Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
File: AIVd2JclbobaPL5plOlM4ulpryY.mft (raw, json)
Hash identifier: 3rm3mcYPX+K4StO9tILXnqCodYpe+qwhLNOvcLHwouk=
Subject key identifier: 50:0B:9F:FD:70:54:E6:6F:D4:55:2B:62:6C:4F:9A:7E:81:AF:13:F1
Authority key identifier: 00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
Certificate issuer: /CN=00855dd897256e86da3cbe6994e94ce2e969af26
Certificate serial: 019F17C31FCF353D4815B671ED29A7CD1D9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
Manifest number: 1986
Signing time: Tue 30 Jun 2026 09:01:31 +0000
Manifest this update: Tue 30 Jun 2026 09:01:31 +0000
Manifest next update: Wed 01 Jul 2026 09:01:31 +0000
Files and hashes: 1: AIVd2JclbobaPL5plOlM4ulpryY.crl (hash: SnB1STiRVztwjszect3WFv9A7qQjbgfsv2XBCBpPzdU=)
2: _ERGoNtkfCnC57fEn319xuy5MH0.roa (hash: Wq3TColJj1+ZOwaQJ2+Hu8QnMsklYvCOvDExQBnwEXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c3:1f:cf:35:3d:48:15:b6:71:ed:29:a7:cd:1d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00855dd897256e86da3cbe6994e94ce2e969af26
Validity
Not Before: Jun 30 09:01:31 2026 GMT
Not After : Jul 1 09:01:31 2026 GMT
Subject: CN=500b9ffd7054e66fd4552b626c4f9a7e81af13f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0a:58:96:82:16:9b:6a:4f:f9:91:b3:83:76:
d0:47:f7:21:89:c6:50:5d:3f:4c:5f:89:fb:af:26:
2b:b9:fb:1e:43:10:76:5c:6b:53:bf:cb:5d:96:13:
95:0a:47:63:0d:7a:2e:e0:a6:ef:21:a7:32:0a:3c:
55:05:dc:19:5c:54:a3:60:31:95:71:00:af:f8:05:
55:9e:56:8c:ee:82:ae:9d:4f:cf:5e:90:77:0f:9e:
af:bb:29:2e:f7:53:c2:48:e1:08:dd:b1:d5:d6:20:
a9:b1:fb:8b:94:99:6a:f3:b6:f5:f4:4c:21:18:67:
5f:df:72:93:77:2b:68:10:fa:6b:06:e4:41:18:7e:
d8:4d:37:20:9a:09:cb:50:97:11:07:93:18:e9:e9:
70:43:30:18:6f:ad:1a:2e:00:6f:73:cd:43:da:99:
91:ea:63:5e:35:02:f6:93:b3:5e:58:4a:e8:54:b8:
d1:fd:01:b7:77:e2:c1:44:54:fe:af:28:3e:6b:2b:
68:b1:01:95:39:4c:a8:a6:42:63:31:67:84:2f:b6:
db:c2:71:35:d8:cc:87:41:a5:d3:e9:c0:5b:64:ac:
63:1b:ef:3d:a2:36:62:50:fa:2a:19:2d:7e:94:32:
7f:d5:11:eb:2f:aa:df:7b:e6:09:49:ab:5d:22:08:
ec:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:0B:9F:FD:70:54:E6:6F:D4:55:2B:62:6C:4F:9A:7E:81:AF:13:F1
X509v3 Authority Key Identifier:
keyid:00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:3f:68:b8:d4:9f:c3:c7:b1:09:5c:cb:2f:16:25:18:e3:3c:
49:a8:14:74:7d:35:e0:80:d2:d5:bf:6b:1c:90:c9:95:6c:a5:
69:ba:10:6c:90:f5:5e:c1:6a:62:67:8d:9d:b7:99:24:1e:37:
d6:df:f1:d8:33:68:5e:32:a4:6f:9f:fd:83:7e:0b:6c:5b:c1:
43:23:ab:3a:8c:31:d4:94:fd:a3:c1:00:45:58:b2:4e:5c:c8:
dc:ce:33:04:25:34:ad:b1:d1:be:d6:a6:a6:a4:9a:f8:f3:e3:
0a:7b:55:6f:76:49:34:58:4f:e4:36:9c:84:8b:1a:f8:67:8a:
8f:9b:f7:95:33:5d:e7:77:1e:b1:62:05:28:89:5e:e0:59:34:
07:3b:f4:5f:63:2e:58:d2:3f:6e:7c:de:f9:4d:45:c7:7c:06:
37:c4:22:38:16:75:4b:b0:a9:24:e7:b8:eb:05:9b:db:fa:e4:
40:3d:be:95:3d:7b:ff:22:33:ae:e3:01:fd:1f:04:bd:87:91:
1d:4d:64:8a:80:26:e8:f5:8e:23:1e:80:a0:ba:30:af:e8:c7:
08:c3:cd:5b:b5:06:a3:f4:6d:da:2e:15:08:76:c3:fe:47:61:
9d:d3:09:e2:f8:c4:a6:9c:e5:14:f5:5c:bc:61:29:13:99:62:
47:6a:e6:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Xwx/PNT1IFbZx7SmnzR2fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwODU1ZGQ4OTcyNTZlODZkYTNjYmU2OTk0ZTk0Y2UyZTk2
OWFmMjYwHhcNMjYwNjMwMDkwMTMxWhcNMjYwNzAxMDkwMTMxWjAzMTEwLwYDVQQD
Eyg1MDBiOWZmZDcwNTRlNjZmZDQ1NTJiNjI2YzRmOWE3ZTgxYWYxM2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjQpYloIWm2pP+ZGzg3bQR/chicZQ
XT9MX4n7ryYrufseQxB2XGtTv8tdlhOVCkdjDXou4KbvIacyCjxVBdwZXFSjYDGV
cQCv+AVVnlaM7oKunU/PXpB3D56vuyku91PCSOEI3bHV1iCpsfuLlJlq87b19Ewh
GGdf33KTdytoEPprBuRBGH7YTTcgmgnLUJcRB5MY6elwQzAYb60aLgBvc81D2pmR
6mNeNQL2k7NeWEroVLjR/QG3d+LBRFT+ryg+aytosQGVOUyopkJjMWeEL7bbwnE1
2MyHQaXT6cBbZKxjG+89ojZiUPoqGS1+lDJ/1RHrL6rfe+YJSatdIgjsJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFALn/1wVOZv1FUrYmxPmn6BrxPxMB8GA1UdIwQY
MBaAFACFXdiXJW6G2jy+aZTpTOLpaa8mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUlWZDJKY2xib2JhUEw1cGxPbE00dWxwcnlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZmMzOTUtOThiYy00YWVkLTkzOWUt
ODg2ZjY2YmI2ZWU4LzEvQUlWZDJKY2xib2JhUEw1cGxPbE00dWxwcnlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC85ZmMzOTUtOThiYy00YWVkLTkzOWUtODg2ZjY2YmI2ZWU4
LzEvQUlWZDJKY2xib2JhUEw1cGxPbE00dWxwcnlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmj9ouNSf
w8exCVzLLxYlGOM8SagUdH014IDS1b9rHJDJlWylaboQbJD1XsFqYmeNnbeZJB43
1t/x2DNoXjKkb5/9g34LbFvBQyOrOowx1JT9o8EARViyTlzI3M4zBCU0rbHRvtam
pqSa+PPjCntVb3ZJNFhP5DachIsa+GeKj5v3lTNd53cesWIFKIle4Fk0Bzv0X2Mu
WNI/bnze+U1Fx3wGN8QiOBZ1S7CpJOe46wWb2/rkQD2+lT17/yIzruMB/R8EvYeR
HU1kioAm6PWOIx6AoLowr+jHCMPNW7UGo/Rt2i4VCHbD/kdhndMJ4vjEppzlFPVc
vGEpE5liR2rmZg==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:13:35 2026 by rpki-client