Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
File: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft (raw, json)
Hash identifier: KEnstBydW8GujCa45Jlx0yuxw6uPSKVqpmdp4vGZelY=
Subject key identifier: 35:D5:E1:76:4B:F7:F1:86:84:81:2F:6E:64:96:2E:31:24:8D:7C:9A
Authority key identifier: D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
Certificate issuer: /CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Certificate serial: 019EB87C5F6645D722CD3FF01D82B708B002
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 21:00:18 +0000
Manifest this update: Thu 11 Jun 2026 21:00:18 +0000
Manifest next update: Fri 12 Jun 2026 21:00:18 +0000
Files and hashes: 1: 1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl (hash: ESk8NDybKUTUaEVs+pmyfQPu4cZPDvOahjwTVwOWHkw=)
2: b15waVmeZUiAPXdSgALdQ8K_I1k.roa (hash: 8OOWK/04HtqvAlybr5ZST2AvUlB+dJIHZXLz3leFYTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:5f:66:45:d7:22:cd:3f:f0:1d:82:b7:08:b0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7367fc24d004f71dd2aef03f9cb4f2e3f9086aa
Validity
Not Before: Jun 11 21:00:18 2026 GMT
Not After : Jun 12 21:00:18 2026 GMT
Subject: CN=35d5e1764bf7f18684812f6e64962e31248d7c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:73:cc:f0:50:41:99:27:27:45:25:53:41:fa:
94:88:e8:a8:16:73:e8:4a:b6:2e:b2:c4:a7:07:70:
fd:22:71:6e:4e:24:76:c9:fb:26:08:0c:26:19:82:
77:12:23:8e:46:b5:b8:26:48:38:46:68:5d:16:20:
bb:40:5f:dc:cc:d8:5d:35:16:a8:22:b0:42:82:d2:
27:d1:75:67:2b:2a:dc:86:3a:39:1e:ea:53:f9:51:
3c:0a:d6:b2:47:f8:83:6d:6b:9f:55:7e:b7:cc:16:
7b:2c:c3:da:a7:ea:ec:77:31:73:aa:43:bb:bb:12:
a0:c6:97:e6:e1:8b:a0:90:dc:d1:7b:54:05:2c:88:
fa:df:5c:05:86:3d:2b:41:85:2b:04:92:25:55:53:
67:12:be:98:9e:c2:03:ab:33:ce:6d:5a:55:75:15:
6a:05:b8:83:93:a0:b1:44:71:1f:f8:35:c7:15:d3:
75:46:38:d4:b4:fe:40:fb:c2:10:52:eb:1f:92:ea:
5f:6c:a2:a8:32:4b:00:03:a3:5b:c1:88:01:87:0d:
35:e6:c6:b3:76:ba:cd:15:db:7d:8b:9e:10:9a:f2:
2b:1e:af:a6:85:eb:2f:fb:6b:ae:b9:54:4b:77:7d:
4d:1a:8e:fc:a3:b5:64:c2:9c:85:85:8d:2c:ea:49:
9a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D5:E1:76:4B:F7:F1:86:84:81:2F:6E:64:96:2E:31:24:8D:7C:9A
X509v3 Authority Key Identifier:
keyid:D7:36:7F:C2:4D:00:4F:71:DD:2A:EF:03:F9:CB:4F:2E:3F:90:86:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d8c6b8-d14a-47d9-a054-b9c794e03cba/1/1zZ_wk0AT3HdKu8D-ctPLj-Qhqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:83:e5:fe:8d:aa:cb:ad:1a:6a:2f:86:31:55:0e:bd:33:f8:
