Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
File: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft (raw, json)
Hash identifier: NsrRD2HXbuhB4ffbDgCfrvi+eyuVw2LIfajQ1db9I9k=
Subject key identifier: 07:AA:8D:90:08:72:8B:A3:8E:31:D1:37:56:0F:2A:50:EC:E6:1A:F5
Authority key identifier: D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
Certificate issuer: /CN=d425900312ff3bda4d2f896f64df65646fd9c251
Certificate serial: 019F1867CD9AC23518EE9ADA0BD70E17FAF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
Manifest number: 1987
Signing time: Tue 30 Jun 2026 12:01:23 +0000
Manifest this update: Tue 30 Jun 2026 12:01:23 +0000
Manifest next update: Wed 01 Jul 2026 12:01:23 +0000
Files and hashes: 1: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl (hash: Emy9NowmqbPxbeR6vUSwYu6qkaIuKc4sdz+7adNNFGQ=)
2: 1Kg_Ulab4sB3FtCcoo1l5PNO7rw.roa (hash: c8c2ZCfFSRIW6FylRlfxyknjH4TvpagO5fNnP9Ygg7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:cd:9a:c2:35:18:ee:9a:da:0b:d7:0e:17:fa:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d425900312ff3bda4d2f896f64df65646fd9c251
Validity
Not Before: Jun 30 12:01:23 2026 GMT
Not After : Jul 1 12:01:23 2026 GMT
Subject: CN=07aa8d9008728ba38e31d137560f2a50ece61af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9d:46:23:5c:a8:bd:13:b4:d1:66:cb:92:d0:
3e:dc:ab:34:7e:8a:8a:12:b3:cf:8c:f7:a7:6b:48:
63:76:73:e9:c9:7e:e6:fc:60:79:45:33:e1:d8:d6:
e2:47:54:f6:a3:bb:32:ed:db:63:9f:5f:83:99:e7:
36:e1:0b:7d:39:ae:54:0c:58:e0:66:c7:d1:8f:2f:
c3:72:90:e9:bd:a8:e3:5d:32:6f:cd:43:b7:9f:a9:
7f:61:55:46:25:b0:7a:13:f7:43:6e:94:e2:00:31:
23:3c:b1:2b:14:04:1a:cb:dd:1d:67:4f:6b:32:69:
c6:bd:0b:73:a4:6f:64:a9:a6:26:b4:db:72:92:2a:
27:4f:96:cd:89:b1:a5:ca:6d:cd:de:6d:1b:cf:04:
86:49:4a:5f:56:46:b6:16:e8:35:36:f2:68:84:93:
b6:a7:d3:9d:18:f2:ce:2a:3d:db:68:01:3c:7f:25:
5a:13:09:8a:6e:f5:be:46:90:bc:a9:3a:99:65:38:
b7:96:09:19:78:13:36:fa:6f:47:9e:31:ab:81:81:
f0:fb:2c:dc:e7:68:37:77:32:eb:15:a5:22:8f:68:
21:2e:b5:fa:66:0f:ed:2c:bd:36:f2:03:d1:16:c9:
72:76:2a:aa:70:c1:39:ce:e4:63:80:44:42:29:9d:
f4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AA:8D:90:08:72:8B:A3:8E:31:D1:37:56:0F:2A:50:EC:E6:1A:F5
X509v3 Authority Key Identifier:
keyid:D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:c9:f6:bd:07:97:7f:85:86:4b:40:92:c7:53:d5:29:aa:9d:
3c:26:ea:eb:dd:9f:bf:5d:ef:73:2f:40:e4:44:ff:8c:f9:d3:
33:6e:ab:26:5a:03:00:3e:a3:09:c4:e0:9d:f2:03:9e:c8:8c:
82:f6:e3:aa:0b:f3:48:25:be:97:55:0a:d2:d0:48:ca:80:7a:
ee:67:73:81:c4:87:a3:d6:08:16:cb:42:97:c5:d2:6e:26:c3:
1b:4d:7c:2e:ae:7d:29:57:86:cb:4f:b5:a8:b7:d2:af:ef:6b:
ec:f6:90:40:26:ec:07:e8:0b:26:a9:10:ea:80:28:de:5b:25:
eb:af:2e:ce:74:d2:4f:25:13:51:00:b3:b5:ab:52:72:d9:ab:
ed:68:02:24:89:d2:ae:19:7d:0f:da:aa:23:b3:1e:d6:1a:76:
7d:4c:1b:18:f6:be:97:61:98:53:ab:ee:02:7c:b8:2b:5f:c9:
da:84:47:b2:63:f7:4b:c2:fd:3f:ab:1f:1f:51:c5:c0:cd:c9:
60:fc:17:29:ab:42:8a:9c:d0:c3:ee:58:8c:f9:64:cf:b8:ff:
95:a9:a2:a7:1e:cd:ef:bb:6f:6f:dd:02:83:65:82:4b:9f:c6:
e8:90:bc:f4:be:14:84:65:0c:a2:f3:b9:f6:54:ff:0a:b3:4e:
15:ea:1e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:40 2026 by rpki-client