Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
File: 1dzeISXwQFitT0eOF4iEFCzy2tA.mft (raw, json)
Hash identifier: ESUiYDy/CeG7g3/j2Z3lsG7yPFQySp49+d/J4wKpBZ8=
Subject key identifier: 14:1F:E9:A3:B7:6F:74:03:DD:32:DC:3D:A9:47:3A:01:89:52:20:CF
Authority key identifier: D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
Certificate issuer: /CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Certificate serial: 019F17F9C3BC86F1A9CA1A88301E551D4F15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
Manifest number: 1350
Signing time: Tue 30 Jun 2026 10:01:12 +0000
Manifest this update: Tue 30 Jun 2026 10:01:12 +0000
Manifest next update: Wed 01 Jul 2026 10:01:12 +0000
Files and hashes: 1: 1dzeISXwQFitT0eOF4iEFCzy2tA.crl (hash: HBW0BI9jUO6V4Pwm1YKf6W5rGJB+a2PCKatl6OAvfqA=)
2: 8BYDJuaf2CuIte9znhQTMnQNfzY.roa (hash: /nJhQIQ9VVW/Qtz2O6f+WJOXBH0IlvQwIRyYeoC0B4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:c3:bc:86:f1:a9:ca:1a:88:30:1e:55:1d:4f:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Validity
Not Before: Jun 30 10:01:12 2026 GMT
Not After : Jul 1 10:01:12 2026 GMT
Subject: CN=141fe9a3b76f7403dd32dc3da9473a01895220cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e1:a9:9e:fb:e5:e6:d3:a5:84:30:95:57:f3:
a1:c1:a4:d0:a8:f0:1a:f4:4e:61:e4:fc:b3:10:ed:
c3:62:ab:ef:3d:f9:a7:ab:09:8a:7f:a9:7e:a4:9d:
eb:bd:fb:ef:b7:9d:95:05:ed:63:9d:bf:f2:c1:fe:
2f:95:75:4b:d9:e3:ca:ea:3e:40:46:b1:65:68:5d:
2e:7b:49:74:a6:27:fb:e9:74:ff:70:49:e2:e0:d7:
98:62:3a:90:02:77:1f:fd:fc:de:74:89:7e:88:a1:
24:d7:75:7e:dc:cc:f6:87:d3:d8:51:9f:81:07:69:
d1:44:ac:f7:9b:7a:77:0e:a3:95:6a:52:8d:84:fa:
6d:d1:d8:0a:7d:c5:65:fd:16:0b:dd:87:8d:ce:f0:
9e:e4:36:ec:48:f3:e1:87:18:c3:ce:de:c1:ba:b4:
c0:e6:82:4e:fd:6a:90:fc:23:2b:cd:37:73:e0:d2:
58:ee:57:2b:a8:5e:d9:20:9b:c0:48:bc:f4:89:a1:
94:37:39:dd:ef:30:41:cc:ac:1a:6c:86:94:e1:96:
97:51:bd:ac:4b:ba:b8:86:d0:80:84:5d:45:96:13:
2d:ca:ef:55:cb:cd:c1:2a:c2:1d:fa:d0:d5:96:34:
8c:ac:59:67:de:ec:47:72:7b:e1:4f:de:d2:f9:11:
79:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:1F:E9:A3:B7:6F:74:03:DD:32:DC:3D:A9:47:3A:01:89:52:20:CF
X509v3 Authority Key Identifier:
keyid:D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:1f:38:8c:58:80:f0:54:64:83:0e:ac:13:19:a8:d4:b4:5a:
