Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
File: 1lcpIU0Paz-lGho4A32rjeSOBVg.mft (raw, json)
Hash identifier: FXiKurxQMyPct3l2CLHWiFdz80CvttjxlZ/IO/FcZM8=
Subject key identifier: 17:FF:27:48:72:B8:29:BF:CD:BE:5F:1D:62:77:B7:D1:9F:D6:50:68
Authority key identifier: D6:57:29:21:4D:0F:6B:3F:A5:1A:1A:38:03:7D:AB:8D:E4:8E:05:58
Certificate issuer: /CN=d65729214d0f6b3fa51a1a38037dab8de48e0558
Certificate serial: 019E1EDA75503E8026A246EAEC0844498E20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
Manifest number: 0967
Signing time: Wed 13 May 2026 01:01:33 +0000
Manifest this update: Wed 13 May 2026 01:01:33 +0000
Manifest next update: Thu 14 May 2026 01:01:33 +0000
Files and hashes: 1: 1lcpIU0Paz-lGho4A32rjeSOBVg.crl (hash: ssFLZ7+7kP+s7MhCeyP3kxE3bF6bWvZn4Tg1IbBR1to=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:75:50:3e:80:26:a2:46:ea:ec:08:44:49:8e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65729214d0f6b3fa51a1a38037dab8de48e0558
Validity
Not Before: May 13 01:01:33 2026 GMT
Not After : May 14 01:01:33 2026 GMT
Subject: CN=17ff274872b829bfcdbe5f1d6277b7d19fd65068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:92:4d:26:c2:97:cf:cd:73:ef:6e:21:54:51:
69:e5:62:31:42:7e:5e:eb:b7:d8:0d:30:d6:c9:98:
53:a8:67:94:68:15:1c:01:33:64:c7:aa:e3:2d:26:
f5:8d:dc:55:0d:f8:f3:ec:50:63:e6:62:db:d2:e0:
cc:81:48:d4:3c:3c:0e:1c:4a:ee:6e:54:36:1b:af:
4c:9e:14:30:0a:da:79:50:5b:97:6b:8b:16:ca:e0:
e3:37:17:bc:e5:b5:73:e1:cd:b9:0b:66:ee:70:41:
b3:e2:e1:4d:4e:d9:f2:47:1d:10:b9:7f:77:5e:17:
be:84:ea:14:26:f3:86:35:ca:89:66:35:2a:33:04:
e9:ef:77:52:9e:40:de:ed:66:60:21:c9:ab:c3:38:
38:f0:6d:0e:72:78:49:4f:38:b3:e3:35:7b:06:c9:
f0:24:04:b9:ad:08:5f:58:cc:d6:30:fa:71:d0:78:
5a:0d:37:ee:73:7b:ba:00:d9:18:75:37:0f:73:fa:
d9:59:36:f9:4e:0c:44:67:d6:d0:81:26:b1:12:4f:
f8:36:47:24:5b:f9:99:35:2c:63:03:f2:29:3f:6d:
13:2a:63:25:be:44:e2:4b:4e:b1:f5:9a:b1:0a:8d:
0b:4a:1b:a4:dd:7c:a0:23:ca:a8:5d:c2:75:35:b7:
e0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:FF:27:48:72:B8:29:BF:CD:BE:5F:1D:62:77:B7:D1:9F:D6:50:68
X509v3 Authority Key Identifier:
keyid:D6:57:29:21:4D:0F:6B:3F:A5:1A:1A:38:03:7D:AB:8D:E4:8E:05:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lcpIU0Paz-lGho4A32rjeSOBVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/085bd3-c34f-48cf-9a73-ec43fd6c227a/1/1lcpIU0Paz-lGho4A32rjeSOBVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:0f:2e:8b:2d:f8:df:6c:d7:51:5e:4a:34:a5:d3:19:47:64:
60:46:aa:e5:3d:8e:e8:ec:b6:9b:41:4f:99:93:68:5f:28:e4:
fb:10:cf:07:9b:e5:4b:f4:d7:66:13:73:e8:64:22:7c:90:72:
e4:bc:d8:90:e0:48:b8:fe:ad:0a:96:56:71:f6:09:4f:d9:b3:
6c:84:9f:1d:a0:1a:4d:77:29:8f:d4:96:a9:f8:5d:d7:b0:f1:
79:f4:fc:78:1b:f6:06:1b:ad:35:bc:e0:45:28:aa:48:eb:2b:
05:f4:c6:bc:b1:33:86:b0:1b:dd:07:5c:1a:4f:57:51:9c:5a:
7c:ee:8f:62:b2:a3:bb:04:f0:ff:0a:38:58:b1:77:26:fd:97:
a3:5f:c7:ff:db:77:2b:a7:8b:6a:ad:bf:80:71:17:14:db:c8:
5f:a4:68:12:73:46:96:23:9e:90:47:f5:55:fa:65:ae:72:02:
55:0f:17:eb:9a:57:aa:0d:a6:0b:e7:21:77:fb:46:e0:01:d8:
01:17:e6:3d:6e:47:6a:e4:b6:56:59:0b:d3:2f:b5:89:27:a2:
a7:25:48:2d:17:28:8e:c9:a5:80:95:83:22:b9:4e:1c:fc:a7:
f4:de:57:7e:c2:6a:c6:42:62:d0:8f:63:dc:2f:e4:66:5f:12:
34:10:66:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2nVQPoAmokbq7AhESY4gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NTcyOTIxNGQwZjZiM2ZhNTFhMWEzODAzN2RhYjhkZTQ4
ZTA1NTgwHhcNMjYwNTEzMDEwMTMzWhcNMjYwNTE0MDEwMTMzWjAzMTEwLwYDVQQD
EygxN2ZmMjc0ODcyYjgyOWJmY2RiZTVmMWQ2Mjc3YjdkMTlmZDY1MDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZJNJsKXz81z724hVFFp5WIxQn5e
67fYDTDWyZhTqGeUaBUcATNkx6rjLSb1jdxVDfjz7FBj5mLb0uDMgUjUPDwOHEru
blQ2G69MnhQwCtp5UFuXa4sWyuDjNxe85bVz4c25C2bucEGz4uFNTtnyRx0QuX93
Xhe+hOoUJvOGNcqJZjUqMwTp73dSnkDe7WZgIcmrwzg48G0OcnhJTziz4zV7Bsnw
JAS5rQhfWMzWMPpx0HhaDTfuc3u6ANkYdTcPc/rZWTb5TgxEZ9bQgSaxEk/4Nkck
W/mZNSxjA/IpP20TKmMlvkTiS06x9ZqxCo0LShuk3XygI8qoXcJ1NbfgGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBf/J0hyuCm/zb5fHWJ3t9Gf1lBoMB8GA1UdIwQY
MBaAFNZXKSFND2s/pRoaOAN9q43kjgVYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWxjcElVMFBhei1sR2hvNEEzMnJqZVNPQlZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC8wODViZDMtYzM0Zi00OGNmLTlhNzMt
ZWM0M2ZkNmMyMjdhLzEvMWxjcElVMFBhei1sR2hvNEEzMnJqZVNPQlZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC8wODViZDMtYzM0Zi00OGNmLTlhNzMtZWM0M2ZkNmMyMjdh
LzEvMWxjcElVMFBhei1sR2hvNEEzMnJqZVNPQlZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJA8uiy34
32zXUV5KNKXTGUdkYEaq5T2O6Oy2m0FPmZNoXyjk+xDPB5vlS/TXZhNz6GQifJBy
5LzYkOBIuP6tCpZWcfYJT9mzbISfHaAaTXcpj9SWqfhd17DxefT8eBv2BhutNbzg
RSiqSOsrBfTGvLEzhrAb3QdcGk9XUZxafO6PYrKjuwTw/wo4WLF3Jv2Xo1/H/9t3
K6eLaq2/gHEXFNvIX6RoEnNGliOekEf1VfplrnICVQ8X65pXqg2mC+chd/tG4AHY
ARfmPW5HauS2VlkL0y+1iSeipyVILRcojsmlgJWDIrlOHPyn9N5XfsJqxkJi0I9j
3C/kZl8SNBBmtA==
-----END CERTIFICATE-----
Generated at Wed May 13 05:23:49 2026 by rpki-client