Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json)
Hash identifier: eCjbgdKFYefOJf3C013cFNxAsxoHy+3Bogz8wvl8ST8=
Subject key identifier: 2D:3A:E4:C9:AE:36:6B:DD:41:1E:14:9F:28:F7:C8:63:D4:D8:16:FC
Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Certificate serial: 019E2F5FA0235B09612659F21A1DABE609A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
Manifest number: 0576
Signing time: Sat 16 May 2026 06:00:56 +0000
Manifest this update: Sat 16 May 2026 06:00:56 +0000
Manifest next update: Sun 17 May 2026 06:00:56 +0000
Files and hashes: 1: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: a5rOYHjud9CtxyLEj16axwzKtcmfmltvjUTXzfrhP+8=)
2: 67fn5GTCeyuZQBLDAbthDHukFBc.roa (hash: mGoog7qE1SUu5tq0Qw3ikg4XEdKFRtMMptWXJMMEWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 06:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:5f:a0:23:5b:09:61:26:59:f2:1a:1d:ab:e6:09:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Validity
Not Before: May 16 06:00:56 2026 GMT
Not After : May 17 06:00:56 2026 GMT
Subject: CN=2d3ae4c9ae366bdd411e149f28f7c863d4d816fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:57:44:ed:74:bc:91:d7:d1:68:3c:53:69:52:
08:e4:47:ff:02:a4:12:56:26:2f:a2:49:10:ad:f4:
5c:37:88:a0:8f:61:84:d6:80:5c:3b:6d:03:d5:7a:
bd:45:97:ce:0b:02:03:0a:62:67:c5:12:35:e3:8b:
73:2f:93:be:16:13:21:49:88:f2:2e:3f:fd:92:7a:
c1:e9:50:2c:11:00:d2:51:68:88:22:84:c0:48:1c:
9c:32:69:01:6d:e8:ab:48:e1:4a:fd:74:9b:44:da:
f2:3d:87:49:ee:c5:0e:46:38:a6:e5:c3:76:ee:4f:
17:f6:3b:d4:0f:0c:41:de:16:eb:f4:fd:e2:5d:db:
46:09:bd:36:bf:46:05:a1:15:0f:b5:b6:74:73:9d:
3b:b4:a6:70:08:21:76:96:55:f6:7b:49:6f:a7:2f:
dd:77:69:26:2c:96:4b:88:44:d5:07:6c:62:3e:f0:
a4:51:e1:13:cc:6f:33:52:aa:05:75:cf:c8:42:db:
e7:bc:d5:9f:ae:a5:a5:e9:c7:96:3f:74:20:7c:e8:
2f:d4:7b:61:ab:87:0f:9b:ee:5b:aa:8a:20:13:3a:
85:1f:6f:2e:fb:18:9d:76:76:e9:5f:64:bc:65:de:
ef:ac:66:bb:ca:95:9e:8e:25:94:78:62:10:ab:9f:
28:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3A:E4:C9:AE:36:6B:DD:41:1E:14:9F:28:F7:C8:63:D4:D8:16:FC
X509v3 Authority Key Identifier:
keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:69:e6:41:c1:b9:a1:cc:68:0a:1e:c3:2f:2d:3d:c9:fb:4c:
7d:5d:e7:a5:05:6c:c3:83:58:5f:43:60:9a:71:2e:7d:63:3d:
e1:d9:dd:4f:90:ae:42:80:2c:28:f3:b6:ed:97:38:61:6c:3b:
0b:5f:f8:32:b6:cc:19:f8:87:bd:36:ad:42:e2:9f:30:65:8f:
46:40:95:84:e7:7e:d8:e4:7f:00:48:b4:08:07:7e:62:56:26:
db:41:0e:2f:7a:ca:6a:71:80:2e:d9:8d:d4:c5:b4:b7:cd:f7:
13:90:84:16:51:d2:c8:3a:49:5d:52:b2:a4:ea:cb:2a:28:82:
b4:fa:c8:77:e7:66:3b:12:04:a1:b6:49:2e:18:19:98:a9:ae:
1e:87:7d:ad:e0:06:c9:64:0f:a0:ff:b7:51:65:32:7b:4d:3a:
70:f7:04:04:00:43:6c:fb:9a:7e:77:8b:d8:1d:65:4a:3d:3c:
46:9f:6a:ce:be:be:c7:c2:84:61:c7:d7:9f:b8:3a:64:3f:1b:
b5:9e:28:e4:f6:b5:91:cd:b6:a8:3a:a1:69:95:8c:37:d6:f8:
03:3b:ed:4b:ff:e7:16:99:bd:71:9d:0f:0d:2d:36:5d:ed:3d:
d6:16:29:3a:47:7a:a7:e3:ff:8f:d0:03:c5:2e:88:57:e4:20:
5f:b3:00:b4
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZ4vX6AjWwlhJlnyGh2r5gmpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5ODY2OWQzMWExNGRiZGM1MDc3MTU5Y2YwYTY1MzUzYmZi
ZmEyMGEwHhcNMjYwNTE2MDYwMDU2WhcNMjYwNTE3MDYwMDU2WjAzMTEwLwYDVQQD
EygyZDNhZTRjOWFlMzY2YmRkNDExZTE0OWYyOGY3Yzg2M2Q0ZDgxNmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVdE7XS8kdfRaDxTaVII5Ef/AqQS
ViYvokkQrfRcN4igj2GE1oBcO20D1Xq9RZfOCwIDCmJnxRI144tzL5O+FhMhSYjy
Lj/9knrB6VAsEQDSUWiIIoTASBycMmkBbeirSOFK/XSbRNryPYdJ7sUORjim5cN2
7k8X9jvUDwxB3hbr9P3iXdtGCb02v0YFoRUPtbZ0c507tKZwCCF2llX2e0lvpy/d
d2kmLJZLiETVB2xiPvCkUeETzG8zUqoFdc/IQtvnvNWfrqWl6ceWP3QgfOgv1Hth
q4cPm+5bqoogEzqFH28u+xiddnbpX2S8Zd7vrGa7ypWejiWUeGIQq58oTQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFC065MmuNmvdQR4Unyj3yGPU2Bb8MB8GA1UdIwQY
MBaAFPmGadMaFNvcUHcVnPCmU1O/v6IKMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1ZWnAweG9VMjl4UWR4V2M4S1pUVTctX29nby5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvMmI0MTdkLTI4NjktNDExZi1hZWRh
LTRhMDViYWM1MjY1Zi8xLzEtWVpwMHhvVTI5eFFkeFdjOEtaVFU3LV9vZ28ubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzA3LzJiNDE3ZC0yODY5LTQxMWYtYWVkYS00YTA1YmFjNTI2
NWYvMS8xLVlacDB4b1UyOXhRZHhXYzhLWlRVNy1fb2dvLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjGnm
QcG5ocxoCh7DLy09yftMfV3npQVsw4NYX0NgmnEufWM94dndT5CuQoAsKPO27Zc4
YWw7C1/4MrbMGfiHvTatQuKfMGWPRkCVhOd+2OR/AEi0CAd+YlYm20EOL3rKanGA
LtmN1MW0t833E5CEFlHSyDpJXVKypOrLKiiCtPrId+dmOxIEobZJLhgZmKmuHod9
reAGyWQPoP+3UWUye006cPcEBABDbPuafneL2B1lSj08Rp9qzr6+x8KEYcfXn7g6
ZD8btZ4o5Pa1kc22qDqhaZWMN9b4AzvtS//nFpm9cZ0PDS02Xe091hYpOkd6p+P/
j9ADxS6IV+QgX7MAtA==
-----END CERTIFICATE-----
Generated at Sat May 16 16:27:01 2026 by rpki-client