Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
File: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft (raw, json)
Hash identifier: x+6aFmFfu0mpFSzNVb/pJxxmHYka71L4h3Jsyt7FZC0=
Subject key identifier: 98:82:1F:FD:79:00:C6:8F:8B:29:AD:C5:57:FD:8E:98:10:54:A7:BC
Authority key identifier: D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
Certificate issuer: /CN=d425900312ff3bda4d2f896f64df65646fd9c251
Certificate serial: 019E30A930E403E234BFE1EE51E901435DA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
Manifest number: 190F
Signing time: Sat 16 May 2026 12:00:54 +0000
Manifest this update: Sat 16 May 2026 12:00:54 +0000
Manifest next update: Sun 17 May 2026 12:00:54 +0000
Files and hashes: 1: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl (hash: GoavwbJznmITdba6vFc3dYGo0Pg94sKn83uqdBOwfRs=)
2: 1Kg_Ulab4sB3FtCcoo1l5PNO7rw.roa (hash: c8c2ZCfFSRIW6FylRlfxyknjH4TvpagO5fNnP9Ygg7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:30:e4:03:e2:34:bf:e1:ee:51:e9:01:43:5d:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d425900312ff3bda4d2f896f64df65646fd9c251
Validity
Not Before: May 16 12:00:54 2026 GMT
Not After : May 17 12:00:54 2026 GMT
Subject: CN=98821ffd7900c68f8b29adc557fd8e981054a7bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4f:f1:4c:db:ee:f8:34:fa:ee:76:79:0d:58:
24:62:39:0d:16:d7:3f:b7:91:ce:5e:98:59:ff:d1:
26:8c:f8:fd:b7:bc:8d:66:18:43:5d:1f:0e:45:31:
93:07:8a:51:61:2c:07:71:7b:dd:60:f2:e0:9d:bc:
c3:c6:64:07:bb:aa:cb:79:10:c4:60:95:c4:70:3b:
da:e0:29:42:98:40:0a:d6:e2:cf:15:ff:5b:2e:5f:
f0:69:39:ab:02:e5:cf:a6:c2:8d:10:d4:ae:62:fd:
a0:a1:85:86:3f:ac:32:27:d0:fb:1d:da:59:28:2f:
11:02:80:95:1a:62:60:9d:c3:e8:16:9e:d3:52:29:
26:0c:91:d4:26:de:27:56:66:c7:48:50:79:83:b1:
a5:45:a1:b4:8b:e8:90:55:3b:6e:73:8d:6a:b9:06:
74:b8:3b:85:47:64:f6:81:7f:38:16:4d:5a:6f:22:
78:2a:90:75:14:08:a1:70:e9:07:65:99:5a:29:93:
49:b2:f1:4b:f4:c6:ea:8c:02:08:8d:82:15:44:44:
8b:42:bb:62:66:ac:1f:4d:11:95:5c:20:50:20:0e:
47:52:84:a8:c6:4f:db:b6:22:a9:38:7d:ed:2e:b2:
cb:50:95:32:25:3c:69:70:bc:ca:81:64:94:a0:a6:
76:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:82:1F:FD:79:00:C6:8F:8B:29:AD:C5:57:FD:8E:98:10:54:A7:BC
X509v3 Authority Key Identifier:
keyid:D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:2a:e0:8d:44:d2:fe:ec:00:47:f4:bd:e9:71:d7:07:31:2b:
42:2a:2c:6b:98:40:35:44:c0:d4:06:b1:05:60:ae:e3:40:3f:
e7:d3:cd:23:c2:6b:68:de:39:60:bb:42:15:3c:01:ed:4d:f7:
5a:e2:09:75:62:6d:36:cf:6f:c7:1e:de:93:5e:bc:3f:d8:8f:
e0:16:1c:2b:fa:55:3f:10:94:a4:84:ae:84:f2:75:60:14:11:
53:d6:a3:99:8c:e3:f5:97:b6:68:60:9b:22:6c:ed:3d:e7:ba:
70:fb:68:0c:ce:bc:f1:22:e0:66:0d:c8:9e:25:4e:1d:49:76:
a7:6e:73:a7:90:78:8c:97:36:6a:47:c9:88:f3:22:09:c1:9e:
d2:c9:01:d6:90:47:44:2e:5f:7e:85:0b:de:4c:a1:e9:0b:12:
cf:a5:b8:b4:9c:04:a6:43:8c:b0:72:bf:a8:7e:32:be:15:d3:
d1:ba:d1:2e:68:a5:aa:93:15:3f:92:04:df:8a:cd:f5:b2:8c:
03:fa:44:3e:f7:39:2a:9f:2b:99:9a:23:2b:51:29:4b:84:ee:
95:45:66:02:63:47:60:bb:2f:53:e3:62:67:65:6d:12:6c:8c:
d6:7f:ca:47:7e:8d:2b:d0:aa:d8:6c:da:15:b6:43:ee:8c:54:
d7:6a:01:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wqTDkA+I0v+HuUekBQ12kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MjU5MDAzMTJmZjNiZGE0ZDJmODk2ZjY0ZGY2NTY0NmZk
OWMyNTEwHhcNMjYwNTE2MTIwMDU0WhcNMjYwNTE3MTIwMDU0WjAzMTEwLwYDVQQD
Eyg5ODgyMWZmZDc5MDBjNjhmOGIyOWFkYzU1N2ZkOGU5ODEwNTRhN2JjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqU/xTNvu+DT67nZ5DVgkYjkNFtc/
t5HOXphZ/9EmjPj9t7yNZhhDXR8ORTGTB4pRYSwHcXvdYPLgnbzDxmQHu6rLeRDE
YJXEcDva4ClCmEAK1uLPFf9bLl/waTmrAuXPpsKNENSuYv2goYWGP6wyJ9D7HdpZ
KC8RAoCVGmJgncPoFp7TUikmDJHUJt4nVmbHSFB5g7GlRaG0i+iQVTtuc41quQZ0
uDuFR2T2gX84Fk1abyJ4KpB1FAihcOkHZZlaKZNJsvFL9MbqjAIIjYIVRESLQrti
ZqwfTRGVXCBQIA5HUoSoxk/btiKpOH3tLrLLUJUyJTxpcLzKgWSUoKZ2KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJiCH/15AMaPiymtxVf9jpgQVKe8MB8GA1UdIwQY
MBaAFNQlkAMS/zvaTS+Jb2TfZWRv2cJRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUNXUUF4TF9POXBOTDRsdlpOOWxaR19ad2xFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy81YmY4MjYtOTIxZS00NGY1LWFmMzMt
Njc2YjQyODkyNWFiLzEvMUNXUUF4TF9POXBOTDRsdlpOOWxaR19ad2xFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy81YmY4MjYtOTIxZS00NGY1LWFmMzMtNjc2YjQyODkyNWFi
LzEvMUNXUUF4TF9POXBOTDRsdlpOOWxaR19ad2xFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADirgjUTS
/uwAR/S96XHXBzErQiosa5hANUTA1AaxBWCu40A/59PNI8JraN45YLtCFTwB7U33
WuIJdWJtNs9vxx7ek168P9iP4BYcK/pVPxCUpISuhPJ1YBQRU9ajmYzj9Ze2aGCb
ImztPee6cPtoDM688SLgZg3IniVOHUl2p25zp5B4jJc2akfJiPMiCcGe0skB1pBH
RC5ffoUL3kyh6QsSz6W4tJwEpkOMsHK/qH4yvhXT0brRLmilqpMVP5IE34rN9bKM
A/pEPvc5Kp8rmZojK1EpS4TulUVmAmNHYLsvU+NiZ2VtEmyM1n/KR36NK9Cq2Gza
FbZD7oxU12oB+A==
-----END CERTIFICATE-----
Generated at Sat May 16 15:39:23 2026 by rpki-client