Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
File: CVAiiQS52-tHkqaXcn42qv2E0uk.mft (raw, json)
Hash identifier: H5zt0/jGgSo9ghbfPTepVIm2gRdQqUF7lxqM6+GnjO4=
Subject key identifier: 52:5D:05:E9:1A:11:87:1E:A8:A3:7E:E9:03:AD:BD:C0:7B:86:83:BD
Authority key identifier: 09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
Certificate issuer: /CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Certificate serial: 019E1CB4BCE5C8AF1AD74613DFF6827D8105
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
Manifest number: 1019
Signing time: Tue 12 May 2026 15:01:07 +0000
Manifest this update: Tue 12 May 2026 15:01:07 +0000
Manifest next update: Wed 13 May 2026 15:01:07 +0000
Files and hashes: 1: 0bE4aaGgdiJFJ50d4SWw_RJ5yog.roa (hash: pfh5kzcii4MpQVjtzuuE7xEsH7nvPkPrk2Vo7JxfSO8=)
2: CVAiiQS52-tHkqaXcn42qv2E0uk.crl (hash: qSsphlX3qyF/at4cVQdN1Jq50bFtzLdpzwzwZxobbGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:bc:e5:c8:af:1a:d7:46:13:df:f6:82:7d:81:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0950228904b9dbeb4792a697727e36aafd84d2e9
Validity
Not Before: May 12 15:01:07 2026 GMT
Not After : May 13 15:01:07 2026 GMT
Subject: CN=525d05e91a11871ea8a37ee903adbdc07b8683bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:48:7a:6e:12:d6:c7:6a:de:f8:4d:37:96:08:
41:0b:95:c7:08:fd:44:d6:7c:7a:12:4e:2c:ef:27:
45:1e:49:4a:3b:4e:07:de:fd:dd:81:5b:6e:34:f0:
6a:c0:25:2b:5c:ca:b8:75:51:f5:f3:6f:98:db:e2:
80:80:47:df:26:bd:26:8a:bc:63:61:da:9e:3c:c2:
0c:7a:7f:e2:bd:55:ee:80:9a:d7:d3:f0:27:92:95:
60:6a:dd:eb:f6:77:ae:d6:5b:fe:2e:e3:dd:7c:1b:
25:9a:32:be:27:f0:5f:ac:e3:e0:2a:d5:de:17:8c:
a9:67:e9:76:fe:ed:5d:9d:60:87:73:59:c7:28:01:
bf:41:cc:7a:17:a0:aa:af:19:57:20:61:dc:82:5e:
79:2a:90:d9:e4:be:fa:f8:fd:0c:36:4a:c9:20:8e:
76:6c:57:34:af:ac:11:ee:e9:43:e9:48:c1:28:86:
a1:9f:23:74:40:24:40:71:b2:cb:5e:93:d2:ff:a5:
79:87:02:03:a3:4c:07:86:fd:29:5f:39:90:65:5a:
fe:d0:fa:48:36:11:87:a8:4f:17:b3:6e:36:2b:af:
b3:ae:97:85:76:42:f4:2b:6d:06:4e:23:ce:ce:29:
d8:e6:5f:91:04:76:cc:b9:15:07:6e:d7:1d:e5:13:
b1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5D:05:E9:1A:11:87:1E:A8:A3:7E:E9:03:AD:BD:C0:7B:86:83:BD
X509v3 Authority Key Identifier:
keyid:09:50:22:89:04:B9:DB:EB:47:92:A6:97:72:7E:36:AA:FD:84:D2:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVAiiQS52-tHkqaXcn42qv2E0uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/64d910-945c-42e8-bb44-62821c2c299f/1/CVAiiQS52-tHkqaXcn42qv2E0uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:34:ee:de:dd:98:d5:65:ac:a5:cc:8b:99:e8:96:65:d9:00:
