Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
File: AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft (raw, json)
Hash identifier: Yv8Y4KiT0VwcIc8hzwjjZ3zqhM/EdJdNhxPOiknNzDI=
Subject key identifier: 9D:C4:15:3E:B2:3E:B3:20:C1:54:8B:35:0A:67:62:EF:E0:DA:16:29
Authority key identifier: 01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
Certificate issuer: /CN=017c90654653ac150028562b32431491b52147d1
Certificate serial: 019F17F9DA1B9DB52B583B92B638CFE33849
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
Manifest number: 1167
Signing time: Tue 30 Jun 2026 10:01:17 +0000
Manifest this update: Tue 30 Jun 2026 10:01:17 +0000
Manifest next update: Wed 01 Jul 2026 10:01:17 +0000
Files and hashes: 1: AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl (hash: LJO/8X74R+6/P+Q8FuYcAOUcl7GMaUDnRLctDVscV5Y=)
2: Bi1XXzWo6lnTEVYADTXqjFg4Phs.roa (hash: CcN3AAar9jL+JjbAjisL+jzrcTOAzrlyvwRjw6mb2gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:da:1b:9d:b5:2b:58:3b:92:b6:38:cf:e3:38:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=017c90654653ac150028562b32431491b52147d1
Validity
Not Before: Jun 30 10:01:17 2026 GMT
Not After : Jul 1 10:01:17 2026 GMT
Subject: CN=9dc4153eb23eb320c1548b350a6762efe0da1629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:71:89:77:d0:38:68:17:72:d0:e3:4d:f8:19:
59:20:fe:a2:48:b0:71:a2:b1:c5:40:d1:7d:ad:d5:
4a:ca:aa:d4:60:92:f0:7e:94:d4:d2:26:5f:0e:fe:
b8:32:31:85:eb:e9:3b:c0:bb:d2:3e:5e:f9:35:a9:
cf:e5:4c:15:54:13:38:49:72:5d:cd:e6:2d:9d:15:
34:65:cc:00:32:c2:17:aa:37:20:fa:46:0b:91:5a:
fb:e1:3a:a9:1c:aa:0c:56:b5:70:d5:df:e5:b4:af:
f6:95:d4:f1:43:f0:62:32:b4:e0:b3:c0:44:45:ce:
dc:89:51:f4:5e:11:79:b3:c6:b5:a2:c3:a6:cb:8d:
ad:e8:50:be:eb:a8:15:48:84:16:da:bf:0b:26:80:
a5:b9:53:72:c5:ca:f7:e4:e6:ce:f4:e3:76:69:01:
50:c0:1b:7d:d0:b8:d7:b3:ae:26:13:df:b2:51:ac:
96:43:01:5a:8c:3b:0c:a3:a7:be:85:64:c7:86:cf:
94:67:37:57:37:fd:7a:3c:91:a8:d0:f9:7e:6a:69:
cf:72:b7:b3:42:08:3f:da:47:66:75:fb:2b:52:de:
5c:8d:c7:aa:e6:72:a2:a8:70:c7:1b:3e:64:9d:2c:
04:08:d3:5f:ea:a9:a6:f7:63:0b:c7:c2:b7:0b:35:
5a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C4:15:3E:B2:3E:B3:20:C1:54:8B:35:0A:67:62:EF:E0:DA:16:29
X509v3 Authority Key Identifier:
keyid:01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:fc:ac:32:8d:f3:6a:fa:95:56:8b:d5:b0:6a:bb:7b:cd:41:
a4:b3:78:01:d9:1a:7b:b6:82:74:be:c2:71:ac:dc:fe:a2:1b:
bc:6e:c6:1e:04:f6:51:37:54:d6:63:52:4b:cf:80:7f:44:d8:
1d:4d:50:b4:8f:5e:86:b4:75:64:de:0e:e4:b5:9f:82:d9:d6:
5b:bb:ab:b6:7e:c4:ce:ad:7f:25:09:dd:41:b7:fd:3c:13:59:
22:5b:1e:a3:6d:7e:10:83:73:ae:3f:29:06:d2:fd:e2:df:a8:
96:54:f0:fe:69:82:db:fa:19:c2:8a:78:04:ca:5e:12:af:b1:
d8:4f:4e:a3:94:bb:33:c4:20:c3:d0:38:05:61:37:b9:65:20:
52:fb:1b:df:d2:8e:c9:1f:98:db:07:cb:f9:82:73:b5:15:fd:
f4:88:fb:74:c4:62:d1:28:7b:c0:1b:c8:75:15:a3:e7:01:8d:
e0:95:9f:4d:11:93:29:56:25:5f:2a:39:83:04:00:41:20:8b:
df:53:b6:0b:49:40:04:63:4e:97:9b:c1:fd:0b:83:1f:c4:21:
b2:8c:fd:2a:d8:67:b2:61:17:23:19:9f:ef:d8:96:2a:9f:47:
76:1c:0c:f6:af:16:a4:5c:57:2e:1d:24:5a:bc:cd:b9:21:ee:
fd:4a:1e:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+dobnbUrWDuStjjP4zhJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxN2M5MDY1NDY1M2FjMTUwMDI4NTYyYjMyNDMxNDkxYjUy
MTQ3ZDEwHhcNMjYwNjMwMTAwMTE3WhcNMjYwNzAxMTAwMTE3WjAzMTEwLwYDVQQD
Eyg5ZGM0MTUzZWIyM2ViMzIwYzE1NDhiMzUwYTY3NjJlZmUwZGExNjI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nGJd9A4aBdy0ONN+BlZIP6iSLBx
orHFQNF9rdVKyqrUYJLwfpTU0iZfDv64MjGF6+k7wLvSPl75NanP5UwVVBM4SXJd
zeYtnRU0ZcwAMsIXqjcg+kYLkVr74TqpHKoMVrVw1d/ltK/2ldTxQ/BiMrTgs8BE
Rc7ciVH0XhF5s8a1osOmy42t6FC+66gVSIQW2r8LJoCluVNyxcr35ObO9ON2aQFQ
wBt90LjXs64mE9+yUayWQwFajDsMo6e+hWTHhs+UZzdXN/16PJGo0Pl+amnPcrez
Qgg/2kdmdfsrUt5cjceq5nKiqHDHGz5knSwECNNf6qmm92MLx8K3CzVaiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ3EFT6yPrMgwVSLNQpnYu/g2hYpMB8GA1UdIwQY
MBaAFAF8kGVGU6wVAChWKzJDFJG1IUfRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8zNWI3ZTUtODg2NC00NzU5LWJiODYt
NzAxM2E2YzQzOTg1LzEvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8zNWI3ZTUtODg2NC00NzU5LWJiODYtNzAxM2E2YzQzOTg1
LzEvQVh5UVpVWlRyQlVBS0ZZck1rTVVrYlVoUjlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb/ysMo3z
avqVVovVsGq7e81BpLN4Adkae7aCdL7Ccazc/qIbvG7GHgT2UTdU1mNSS8+Af0TY
HU1QtI9ehrR1ZN4O5LWfgtnWW7urtn7Ezq1/JQndQbf9PBNZIlseo21+EINzrj8p
BtL94t+ollTw/mmC2/oZwop4BMpeEq+x2E9Oo5S7M8Qgw9A4BWE3uWUgUvsb39KO
yR+Y2wfL+YJztRX99Ij7dMRi0Sh7wBvIdRWj5wGN4JWfTRGTKVYlXyo5gwQAQSCL
31O2C0lABGNOl5vB/QuDH8Qhsoz9KthnsmEXIxmf79iWKp9HdhwM9q8WpFxXLh0k
WrzNuSHu/Uoe/A==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:10 2026 by rpki-client