Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json)
Hash identifier: YI4VJQzBYh1kO8R1LxLFl/WpFD6WEC+sCq63tBnO3wU=
Subject key identifier: 00:4C:E4:EC:00:BA:BE:0F:9D:84:2C:90:28:BA:A7:BB:92:8B:CE:95
Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Certificate serial: 019E1C0FE757CA3699DCE49345F30470ABDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
Manifest number: 056C
Signing time: Tue 12 May 2026 12:01:04 +0000
Manifest this update: Tue 12 May 2026 12:01:04 +0000
Manifest next update: Wed 13 May 2026 12:01:04 +0000
Files and hashes: 1: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: MWowM1AiZ319Q8U2cX1NgDpKBHLyq0Sy22Ms5KEy1Ts=)
2: 67fn5GTCeyuZQBLDAbthDHukFBc.roa (hash: mGoog7qE1SUu5tq0Qw3ikg4XEdKFRtMMptWXJMMEWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:e7:57:ca:36:99:dc:e4:93:45:f3:04:70:ab:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Validity
Not Before: May 12 12:01:04 2026 GMT
Not After : May 13 12:01:04 2026 GMT
Subject: CN=004ce4ec00babe0f9d842c9028baa7bb928bce95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7f:6a:97:bf:6b:b9:c9:c7:92:a4:91:7c:18:
9d:98:4c:9d:1c:3f:1a:7b:30:6d:94:c9:37:af:90:
e1:41:df:d9:11:2a:b5:2e:51:eb:83:05:32:d7:f3:
be:3d:c0:6e:e0:36:27:16:e6:88:c7:ca:ec:11:90:
a6:62:39:a4:17:95:96:cc:c9:93:79:92:a7:17:df:
91:d9:dd:25:99:6f:0f:53:53:b5:e1:c0:f4:36:d5:
4f:4a:5f:62:9d:09:2a:ea:0f:2a:64:35:67:4e:70:
65:1c:9b:83:f6:41:36:79:33:df:e3:dc:9f:d0:fc:
9b:b1:6b:16:c8:f2:19:65:ef:dc:2b:32:52:a7:f3:
99:4f:d2:3c:9d:a1:4a:99:ef:17:9e:cf:43:df:45:
38:3b:fe:41:78:c8:2d:a5:20:cd:b4:b6:9a:c0:af:
07:31:df:a1:e9:29:fe:07:2a:a2:a7:d1:8f:9a:c7:
45:03:dc:e7:3d:52:9d:94:9e:17:17:11:7b:56:7c:
60:f8:6f:ce:a6:10:2a:b5:e6:d4:89:6c:d5:19:7c:
95:1b:1d:76:3b:7a:bf:0d:7f:a8:94:22:ad:77:38:
53:72:4a:af:37:b3:e6:c7:64:a4:e2:ba:92:c7:4b:
66:d2:c9:7d:d9:07:4b:0c:fd:af:a8:b3:72:06:09:
d9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4C:E4:EC:00:BA:BE:0F:9D:84:2C:90:28:BA:A7:BB:92:8B:CE:95
X509v3 Authority Key Identifier:
keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:74:c1:1b:3e:a6:6a:64:78:b2:42:14:1c:41:c6:d6:d8:69:
d7:17:17:d7:c8:0c:99:53:ea:2b:ad:13:4f:e6:a2:02:5c:a7:
21:be:07:89:03:39:e5:7f:66:19:50:0a:f9:00:92:36:f6:86:
c3:7c:f9:22:4e:a3:41:9b:58:39:9f:bd:18:ed:4c:12:10:c0:
6b:c7:e4:26:b3:9c:22:df:19:24:bc:c5:94:c3:59:bb:2c:21:
68:b6:65:26:e3:bb:4a:80:99:7d:97:17:98:d0:f2:52:67:80:
8c:c9:79:65:a8:7f:3c:fd:eb:73:1e:4e:de:95:2d:c9:d3:26:
78:df:d2:8a:b6:bd:55:05:a0:4c:7c:a6:5c:60:c7:27:40:d8:
d3:5d:28:03:5c:4e:5a:c9:6d:95:6e:e2:b9:3d:3d:5d:59:6b:
f4:90:63:13:06:dd:1d:28:30:45:0f:30:05:f2:c7:fe:54:1d:
ca:f7:5e:d9:15:5a:a3:5c:96:e2:c0:58:20:f9:9a:6d:0c:88:
b4:80:2c:78:57:fd:0e:99:e6:2d:bd:2c:d8:0d:50:1d:a7:7b:
c8:e0:fb:e5:77:ef:91:40:ca:0e:8e:ec:6f:b4:89:7c:6a:a7:
cc:57:e1:60:9a:e1:f3:48:97:71:97:d0:a7:b0:54:0a:95:0b:
64:e1:dc:9f
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZ4cD+dXyjaZ3OSTRfMEcKveMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5ODY2OWQzMWExNGRiZGM1MDc3MTU5Y2YwYTY1MzUzYmZi
ZmEyMGEwHhcNMjYwNTEyMTIwMTA0WhcNMjYwNTEzMTIwMTA0WjAzMTEwLwYDVQQD
EygwMDRjZTRlYzAwYmFiZTBmOWQ4NDJjOTAyOGJhYTdiYjkyOGJjZTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoH9ql79rucnHkqSRfBidmEydHD8a
ezBtlMk3r5DhQd/ZESq1LlHrgwUy1/O+PcBu4DYnFuaIx8rsEZCmYjmkF5WWzMmT
eZKnF9+R2d0lmW8PU1O14cD0NtVPSl9inQkq6g8qZDVnTnBlHJuD9kE2eTPf49yf
0PybsWsWyPIZZe/cKzJSp/OZT9I8naFKme8Xns9D30U4O/5BeMgtpSDNtLaawK8H
Md+h6Sn+Byqip9GPmsdFA9znPVKdlJ4XFxF7Vnxg+G/OphAqtebUiWzVGXyVGx12
O3q/DX+olCKtdzhTckqvN7Pmx2Sk4rqSx0tm0sl92QdLDP2vqLNyBgnZjwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFABM5OwAur4PnYQskCi6p7uSi86VMB8GA1UdIwQY
MBaAFPmGadMaFNvcUHcVnPCmU1O/v6IKMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1ZWnAweG9VMjl4UWR4V2M4S1pUVTctX29nby5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvMmI0MTdkLTI4NjktNDExZi1hZWRh
LTRhMDViYWM1MjY1Zi8xLzEtWVpwMHhvVTI5eFFkeFdjOEtaVFU3LV9vZ28ubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzA3LzJiNDE3ZC0yODY5LTQxMWYtYWVkYS00YTA1YmFjNTI2
NWYvMS8xLVlacDB4b1UyOXhRZHhXYzhLWlRVNy1fb2dvLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwHTB
Gz6mamR4skIUHEHG1thp1xcX18gMmVPqK60TT+aiAlynIb4HiQM55X9mGVAK+QCS
NvaGw3z5Ik6jQZtYOZ+9GO1MEhDAa8fkJrOcIt8ZJLzFlMNZuywhaLZlJuO7SoCZ
fZcXmNDyUmeAjMl5Zah/PP3rcx5O3pUtydMmeN/Sira9VQWgTHymXGDHJ0DY010o
A1xOWsltlW7iuT09XVlr9JBjEwbdHSgwRQ8wBfLH/lQdyvde2RVao1yW4sBYIPma
bQyItIAseFf9DpnmLb0s2A1QHad7yOD75XfvkUDKDo7sb7SJfGqnzFfhYJrh80iX
cZfQp7BUCpULZOHcnw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:15:19 2026 by rpki-client