65:ea:33:9c:6c:af:8c:96:c3:ce:50:13:c8:08:82:34:cc:9a:
e5:a8:eb:b1:c9:87:60:9b:64:4a:59:85:77:e8:a6:88:7c:bf:
a8:aa:eb:54:18:77:bf:a2:d8:01:72:4a:a5:21:e6:20:f0:94:
8b:52:7a:65:91:61:5d:64:44:6e:5e:07:a8:91:8e:ce:ba:0c:
c0:5b:0a:ac:f2:27:cd:85:77:2a:1b:0e:2b:5d:f3:3a:c0:87:
03:a6:2f:c4:c2:bd:ef:cb:f4:cf:07:4a:8d:89:93:c5:7b:46:
a3:01:56:bd:60:8f:c6:15:b9:70:c8:02:e7:50:11:f5:4a:55:
f8:b3:a2:26:09:5d:98:96:d9:68:b4:6b:40:60:61:0b:c7:9e:
cd:a4:84:00:6a:e3:fa:94:3b:44:b6:04:32:cf:17:4f:5a:ca:
f3:46:80:c1:30:91:4c:fc:26:89:16:3c:83:d3:33:72:fc:aa:
21:b5:9c:2b:98:3e:b1:f4:22:66:ed:47:c9:64:e3:48:27:bc:
ed:dc:96:dc:b6:0f:cc:93:74:c4:63:a0:3f:45:f3:44:36:7d:
99:6b:fd:82:7b:6e:8f:dc:4e:bd:3a:27:bf:3f:63:d3:19:ac:
93:25:cf:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ctLzlyK8a10YT3/aCfYEFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NTAyMjg5MDRiOWRiZWI0NzkyYTY5NzcyN2UzNmFhZmQ4
NGQyZTkwHhcNMjYwNTEyMTUwMTA3WhcNMjYwNTEzMTUwMTA3WjAzMTEwLwYDVQQD
Eyg1MjVkMDVlOTFhMTE4NzFlYThhMzdlZTkwM2FkYmRjMDdiODY4M2JkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEh6bhLWx2re+E03lghBC5XHCP1E
1nx6Ek4s7ydFHklKO04H3v3dgVtuNPBqwCUrXMq4dVH182+Y2+KAgEffJr0mirxj
YdqePMIMen/ivVXugJrX0/AnkpVgat3r9neu1lv+LuPdfBslmjK+J/BfrOPgKtXe
F4ypZ+l2/u1dnWCHc1nHKAG/Qcx6F6CqrxlXIGHcgl55KpDZ5L76+P0MNkrJII52
bFc0r6wR7ulD6UjBKIahnyN0QCRAcbLLXpPS/6V5hwIDo0wHhv0pXzmQZVr+0PpI
NhGHqE8Xs242K6+zrpeFdkL0K20GTiPOzinY5l+RBHbMuRUHbtcd5ROxkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFJdBekaEYceqKN+6QOtvcB7hoO9MB8GA1UdIwQY
MBaAFAlQIokEudvrR5Kml3J+Nqr9hNLpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS82NGQ5MTAtOTQ1Yy00MmU4LWJiNDQt
NjI4MjFjMmMyOTlmLzEvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS82NGQ5MTAtOTQ1Yy00MmU4LWJiNDQtNjI4MjFjMmMyOTlm
LzEvQ1ZBaWlRUzUyLXRIa3FhWGNuNDJxdjJFMHVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfDTu3t2Y
1WWspcyLmeiWZdkAZeoznGyvjJbDzlATyAiCNMya5ajrscmHYJtkSlmFd+imiHy/
qKrrVBh3v6LYAXJKpSHmIPCUi1J6ZZFhXWREbl4HqJGOzroMwFsKrPInzYV3KhsO
K13zOsCHA6YvxMK978v0zwdKjYmTxXtGowFWvWCPxhW5cMgC51AR9UpV+LOiJgld
mJbZaLRrQGBhC8eezaSEAGrj+pQ7RLYEMs8XT1rK80aAwTCRTPwmiRY8g9Mzcvyq
IbWcK5g+sfQiZu1HyWTjSCe87dyW3LYPzJN0xGOgP0XzRDZ9mWv9gntuj9xOvTon
vz9j0xmskyXPrQ==
-----END CERTIFICATE-----
Generated at Tue May 12 21:43:50 2026 by rpki-client