9c:ee:26:87:e5:67:50:be:86:ef:cd:62:ee:59:70:6d:ef:af:
57:16:64:c0:41:29:be:92:61:44:69:db:aa:2b:a2:e6:77:2b:
57:0d:ca:f4:bc:87:89:aa:6a:c5:ef:db:93:7c:ce:80:85:00:
d0:d5:64:ff:d8:86:6f:7b:08:f1:8c:ae:64:63:34:b2:96:18:
27:7b:f5:99:c4:0f:b7:29:22:b5:92:ba:52:e0:f3:06:92:e8:
0d:2f:fb:1a:52:b9:01:6b:f2:e7:c8:e2:82:28:d2:c5:d3:eb:
8d:de:40:9a:d7:94:2c:2d:54:52:b1:38:4a:16:d9:c2:db:d5:
e9:f9:69:98:08:87:e1:17:21:78:ce:4d:75:00:cc:66:b7:2d:
0b:53:73:eb:90:28:7d:79:9a:09:8b:da:20:c4:01:9d:b3:b5:
e9:64:34:e6:a5:0b:59:14:c7:dd:9b:4a:72:48:33:19:04:48:
03:8d:aa:62:df:0c:ed:8e:f2:06:de:2b:b2:bc:a7:11:d2:dc:
52:50:66:a7:d2:b2:fb:97:b4:42:41:98:e9:1a:f1:74:5e:af:
7e:d1:99:5c:73:79:06:0c:76:dd:25:b0:ba:44:69:47:02:36:
5b:25:69:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64fF9mRdcizT/wHYK3CLACMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3MzY3ZmMyNGQwMDRmNzFkZDJhZWYwM2Y5Y2I0ZjJlM2Y5
MDg2YWEwHhcNMjYwNjExMjEwMDE4WhcNMjYwNjEyMjEwMDE4WjAzMTEwLwYDVQQD
EygzNWQ1ZTE3NjRiZjdmMTg2ODQ4MTJmNmU2NDk2MmUzMTI0OGQ3YzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHPM8FBBmScnRSVTQfqUiOioFnPo
SrYussSnB3D9InFuTiR2yfsmCAwmGYJ3EiOORrW4Jkg4RmhdFiC7QF/czNhdNRao
IrBCgtIn0XVnKyrchjo5HupT+VE8CtayR/iDbWufVX63zBZ7LMPap+rsdzFzqkO7
uxKgxpfm4YugkNzRe1QFLIj631wFhj0rQYUrBJIlVVNnEr6YnsIDqzPObVpVdRVq
BbiDk6CxRHEf+DXHFdN1RjjUtP5A+8IQUusfkupfbKKoMksAA6NbwYgBhw015saz
drrNFdt9i54QmvIrHq+mhesv+2uuuVRLd31NGo78o7VkwpyFhY0s6kmapwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDXV4XZL9/GGhIEvbmSWLjEkjXyaMB8GA1UdIwQY
MBaAFNc2f8JNAE9x3SrvA/nLTy4/kIaqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXpaX3drMEFUM0hkS3U4RC1jdFBMai1RaHFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kOGM2YjgtZDE0YS00N2Q5LWEwNTQt
YjljNzk0ZTAzY2JhLzEvMXpaX3drMEFUM0hkS3U4RC1jdFBMai1RaHFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kOGM2YjgtZDE0YS00N2Q5LWEwNTQtYjljNzk0ZTAzY2Jh
LzEvMXpaX3drMEFUM0hkS3U4RC1jdFBMai1RaHFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfYPl/o2q
y60aai+GMVUOvTP4nO4mh+VnUL6G781i7llwbe+vVxZkwEEpvpJhRGnbqiui5ncr
Vw3K9LyHiapqxe/bk3zOgIUA0NVk/9iGb3sI8YyuZGM0spYYJ3v1mcQPtykitZK6
UuDzBpLoDS/7GlK5AWvy58jigijSxdPrjd5AmteULC1UUrE4ShbZwtvV6flpmAiH
4RcheM5NdQDMZrctC1Nz65AofXmaCYvaIMQBnbO16WQ05qULWRTH3ZtKckgzGQRI
A42qYt8M7Y7yBt4rsrynEdLcUlBmp9Ky+5e0QkGY6RrxdF6vftGZXHN5Bgx23SWw
ukRpRwI2WyVpbQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 05:19:26 2026 by rpki-client