a:ed:
a6:ed:b0:f2:b4:c1:3d:1d:b8:47:c3:ca:ed:f2:4f:1e:1f:ea:
6c:63:c9:ed:09:ec:95:1d:11:26:f6:db:91:73:67:ea:5d:64:
e3:e9:24:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypRg1V/TDuxofoTYzl0cN9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMzYjY1YThiYWViYTRmZjYyMTQ5MmViZWU2ZmMxZTg4YWRi
MjFiMDMwHhcNMjYwMzAxMTIwMTA2WhcNMjYwMzAyMTIwMTA2WjAzMTEwLwYDVQQD
EyhhZjFmNmNjNGUyZDcwMGM3NGJjODBiZmMwY2E3NzQ5YjYwODI1YzU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBbeCEipt0GFdDRL9efgmoMtJxwb
Ucjln9l7A3BUqXsVtMjhDbU4te9jYYb5VVw3YIICas6Qjrg0h5gm9fROGEYn1eVs
qPSdMAwUj/MmVZctI7cfgkliIvJCbycMvrXKOtF+51b2+OpxWTHGzICc4cn1aPIt
kpjVyjW/PfqBqe9uUWsEgU8XhCLEfXU7k3UkUko1Q7rolEkDzjYiB75QkZBj+TUN
UwXQgbCOLVXFw4Np2ycD14C9f8QC7FrCxLKff3R07cj22bmFfaKYg2z1LNn+DlFJ
DaLRhwxaU6bWYqxf+7JLuZnI4Fv0sXgzalSZC4Rr2lNPZc+Yi2iv8wUL5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK8fbMTi1wDHS8gL/AyndJtgglxUMB8GA1UdIwQY
MBaAFDO2Wouuuk/2IUkuvub8HoitshsDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0Njkt
ZDU0NzE4NTUxMmRlLzEvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0NjktZDU0NzE4NTUxMmRl
LzEvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfRGU65f/
4ToUTt0SQliChBLGo3EnCmGFeytwubotarCgZ1egoAKOanj0i/2IXG5zaNQeq6DV
SgPM39/pzev6+C5BT1dpPm3vjl1X8+TXGdiSybCnQqueZYWYZ58bxhvAudSHfgBf
VoqL5UbbNoU6nO/Hvnao9TFogdY6j4cTFuRaWjwFj+yuoIOkqYJ6PJVW88FVu2hZ
dRTovBNk0OIDpsPpMdEhVfp3eGwZ3d02/IU/DjhUNs3JS8bYTAhkQ2yiVvGE/V6c
eQnVjn0+iICCrxetG/BVv2rtpu2w8rTBPR24R8PK7fJPHh/qbGPJ7QnslR0RJvbb
kXNn6l1k4+kkIg==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:45 2026 by rpki-client