25:64:61:f2:d9:ba:57:96:b8:c4:d4:49:84:b2:6b:3d:73:f0:
25:80:34:93:a8:0f:f4:17:9d:2a:35:07:5f:36:c2:8f:e4:f6:
12:b1:1e:4d:43:88:28:7c:f2:f0:d2:cc:ec:fe:79:e4:7c:a9:
03:3e:30:c9:42:13:bc:df:f8:8a:fb:61:87:97:5f:18:54:c1:
38:e6:df:27:0f:91:c5:09:4c:6b:4c:49:fc:8e:d0:39:b8:69:
2f:b0:2a:f6:27:8a:a3:ff:43:9b:20:3c:f1:b1:09:c5:f0:e3:
9a:c6:85:20:13:9b:70:f0:94:19:e6:f9:3b:91:46:d6:dd:39:
78:aa:85:59:fe:65:21:46:d3:7f:09:6e:c6:64:b7:fa:41:28:
2d:a1:33:96:64:f8:82:f6:01:c9:a2:c7:59:a2:35:49:1a:fd:
f5:5f:b5:4b:ee:08:84:9f:fd:41:54:51:61:34:2f:ca:29:f0:
6f:8e:68:a7:5c:99:45:b7:e3:e5:7a:ef:8b:68:aa:4b:f8:44:
3b:24:99:36:9b:b6:2d:05:c3:13:82:1c:49:65:7f:f0:65:55:
5f:81:da:28:e0:0a:8f:e0:23:38:74:43:6a:0e:a3:1e:56:0d:
a0:b5:4f:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+cO8hvGpyhqIMB5VHU8VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1ZGNkZTIxMjVmMDQwNThhZDRmNDc4ZTE3ODg4NDE0MmNm
MmRhZDAwHhcNMjYwNjMwMTAwMTEyWhcNMjYwNzAxMTAwMTEyWjAzMTEwLwYDVQQD
EygxNDFmZTlhM2I3NmY3NDAzZGQzMmRjM2RhOTQ3M2EwMTg5NTIyMGNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+Gpnvvl5tOlhDCVV/OhwaTQqPAa
9E5h5PyzEO3DYqvvPfmnqwmKf6l+pJ3rvfvvt52VBe1jnb/ywf4vlXVL2ePK6j5A
RrFlaF0ue0l0pif76XT/cEni4NeYYjqQAncf/fzedIl+iKEk13V+3Mz2h9PYUZ+B
B2nRRKz3m3p3DqOValKNhPpt0dgKfcVl/RYL3YeNzvCe5DbsSPPhhxjDzt7BurTA
5oJO/WqQ/CMrzTdz4NJY7lcrqF7ZIJvASLz0iaGUNznd7zBBzKwabIaU4ZaXUb2s
S7q4htCAhF1FlhMtyu9Vy83BKsId+tDVljSMrFln3uxHcnvhT97S+RF5vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBQf6aO3b3QD3TLcPalHOgGJUiDPMB8GA1UdIwQY
MBaAFNXc3iEl8EBYrU9HjheIhBQs8trQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy81OTE1YzgtMDAzYy00ZDk4LTgyNDMt
Y2ZkYWRiZGM0OGVjLzEvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy81OTE1YzgtMDAzYy00ZDk4LTgyNDMtY2ZkYWRiZGM0OGVj
LzEvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANR84jFiA
8FRkgw6sExmo1LRaJWRh8tm6V5a4xNRJhLJrPXPwJYA0k6gP9BedKjUHXzbCj+T2
ErEeTUOIKHzy8NLM7P555HypAz4wyUITvN/4ivthh5dfGFTBOObfJw+RxQlMa0xJ
/I7QObhpL7Aq9ieKo/9DmyA88bEJxfDjmsaFIBObcPCUGeb5O5FG1t05eKqFWf5l
IUbTfwluxmS3+kEoLaEzlmT4gvYByaLHWaI1SRr99V+1S+4IhJ/9QVRRYTQvyinw
b45op1yZRbfj5Xrvi2iqS/hEOySZNpu2LQXDE4IcSWV/8GVVX4HaKOAKj+AjOHRD
ag6jHlYNoLVPhA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:04 2026 by rpki-client