Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
File: 1-puJ82fU-5UCh3AfYtSgObf2yyA.mft (raw, json)
Hash identifier: 4wzPdsiDygEDK03cxIHTbXzeLniGz8mAg8ES+sDncDw=
Subject key identifier: 85:3D:7C:B7:A0:B6:ED:C1:8E:FA:E9:98:3E:C6:E4:61:BE:32:89:5D
Authority key identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
Certificate issuer: /CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Certificate serial: 019E1E360CEBB3C1F1657D6A7AB5D29090DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
Manifest number: 1714
Signing time: Tue 12 May 2026 22:01:59 +0000
Manifest this update: Tue 12 May 2026 22:01:59 +0000
Manifest next update: Wed 13 May 2026 22:01:59 +0000
Files and hashes: 1: 1-puJ82fU-5UCh3AfYtSgObf2yyA.crl (hash: j+MEyJMiU8lexnKwUNmGmwq3KtSclYw1Ddnhmpau6LI=)
2: 5VBqrJ3l2bBgVNFXgKoPrPjtOoo.roa (hash: pw/y5AALVmMkOsomb76pGvibV4sU9NfaodslXc53Ans=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:36:0c:eb:b3:c1:f1:65:7d:6a:7a:b5:d2:90:90:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Validity
Not Before: May 12 22:01:59 2026 GMT
Not After : May 13 22:01:59 2026 GMT
Subject: CN=853d7cb7a0b6edc18efae9983ec6e461be32895d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b6:30:df:7c:bf:31:cc:94:3f:94:67:81:62:
72:2d:6d:27:b4:6f:fe:04:4d:54:13:3d:a5:b8:a5:
22:41:89:cc:6c:44:24:88:b0:5f:e6:f3:1a:0b:81:
f5:17:1e:78:c9:47:e3:58:c5:b7:9d:51:8a:18:91:
c3:72:7b:12:f4:d2:17:b3:f9:0e:7f:f3:a9:dc:da:
fc:f6:b5:a8:eb:6a:c6:cb:83:83:56:24:cb:ef:67:
18:ea:dd:6a:69:f2:5a:8b:75:04:89:9b:32:29:7b:
93:71:b6:a5:33:2e:cd:c9:0f:66:75:6e:8a:db:18:
b9:ae:53:67:5f:7c:37:0a:69:14:32:1a:79:3b:77:
47:43:81:23:1d:02:08:5c:f3:0c:2f:22:62:eb:b5:
85:b8:04:a4:e2:30:d6:c9:db:10:d4:ad:a8:74:79:
ef:c4:41:9d:a9:14:66:0b:9b:2e:8a:d4:ef:8c:53:
c6:ae:65:c6:7f:7a:3b:6a:74:c5:47:9d:b9:a5:eb:
98:6d:65:f9:68:19:4a:58:10:82:8f:db:6c:a3:07:
3d:c6:0c:29:a4:db:ce:c6:8f:71:03:4c:ce:b0:8c:
03:c9:d0:44:89:ec:b0:74:50:b4:0b:29:4e:21:38:
e6:d1:f9:84:27:53:69:2c:5a:40:3e:e5:e6:2c:70:
97:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:3D:7C:B7:A0:B6:ED:C1:8E:FA:E9:98:3E:C6:E4:61:BE:32:89:5D
X509v3 Authority Key Identifier:
keyid:FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:a5:d1:63:04:de:80:c4:d6:2f:2c:c6:b9:ae:93:b7:da:27:
77:d7:74:d8:b3:00:2d:5a:32:92:be:8d:32:6d:f6:71:83:cf:
8a:d1:b2:f0:51:5a:d6:26:c9:b7:ef:6c:99:ed:53:38:2e:f9:
45:1e:f6:ef:b5:2b:f7:9f:7a:db:c4:70:d3:ef:83:d3:da:fd:
f6:4b:47:6c:91:cb:02:7b:51:8a:59:6d:27:8b:39:13:e3:d7:
a9:b6:7e:63:a2:c4:fb:8b:43:ff:79:d7:06:ff:da:ac:0c:6a:
b7:75:7b:e2:0c:8b:58:dc:be:d7:bb:96:c0:40:c7:d6:ae:87:
13:e5:a7:94:64:8c:3f:ec:35:47:08:40:00:21:ae:a1:51:28:
75:af:24:d4:a2:67:16:8d:3d:17:70:ec:62:89:ef:73:d7:79:
3c:ef:87:cb:8d:eb:b0:6e:6d:3d:5b:6b:8a:fd:e7:f1:3c:4d:
88:2f:6f:17:a5:3e:24:c0:15:91:60:d8:90:88:fe:86:a7:b2:
3b:86:a0:16:2a:97:8c:b1:aa:79:9d:85:02:8a:75:60:5a:ce:
9b:a8:9b:f7:d5:5b:c9:02:d1:fa:42:d1:80:28:a4:a8:53:07:
6d:dd:2b:3a:e1:74:b6:59:d5:b5:7b:6a:8f:07:53:82:f6:d6:
2c:53:89:ed
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZ4eNgzrs8HxZX1qerXSkJDeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhOWI4OWYzNjdkNGZiOTUwMjg3NzAxZjYyZDRhMDM5Yjdm
NmNiMjAwHhcNMjYwNTEyMjIwMTU5WhcNMjYwNTEzMjIwMTU5WjAzMTEwLwYDVQQD
Eyg4NTNkN2NiN2EwYjZlZGMxOGVmYWU5OTgzZWM2ZTQ2MWJlMzI4OTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiLYw33y/McyUP5RngWJyLW0ntG/+
BE1UEz2luKUiQYnMbEQkiLBf5vMaC4H1Fx54yUfjWMW3nVGKGJHDcnsS9NIXs/kO
f/Op3Nr89rWo62rGy4ODViTL72cY6t1qafJai3UEiZsyKXuTcbalMy7NyQ9mdW6K
2xi5rlNnX3w3CmkUMhp5O3dHQ4EjHQIIXPMMLyJi67WFuASk4jDWydsQ1K2odHnv
xEGdqRRmC5suitTvjFPGrmXGf3o7anTFR525peuYbWX5aBlKWBCCj9tsowc9xgwp
pNvOxo9xA0zOsIwDydBEieywdFC0CylOITjm0fmEJ1NpLFpAPuXmLHCXCwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFIU9fLegtu3BjvrpmD7G5GG+MoldMB8GA1UdIwQY
MBaAFPqbifNn1PuVAodwH2LUoDm39ssgMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1wdUo4MmZVLTVVQ2gzQWZZdFNnT2JmMnl5QS5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvOTg5MzNhLTc1ODEtNDk3OS05MTIx
LTBlMWE2OGM3NTYzYi8xLzEtcHVKODJmVS01VUNoM0FmWXRTZ09iZjJ5eUEubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzY1Lzk4OTMzYS03NTgxLTQ5NzktOTEyMS0wZTFhNjhjNzU2
M2IvMS8xLXB1SjgyZlUtNVVDaDNBZll0U2dPYmYyeXlBLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALqXR
YwTegMTWLyzGua6Tt9ond9d02LMALVoykr6NMm32cYPPitGy8FFa1ibJt+9sme1T
OC75RR7277Ur959628Rw0++D09r99ktHbJHLAntRilltJ4s5E+PXqbZ+Y6LE+4tD
/3nXBv/arAxqt3V74gyLWNy+17uWwEDH1q6HE+WnlGSMP+w1RwhAACGuoVEoda8k
1KJnFo09F3DsYonvc9d5PO+Hy43rsG5tPVtriv3n8TxNiC9vF6U+JMAVkWDYkIj+
hqeyO4agFiqXjLGqeZ2FAop1YFrOm6ib99VbyQLR+kLRgCikqFMHbd0rOuF0tlnV
tXtqjwdTgvbWLFOJ7Q==
-----END CERTIFICATE-----
Generated at Wed May 13 08:27:28 2026 by rpki-client