Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
File: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json)
Hash identifier: v7sdQ0tYwdNOQxi2iD3M4v1zlLYkxMSorDdmIcLPkJ0=
Subject key identifier: 26:6E:3A:16:08:2D:59:49:A4:84:68:45:2F:3E:95:16:E9:C4:53:8D
Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
Certificate issuer: /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Certificate serial: 019E300507110AFF07DBA08A4916DD97BDC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
Manifest number: 0627
Signing time: Sat 16 May 2026 09:01:36 +0000
Manifest this update: Sat 16 May 2026 09:01:36 +0000
Manifest next update: Sun 17 May 2026 09:01:36 +0000
Files and hashes: 1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: T8JWDcuk2biLDvK41JxBfgXhK71z35AIzD7gdvN5M7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:07:11:0a:ff:07:db:a0:8a:49:16:dd:97:bd:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Validity
Not Before: May 16 09:01:36 2026 GMT
Not After : May 17 09:01:36 2026 GMT
Subject: CN=266e3a16082d5949a48468452f3e9516e9c4538d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:4a:22:21:ed:e1:dd:05:c8:a0:82:1b:49:0f:
10:06:c3:ff:50:7b:df:d4:95:9f:de:e8:8c:d4:82:
c6:b7:8d:65:27:9e:e8:dd:96:6c:3a:b1:98:cd:ad:
d6:7b:d9:b6:7e:00:6a:32:47:4a:42:f8:3d:4d:bd:
50:5c:b8:c3:4f:60:39:09:9e:a5:49:42:7c:46:50:
70:6d:2d:08:9c:bc:db:73:13:3a:d4:95:30:60:b1:
90:61:b5:a8:5a:fe:db:2b:ed:d2:0d:77:7b:fa:62:
f6:88:a5:95:df:4c:fa:7d:29:27:a0:29:8f:6a:b2:
84:e9:8f:c0:21:f9:0a:eb:c7:3f:e8:ba:43:5c:b7:
91:ac:7a:bf:11:69:98:3f:23:07:5f:a2:80:5e:ce:
ee:c5:7d:83:24:84:8e:c9:3d:c7:2c:bb:16:aa:8e:
40:de:48:40:0f:bb:52:6c:0f:0a:83:84:b4:af:0e:
af:0d:a0:80:21:84:c5:08:50:34:54:f2:3f:7e:69:
c8:d3:ad:c0:34:41:24:e4:a6:2c:0a:3c:91:a5:79:
e1:40:19:9c:ba:cc:ac:2e:01:f6:f8:7f:5f:8e:05:
71:39:97:34:10:fc:d5:65:a2:c2:93:02:51:32:ce:
f9:ce:c0:f7:94:b9:95:df:a5:92:25:1a:c7:b6:b1:
81:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:6E:3A:16:08:2D:59:49:A4:84:68:45:2F:3E:95:16:E9:C4:53:8D
X509v3 Authority Key Identifier:
keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:56:a0:27:92:b7:ff:69:f9:83:fb:11:ca:8f:8c:d0:a9:68:
d3:d4:96:18:f7:c0:0d:6c:17:f5:79:cf:26:2c:65:b7:4e:4d:
e8:6b:e1:8c:4b:13:69:db:0f:62:34:a4:aa:d7:15:d7:14:2f:
d0:2b:b9:db:40:05:b2:97:44:91:9c:e1:09:bf:5f:4f:c9:d4:
b3:8b:c6:ae:90:b8:ad:07:8e:65:30:d6:af:b0:ff:ff:dc:d1:
f6:76:4d:0f:b8:6a:98:5d:67:59:aa:26:39:5d:40:41:7a:a7:
d4:13:88:68:22:61:5f:02:f2:e0:97:2d:4a:44:b9:94:1f:ef:
69:df:74:1b:e1:5e:6e:27:2e:f3:44:bb:73:7e:a7:bd:45:40:
bf:b1:e7:c6:0e:74:25:cf:a6:2d:06:ed:81:75:c1:f7:10:4e:
94:59:13:f4:ac:57:f5:6b:0c:97:72:cb:20:66:52:92:5f:60:
2b:78:25:61:92:37:97:80:55:19:88:ea:38:b3:40:78:30:01:
19:6f:a7:0d:5c:17:c5:02:aa:8d:ab:16:db:4c:30:72:dd:80:
81:db:3c:df:de:20:2d:ae:b7:04:5a:dc:b2:9c:74:ce:1b:93:
3f:05:2e:74:98:c2:7e:7c:52:c4:37:cc:7a:f1:5d:92:67:c0:
e1:25:ef:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBQcRCv8H26CKSRbdl73BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MmNjNDAyNjdlMzU5MmUxYjUyZjBmMDA5NmNiMWYyZjBh
ZjE2N2QwHhcNMjYwNTE2MDkwMTM2WhcNMjYwNTE3MDkwMTM2WjAzMTEwLwYDVQQD
EygyNjZlM2ExNjA4MmQ1OTQ5YTQ4NDY4NDUyZjNlOTUxNmU5YzQ1MzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA70oiIe3h3QXIoIIbSQ8QBsP/UHvf
1JWf3uiM1ILGt41lJ57o3ZZsOrGYza3We9m2fgBqMkdKQvg9Tb1QXLjDT2A5CZ6l
SUJ8RlBwbS0InLzbcxM61JUwYLGQYbWoWv7bK+3SDXd7+mL2iKWV30z6fSknoCmP
arKE6Y/AIfkK68c/6LpDXLeRrHq/EWmYPyMHX6KAXs7uxX2DJISOyT3HLLsWqo5A
3khAD7tSbA8Kg4S0rw6vDaCAIYTFCFA0VPI/fmnI063ANEEk5KYsCjyRpXnhQBmc
usysLgH2+H9fjgVxOZc0EPzVZaLCkwJRMs75zsD3lLmV36WSJRrHtrGBcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCZuOhYILVlJpIRoRS8+lRbpxFONMB8GA1UdIwQY
MBaAFNQsxAJn41kuG1Lw8AlssfLwrxZ9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83MTM0NWQtMmYyZC00YjU5LTllNjct
MTZlMTMwODczN2IwLzEvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My83MTM0NWQtMmYyZC00YjU5LTllNjctMTZlMTMwODczN2Iw
LzEvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX1agJ5K3
/2n5g/sRyo+M0Klo09SWGPfADWwX9XnPJixlt05N6GvhjEsTadsPYjSkqtcV1xQv
0Cu520AFspdEkZzhCb9fT8nUs4vGrpC4rQeOZTDWr7D//9zR9nZND7hqmF1nWaom
OV1AQXqn1BOIaCJhXwLy4JctSkS5lB/vad90G+Febicu80S7c36nvUVAv7Hnxg50
Jc+mLQbtgXXB9xBOlFkT9KxX9WsMl3LLIGZSkl9gK3glYZI3l4BVGYjqOLNAeDAB
GW+nDVwXxQKqjasW20wwct2Agds8394gLa63BFrcspx0zhuTPwUudJjCfnxSxDfM
evFdkmfA4SXvUQ==
-----END CERTIFICATE-----
Generated at Sat May 16 17:56:01 2026 by rpki-client