Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
File: cdiwl1czMSbftYNIDqji09NGwI0.mft (raw, json)
Hash identifier: XNbKyhXs2x5iioLzFfPsSW7p2G63U0PgEX5aSwSo/PQ=
Subject key identifier: D9:B4:43:5A:23:C7:62:01:66:49:FC:36:90:3B:EB:D1:37:41:6F:BC
Authority key identifier: 71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D
Certificate issuer: /CN=71d8b09757333126dfb583480ea8e2d3d346c08d
Certificate serial: 019E314E9C2DAE13A97DFC64C369AB350209
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
Manifest number: 0228
Signing time: Sat 16 May 2026 15:01:35 +0000
Manifest this update: Sat 16 May 2026 15:01:35 +0000
Manifest next update: Sun 17 May 2026 15:01:35 +0000
Files and hashes: 1: cdiwl1czMSbftYNIDqji09NGwI0.crl (hash: EZ4F97tovNhqFc0hN1GCND4hb08UUsNGIl5/KnUz/b0=)
2: d7QLV60EzdcK6Z9SHb-OI9Vui7M.roa (hash: rchiT/bvXuEanUa+M3WmCKgTEc1BUzo1gca2cFJPRLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:9c:2d:ae:13:a9:7d:fc:64:c3:69:ab:35:02:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d8b09757333126dfb583480ea8e2d3d346c08d
Validity
Not Before: May 16 15:01:35 2026 GMT
Not After : May 17 15:01:35 2026 GMT
Subject: CN=d9b4435a23c762016649fc36903bebd137416fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:59:90:2d:9d:82:1d:9c:4e:59:79:df:ce:a5:
55:d5:87:81:6a:66:c4:43:95:83:31:ea:3c:a5:5f:
dc:81:3f:52:0b:44:c0:9b:81:8f:db:bd:ea:44:cd:
fe:7d:b1:ee:72:e1:1f:32:c1:9d:29:e1:05:7b:86:
bc:61:a8:2b:43:c9:db:27:df:98:98:fe:57:c2:fd:
dd:4c:5b:8a:14:7b:94:7a:87:ac:84:78:db:aa:33:
2a:54:20:fd:ac:ad:e6:68:6f:d6:78:53:1b:ba:b4:
0b:56:f1:f4:d4:4c:c6:4a:69:1a:69:29:71:b8:c1:
26:eb:c2:88:0a:76:d6:97:30:e5:b2:24:83:7b:a1:
83:57:31:a0:6f:8b:a2:4b:e9:3c:03:8a:b6:43:38:
dd:ee:e7:c2:8a:4e:bf:e8:4b:7b:ea:38:79:48:ee:
23:e1:65:b4:f6:1b:88:9a:98:8c:fc:fd:ee:37:00:
fb:cc:95:84:6a:23:1f:b0:30:22:8b:e6:07:bc:cb:
56:4b:53:58:8f:0b:de:b5:37:de:13:2a:f5:38:cb:
a4:f9:95:47:62:fa:27:53:30:89:0c:76:37:68:58:
72:0d:c9:43:bc:b5:24:0c:db:bd:87:c1:73:0d:4d:
11:06:6c:86:7e:40:3b:63:e6:87:92:d2:e6:7d:60:
d4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B4:43:5A:23:C7:62:01:66:49:FC:36:90:3B:EB:D1:37:41:6F:BC
X509v3 Authority Key Identifier:
keyid:71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:cc:6a:63:49:e8:6b:64:70:4f:ac:a1:bb:37:22:ca:ed:00:
