Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
File: fzErCdH2kPJXAL1dzwfJGAxelmM.mft (raw, json)
Hash identifier: 3NQkZvZVpd1UYRJtYOzwblvPHrLnATlUtZsFBZjnqKI=
Subject key identifier: 43:E7:E8:85:74:0A:46:A3:63:04:6F:47:45:F6:30:3E:6F:01:D0:8A
Authority key identifier: 7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
Certificate issuer: /CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Certificate serial: 019EC2C9AE542CE9E2464356E5AE74D97D27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
Manifest number: 0284
Signing time: Sat 13 Jun 2026 21:00:57 +0000
Manifest this update: Sat 13 Jun 2026 21:00:57 +0000
Manifest next update: Sun 14 Jun 2026 21:00:57 +0000
Files and hashes: 1: BCFG1E3vkLJzX3xYHBAXCR2M-Dk.roa (hash: kLXCiyzJI0lL3gfuo31f6jHCm4NoCsgw/6nrJV+kat0=)
2: fzErCdH2kPJXAL1dzwfJGAxelmM.crl (hash: ke0kOSYUzgzDvxsNBCi/Qppu9BzBr4h3dSP/jCLZ8YY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 21:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:ae:54:2c:e9:e2:46:43:56:e5:ae:74:d9:7d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Validity
Not Before: Jun 13 21:00:57 2026 GMT
Not After : Jun 14 21:00:57 2026 GMT
Subject: CN=43e7e885740a46a363046f4745f6303e6f01d08a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:eb:cd:de:2f:5a:2c:c5:93:b6:30:ac:f2:3b:
b1:46:21:5e:a1:e4:29:4e:7e:36:06:f1:d4:32:af:
85:02:ac:45:5a:35:d8:a9:bd:01:6a:bf:92:54:25:
76:54:81:4c:52:bb:34:46:55:13:39:48:91:60:c0:
6a:02:4d:4d:f5:94:c7:88:3a:b3:da:9a:db:9a:f6:
16:ab:2e:55:a5:60:07:bc:55:b0:3b:38:8c:02:a8:
03:62:80:7d:68:26:ba:88:3d:c6:46:d1:73:6b:78:
f1:25:42:a0:eb:f6:65:db:c0:32:43:74:3a:37:8b:
d1:fa:8e:ce:90:b8:5b:b6:3b:0d:36:3b:db:e6:9b:
73:b2:8e:51:f6:f8:5c:31:9e:f2:58:84:f5:96:7a:
51:25:12:b9:a0:2e:cd:86:a4:1f:1c:9f:fd:f5:c0:
b9:ac:0a:6e:4c:60:23:d8:9a:85:98:fc:3d:74:23:
9e:14:f5:a4:88:87:15:0b:06:ae:80:f2:a4:22:c4:
7a:29:59:5d:7e:d7:d5:11:5c:c2:de:d0:ac:9f:f1:
bb:0c:ec:0a:9b:b4:cd:5b:d3:f8:85:04:5a:39:6f:
f9:f6:14:cf:17:24:98:9f:47:f2:3e:2c:9b:09:05:
1b:5d:f7:98:b8:1e:d0:5d:d4:7a:bc:5a:c2:f5:a8:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E7:E8:85:74:0A:46:A3:63:04:6F:47:45:F6:30:3E:6F:01:D0:8A
X509v3 Authority Key Identifier:
keyid:7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:b4:18:03:1c:3f:6f:0c:43:91:af:f2:55:67:63:16:99:82:
59:cc:22:85:9c:59:8b:27:df:b7:5b:79:16:d9:18:94:58:55:
c1:09:4d:fe:e4:b5:d9:84:ad:ee:c2:5b:ac:5c:ff:66:63:7b:
1d:d3:2d:ef:4b:6d:7b:f1:1b:b5:07:5d:de:2b:10:a4:c3:d5:
e6:97:0e:de:1f:69:0f:ac:13:e1:b9:50:98:2d:03:04:e5:52:
09:4f:be:a0:ff:fb:8e:f7:b9:eb:85:52:5b:cf:40:00:7b:3a:
cd:8f:2b:ff:af:0d:ed:3d:02:fc:ff:28:57:eb:67:0a:c7:b1:
ab:58:5f:91:2a:30:12:39:80:3e:22:3e:99:60:8b:77:d3:1f:
92:5a:31:6d:83:6f:e8:fb:a3:ca:59:9d:23:50:6a:25:51:9d:
fd:0d:1c:5c:8a:f3:6c:74:c0:8f:5f:6a:f0:8a:68:82:a7:fb:
fd:f5:d7:78:6a:1a:91:c9:5f:b5:1c:31:24:f0:8c:af:f6:7b:
ac:e3:2c:d6:85:11:cb:29:ea:f4:47:41:74:81:f3:1c:65:8c:
ba:db:26:01:6f:1f:b4:67:e2:f2:02:83:0f:27:15:39:19:14:
fa:92:28:ad:a2:b4:52:4f:82:d8:d5:4d:95:b4:d4:72:fe:57:
c4:5a:8f:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Cya5ULOniRkNW5a502X0nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmMzEyYjA5ZDFmNjkwZjI1NzAwYmQ1ZGNmMDdjOTE4MGM1
ZTk2NjMwHhcNMjYwNjEzMjEwMDU3WhcNMjYwNjE0MjEwMDU3WjAzMTEwLwYDVQQD
Eyg0M2U3ZTg4NTc0MGE0NmEzNjMwNDZmNDc0NWY2MzAzZTZmMDFkMDhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuvN3i9aLMWTtjCs8juxRiFeoeQp
Tn42BvHUMq+FAqxFWjXYqb0Bar+SVCV2VIFMUrs0RlUTOUiRYMBqAk1N9ZTHiDqz
2prbmvYWqy5VpWAHvFWwOziMAqgDYoB9aCa6iD3GRtFza3jxJUKg6/Zl28AyQ3Q6
N4vR+o7OkLhbtjsNNjvb5ptzso5R9vhcMZ7yWIT1lnpRJRK5oC7NhqQfHJ/99cC5
rApuTGAj2JqFmPw9dCOeFPWkiIcVCwaugPKkIsR6KVldftfVEVzC3tCsn/G7DOwK
m7TNW9P4hQRaOW/59hTPFySYn0fyPiybCQUbXfeYuB7QXdR6vFrC9ajk9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEPn6IV0CkajYwRvR0X2MD5vAdCKMB8GA1UdIwQY
MBaAFH8xKwnR9pDyVwC9Xc8HyRgMXpZjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8yOWRhYzktOWExNS00NjYxLWFmNzgt
MTUyMmUyOTY0ZmNlLzEvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy8yOWRhYzktOWExNS00NjYxLWFmNzgtMTUyMmUyOTY0ZmNl
LzEvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAILQYAxw/
bwxDka/yVWdjFpmCWcwihZxZiyfft1t5FtkYlFhVwQlN/uS12YSt7sJbrFz/ZmN7
HdMt70tte/EbtQdd3isQpMPV5pcO3h9pD6wT4blQmC0DBOVSCU++oP/7jve564VS
W89AAHs6zY8r/68N7T0C/P8oV+tnCsexq1hfkSowEjmAPiI+mWCLd9MfkloxbYNv
6PujylmdI1BqJVGd/Q0cXIrzbHTAj19q8Ipogqf7/fXXeGoakclftRwxJPCMr/Z7
rOMs1oURyynq9EdBdIHzHGWMutsmAW8ftGfi8gKDDycVORkU+pIoraK0Uk+C2NVN
lbTUcv5XxFqPxA==
-----END CERTIFICATE-----
Generated at Sun Jun 14 08:19:50 2026 by rpki-client