Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
File: ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft (raw, json)
Hash identifier: 3qyryOC+TuUONyZ5gWBoFhVDMya72zwITbOHnFX7Ae8=
Subject key identifier: 76:6E:DC:8D:FE:9D:6E:5A:EF:C5:41:F1:13:DF:09:E9:47:60:A0:DB
Authority key identifier: 65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
Certificate issuer: /CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Certificate serial: 019EC4134D34D1D3343051A08DD0D5CF1D4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
Manifest number: 161B
Signing time: Sun 14 Jun 2026 03:00:59 +0000
Manifest this update: Sun 14 Jun 2026 03:00:59 +0000
Manifest next update: Mon 15 Jun 2026 03:00:59 +0000
Files and hashes: 1: GZsPzmbA--FYrc4SNgLcVzZUS58.roa (hash: gCmBdutjh3s8CjQ+XZ5HjES4JuiIxCATlIX/+TCZL7A=)
2: ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl (hash: 1ipblTZWLsq7AFuPmS9f3i6zfGwpB9LNML0LsId4iZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:13:4d:34:d1:d3:34:30:51:a0:8d:d0:d5:cf:1d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d66329576c9c01b3cd8285f4b54b0170d8c39a
Validity
Not Before: Jun 14 03:00:59 2026 GMT
Not After : Jun 15 03:00:59 2026 GMT
Subject: CN=766edc8dfe9d6e5aefc541f113df09e94760a0db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fb:74:85:08:1e:ee:ec:d0:13:94:1b:4a:5a:
7a:49:00:24:05:03:8f:71:36:c9:4e:50:46:60:0d:
85:a8:82:00:c4:c1:c9:9b:f4:34:23:86:14:ba:f4:
15:ed:d0:61:36:9f:24:9d:a5:0b:84:14:16:57:f5:
96:d8:a3:d2:71:e1:b4:b6:fa:97:4b:c4:6c:d4:a4:
fd:e8:b3:68:bc:c2:0f:41:bf:f7:66:1f:ab:39:2d:
3a:a2:8a:c3:b8:22:00:ae:18:1c:e0:7f:a1:17:bd:
33:40:40:bb:88:37:5a:7b:a7:15:5f:27:18:1b:6b:
6d:6c:67:33:99:94:b6:dd:d1:df:4a:50:2d:07:2d:
cb:f8:61:d9:75:76:65:d3:31:f6:6c:cd:dc:4e:bf:
61:ae:01:06:d2:bb:97:46:22:36:13:1e:52:a2:13:
08:f5:7d:96:f8:cf:d7:0f:45:fe:7e:a5:06:71:4d:
cf:0a:96:b9:3a:24:3d:57:e5:25:11:85:47:25:2a:
c5:b2:97:58:1c:60:0d:c8:48:8a:af:82:c4:28:39:
e4:75:8f:e3:73:3b:70:36:fe:05:27:51:09:1a:6a:
ca:1a:e0:09:e6:40:b0:58:79:92:f7:74:ce:08:f3:
05:91:f6:45:40:bc:f4:8e:c8:95:3a:aa:07:7d:8c:
15:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:6E:DC:8D:FE:9D:6E:5A:EF:C5:41:F1:13:DF:09:E9:47:60:A0:DB
X509v3 Authority Key Identifier:
keyid:65:D6:63:29:57:6C:9C:01:B3:CD:82:85:F4:B5:4B:01:70:D8:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d527f8-e5af-4820-a248-1e66505131ca/1/ZdZjKVdsnAGzzYKF9LVLAXDYw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:ce:76:17:a5:8e:cc:19:b0:d4:e5:30:22:68:fd:5f:4c:2d:
e3:8a:55:66:70:46:e3:b2:7d:05:d2:1e:b7:7e:05:04:64:22:
6b:71:41:4a:ef:2d:6e:b6:2a:1f:45:40:9e:ae:fc:2f:d1:b8:
ed:de:d8:49:41:a5:03:c2:2f:92:e9:38:82:34:5a:eb:9f:d9:
a5:a2:03:90:7a:88:a4:54:6c:81:49:7f:c8:66:30:bc:7f:39:
cf:d1:53:21:60:6a:ae:ae:6b:7b:6a:f5:c9:9a:2e:fc:7d:ea:
bb:d8:1b:37:c4:95:7b:f1:0d:4a:29:e8:02:9d:1c:48:bd:49:
ca:02:07:aa:51:fb:53:f0:f7:c7:13:c0:2a:c7:56:10:91:bf:
4a:5a:37:97:86:8e:56:ff:66:c1:69:80:40:7d:ec:20:60:9b:
6a:43:b9:28:f1:bb:db:eb:05:d0:49:16:a8:f7:60:8e:11:98:
1f:13:6e:97:e2:e6:e0:e9:05:47:59:7b:f0:df:26:e9:ef:62:
14:11:bf:e7:c9:bb:f6:a1:bf:d5:68:ca:bf:2a:3c:97:f0:1b:
fe:19:57:1a:e6:6a:08:cb:aa:c6:83:65:1e:11:32:45:97:00:
97:76:3f:f6:45:3c:9e:b4:08:f5:7e:5b:8b:aa:eb:7e:68:c6:
1c:ef:b5:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7EE0000dM0MFGgjdDVzx1NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1ZDY2MzI5NTc2YzljMDFiM2NkODI4NWY0YjU0YjAxNzBk
OGMzOWEwHhcNMjYwNjE0MDMwMDU5WhcNMjYwNjE1MDMwMDU5WjAzMTEwLwYDVQQD
Eyg3NjZlZGM4ZGZlOWQ2ZTVhZWZjNTQxZjExM2RmMDllOTQ3NjBhMGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvt0hQge7uzQE5QbSlp6SQAkBQOP
cTbJTlBGYA2FqIIAxMHJm/Q0I4YUuvQV7dBhNp8knaULhBQWV/WW2KPSceG0tvqX
S8Rs1KT96LNovMIPQb/3Zh+rOS06oorDuCIArhgc4H+hF70zQEC7iDdae6cVXycY
G2ttbGczmZS23dHfSlAtBy3L+GHZdXZl0zH2bM3cTr9hrgEG0ruXRiI2Ex5SohMI
9X2W+M/XD0X+fqUGcU3PCpa5OiQ9V+UlEYVHJSrFspdYHGANyEiKr4LEKDnkdY/j
cztwNv4FJ1EJGmrKGuAJ5kCwWHmS93TOCPMFkfZFQLz0jsiVOqoHfYwViQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHZu3I3+nW5a78VB8RPfCelHYKDbMB8GA1UdIwQY
MBaAFGXWYylXbJwBs82ChfS1SwFw2MOaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmRaaktWZHNuQUd6ellLRjlMVkxBWERZdzVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9kNTI3ZjgtZTVhZi00ODIwLWEyNDgt
MWU2NjUwNTEzMWNhLzEvWmRaaktWZHNuQUd6ellLRjlMVkxBWERZdzVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS9kNTI3ZjgtZTVhZi00ODIwLWEyNDgtMWU2NjUwNTEzMWNh
LzEvWmRaaktWZHNuQUd6ellLRjlMVkxBWERZdzVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsc52F6WO
zBmw1OUwImj9X0wt44pVZnBG47J9BdIet34FBGQia3FBSu8tbrYqH0VAnq78L9G4
7d7YSUGlA8Ivkuk4gjRa65/ZpaIDkHqIpFRsgUl/yGYwvH85z9FTIWBqrq5re2r1
yZou/H3qu9gbN8SVe/ENSinoAp0cSL1JygIHqlH7U/D3xxPAKsdWEJG/Slo3l4aO
Vv9mwWmAQH3sIGCbakO5KPG72+sF0EkWqPdgjhGYHxNul+Lm4OkFR1l78N8m6e9i
FBG/58m79qG/1WjKvyo8l/Ab/hlXGuZqCMuqxoNlHhEyRZcAl3Y/9kU8nrQI9X5b
i6rrfmjGHO+1xw==
-----END CERTIFICATE-----
Generated at Sun Jun 14 07:09:28 2026 by rpki-client