62:46:c3:07:e0:b0:30:07:26:29:3b:99:67:0b:5b:52:2e:0d:
ed:21:d2:83:7d:01:4e:fd:93:cf:7e:af:73:fa:07:91:47:0f:
de:2e:e0:97:93:da:35:f6:cf:ae:47:78:b7:16:fa:2a:81:27:
4a:46:3d:3e:73:81:9a:0a:3b:f5:ab:20:1a:52:3d:46:c3:16:
e8:cc:11:a8:bc:c0:8d:2f:d1:28:7d:29:64:09:f1:c0:21:44:
7d:ce:91:14:54:4b:f4:b0:7f:1d:04:5d:81:cb:79:58:06:49:
f1:61:9e:06:f7:10:30:3d:56:60:e4:64:fc:9b:12:00:15:74:
ea:e6:d7:cb:3b:43:4f:f0:ed:54:46:c2:4e:61:51:95:b7:4c:
b8:69:eb:5c:2e:73:60:59:8a:78:ee:97:56:0b:ad:a3:b3:65:
79:16:41:3d:58:0c:19:73:56:04:80:55:77:38:e3:80:25:ff:
ef:76:75:51:aa:0c:9f:ec:f6:16:24:51:06:b1:23:c6:0b:2e:
b2:e6:1e:30:93:50:dc:52:27:e1:62:64:97:39:0e:29:8e:87:
78:2a:d8:bd:a5:a9:55:4b:c0:59:1c:df:52:f3:a8:23:74:e6:
e0:8b:0c:b8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xTpwtrhOpffxkw2mrNQIJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZDhiMDk3NTczMzMxMjZkZmI1ODM0ODBlYThlMmQzZDM0
NmMwOGQwHhcNMjYwNTE2MTUwMTM1WhcNMjYwNTE3MTUwMTM1WjAzMTEwLwYDVQQD
EyhkOWI0NDM1YTIzYzc2MjAxNjY0OWZjMzY5MDNiZWJkMTM3NDE2ZmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlmQLZ2CHZxOWXnfzqVV1YeBambE
Q5WDMeo8pV/cgT9SC0TAm4GP273qRM3+fbHucuEfMsGdKeEFe4a8YagrQ8nbJ9+Y
mP5Xwv3dTFuKFHuUeoeshHjbqjMqVCD9rK3maG/WeFMburQLVvH01EzGSmkaaSlx
uMEm68KICnbWlzDlsiSDe6GDVzGgb4uiS+k8A4q2Qzjd7ufCik6/6Et76jh5SO4j
4WW09huImpiM/P3uNwD7zJWEaiMfsDAii+YHvMtWS1NYjwvetTfeEyr1OMuk+ZVH
YvonUzCJDHY3aFhyDclDvLUkDNu9h8FzDU0RBmyGfkA7Y+aHktLmfWDUQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNm0Q1ojx2IBZkn8NpA769E3QW+8MB8GA1UdIwQY
MBaAFHHYsJdXMzEm37WDSA6o4tPTRsCNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy82Yjk2MjYtZmIxYS00NDVlLWI5NWEt
YjAwMmYzNWJlNzM5LzEvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy82Yjk2MjYtZmIxYS00NDVlLWI5NWEtYjAwMmYzNWJlNzM5
LzEvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANMxqY0no
a2RwT6yhuzciyu0AYkbDB+CwMAcmKTuZZwtbUi4N7SHSg30BTv2Tz36vc/oHkUcP
3i7gl5PaNfbPrkd4txb6KoEnSkY9PnOBmgo79asgGlI9RsMW6MwRqLzAjS/RKH0p
ZAnxwCFEfc6RFFRL9LB/HQRdgct5WAZJ8WGeBvcQMD1WYORk/JsSABV06ubXyztD
T/DtVEbCTmFRlbdMuGnrXC5zYFmKeO6XVguto7NleRZBPVgMGXNWBIBVdzjjgCX/
73Z1UaoMn+z2FiRRBrEjxgsusuYeMJNQ3FIn4WJklzkOKY6HeCrYvaWpVUvAWRzf
UvOoI3Tm4IsMuA==
-----END CERTIFICATE-----
Generated at Sat May 16 22:01:11 2026 by rpki-client