Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
File: AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft (raw, json)
Hash identifier: KYvbayiJgv5nmeW3JDrXSW2SPiyKsjF6wmHnH3fwMeI=
Subject key identifier: 27:2C:C2:EE:C1:B4:F1:EB:4E:5F:3B:90:95:BF:08:CF:14:94:4F:30
Authority key identifier: 01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
Certificate issuer: /CN=017c90654653ac150028562b32431491b52147d1
Certificate serial: 019E303B66719A47873791AA78075D4F1CBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
Manifest number: 10EF
Signing time: Sat 16 May 2026 10:00:59 +0000
Manifest this update: Sat 16 May 2026 10:00:59 +0000
Manifest next update: Sun 17 May 2026 10:00:59 +0000
Files and hashes: 1: AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl (hash: 3XYX6uw+M2SeK1enOCnVVAqe1fQV/XTlmkWHS5pJrCA=)
2: Bi1XXzWo6lnTEVYADTXqjFg4Phs.roa (hash: CcN3AAar9jL+JjbAjisL+jzrcTOAzrlyvwRjw6mb2gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:66:71:9a:47:87:37:91:aa:78:07:5d:4f:1c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=017c90654653ac150028562b32431491b52147d1
Validity
Not Before: May 16 10:00:59 2026 GMT
Not After : May 17 10:00:59 2026 GMT
Subject: CN=272cc2eec1b4f1eb4e5f3b9095bf08cf14944f30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4b:72:43:ca:ae:94:bc:76:de:e7:8a:7f:39:
4c:cd:bb:2a:3c:e3:8e:9b:4d:c4:69:56:8e:f7:b5:
6c:c7:ee:80:49:5e:fb:54:a7:bc:6c:94:9e:50:a0:
01:f7:b1:e5:d1:96:f4:75:63:c9:41:ef:db:41:dd:
15:7f:3a:cd:61:59:07:c3:36:99:86:37:80:b3:c7:
d3:40:94:d4:0b:7b:72:c5:c9:13:7c:6a:82:3c:96:
31:c2:00:5b:2f:03:f0:20:7b:12:0d:e4:69:99:39:
c0:f8:ab:17:6c:32:24:2f:73:d9:45:05:36:9e:f2:
06:48:e5:d5:42:3e:cc:34:e8:57:cb:b8:97:3b:9b:
f9:3c:33:66:52:19:18:30:d0:3a:ef:6a:ba:73:12:
51:cc:45:d1:17:be:17:41:1b:d2:2c:5b:6b:86:c2:
91:e1:45:9f:de:1b:4e:43:b7:49:ed:86:79:ab:2f:
90:ef:5d:26:f0:82:83:50:dc:67:52:69:3f:fb:c6:
de:90:95:ac:1e:3e:ac:5e:a6:64:f3:19:73:88:c9:
5f:20:d8:d7:31:e9:ce:16:97:7a:a7:57:ae:81:25:
19:b6:ea:48:56:67:13:25:89:82:c8:12:d5:0b:bd:
a2:bb:1c:d9:fb:f0:8c:1c:84:a4:f5:24:19:b1:24:
0f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:2C:C2:EE:C1:B4:F1:EB:4E:5F:3B:90:95:BF:08:CF:14:94:4F:30
X509v3 Authority Key Identifier:
keyid:01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:be:f7:9b:f1:a2:ad:af:f3:03:ec:ce:b5:1e:fc:ec:e4:31:
2e:ba:a2:73:04:06:48:78:e1:8b:2f:cc:cb:b1:33:ab:17:11:
9e:7e:03:a4:23:94:30:6d:f7:17:7e:71:ff:c6:30:b6:71:22:
6b:7c:90:33:17:f9:23:31:c6:32:2f:f9:92:4d:ec:ca:74:97:
0c:ff:2a:91:63:64:49:8a:f7:47:48:45:76:06:ae:3a:ae:91:
63:40:70:4b:53:02:ba:3d:b1:72:4a:58:39:6b:07:03:84:bb:
70:c1:2c:ca:a7:f3:a4:bf:42:a9:85:6d:1c:6f:97:4b:e9:09:
78:45:c5:1c:92:a4:05:9e:21:04:fb:0f:5a:4b:0f:cd:c0:f9:
e2:dc:57:32:7b:26:63:09:a7:98:33:e9:52:ce:db:1f:84:1c:
63:0f:83:8a:61:4a:1e:0a:25:f5:23:43:6c:5d:32:80:15:97:
05:0b:cb:1b:aa:1c:77:6e:6e:f9:b4:87:8e:3f:06:16:bd:80:
0f:69:aa:f0:a9:fa:47:b3:40:fe:bd:72:8a:a1:ea:74:c2:80:
c6:ee:64:bb:1e:ac:d6:80:4e:22:5b:2a:38:7d:01:f9:a7:af:
60:ea:62:48:f8:f3:dc:27:c5:56:7c:26:74:50:d6:f6:91:62:
2c:b1:ca:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wO2ZxmkeHN5GqeAddTxy9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxN2M5MDY1NDY1M2FjMTUwMDI4NTYyYjMyNDMxNDkxYjUy
MTQ3ZDEwHhcNMjYwNTE2MTAwMDU5WhcNMjYwNTE3MTAwMDU5WjAzMTEwLwYDVQQD
EygyNzJjYzJlZWMxYjRmMWViNGU1ZjNiOTA5NWJmMDhjZjE0OTQ0ZjMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwktyQ8qulLx23ueKfzlMzbsqPOOO
m03EaVaO97Vsx+6ASV77VKe8bJSeUKAB97Hl0Zb0dWPJQe/bQd0VfzrNYVkHwzaZ
hjeAs8fTQJTUC3tyxckTfGqCPJYxwgBbLwPwIHsSDeRpmTnA+KsXbDIkL3PZRQU2
nvIGSOXVQj7MNOhXy7iXO5v5PDNmUhkYMNA672q6cxJRzEXRF74XQRvSLFtrhsKR
4UWf3htOQ7dJ7YZ5qy+Q710m8IKDUNxnUmk/+8bekJWsHj6sXqZk8xlziMlfINjX
MenOFpd6p1eugSUZtupIVmcTJYmCyBLVC72iuxzZ+/CMHISk9SQZsSQPQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCcswu7BtPHrTl87kJW/CM8UlE8wMB8GA1UdIwQY
MBaAFAF8kGVGU6wVAChWKzJDFJG1IUfRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8zNWI3ZTUtODg2NC00NzU5LWJiODYt
NzAxM2E2YzQzOTg1LzEvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8zNWI3ZTUtODg2NC00NzU5LWJiODYtNzAxM2E2YzQzOTg1
LzEvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfL73m/Gi
ra/zA+zOtR787OQxLrqicwQGSHjhiy/My7EzqxcRnn4DpCOUMG33F35x/8YwtnEi
a3yQMxf5IzHGMi/5kk3synSXDP8qkWNkSYr3R0hFdgauOq6RY0BwS1MCuj2xckpY
OWsHA4S7cMEsyqfzpL9CqYVtHG+XS+kJeEXFHJKkBZ4hBPsPWksPzcD54txXMnsm
YwmnmDPpUs7bH4QcYw+DimFKHgol9SNDbF0ygBWXBQvLG6ocd25u+bSHjj8GFr2A
D2mq8Kn6R7NA/r1yiqHqdMKAxu5kux6s1oBOIlsqOH0B+aevYOpiSPjz3CfFVnwm
dFDW9pFiLLHKfg==
-----END CERTIFICATE-----
Generated at Sat May 16 15:39:07 2026 by rpki-client