Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: G+VNVIt5otbwq1sbywpkIf9wupPxWIu1UkiEKSm9ksE=
Subject key identifier: 92:0B:56:EC:28:A0:83:90:27:F7:EB:FD:DE:4B:EA:5F:29:1F:83:A5
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 019E1CB47ECC07C4EC5F8F370FEB310759FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0E07
Signing time: Tue 12 May 2026 15:00:51 +0000
Manifest this update: Tue 12 May 2026 15:00:51 +0000
Manifest next update: Wed 13 May 2026 15:00:51 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: wEMZG5F2X+dvpLIcMBD7iAlXkTxwHXho6Ei47eo6nm4=)
2: yqbwyn5sfCL6hbkLZAJdRWAyPBM.roa (hash: ZWKRKB/jnik25oPS/+Y2ymZERk+OEa7DBYYnhwqGBQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:7e:cc:07:c4:ec:5f:8f:37:0f:eb:31:07:59:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: May 12 15:00:51 2026 GMT
Not After : May 13 15:00:51 2026 GMT
Subject: CN=920b56ec28a0839027f7ebfdde4bea5f291f83a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e7:a1:f7:40:4b:9d:e5:e5:cf:2f:f1:23:ed:
1b:c9:92:06:f8:f8:11:f7:6c:35:30:34:7a:11:0b:
5e:ea:f6:55:a1:4e:be:4f:89:ff:05:ac:09:84:39:
06:0b:c8:95:ad:59:ef:81:c7:03:d9:e0:58:e8:d2:
07:16:99:38:37:e2:48:24:17:bd:56:37:30:96:f1:
4d:dd:f6:18:a7:82:79:07:1c:5b:1a:18:c6:66:d4:
e2:d0:46:ac:01:d1:e2:81:35:59:4f:ac:b1:f7:f6:
9d:94:59:9c:63:88:4a:ed:fd:ec:f2:0c:08:e7:ee:
ea:de:45:5c:22:06:b6:d4:49:ef:3a:c7:3d:45:0b:
ae:0f:48:cd:12:e0:f9:dc:3c:6b:12:e5:be:cd:94:
d2:87:39:fc:b2:5c:f8:66:bc:d3:93:ea:c2:1d:6d:
01:68:a6:5d:f5:0a:7c:05:f5:d2:b5:cc:86:3e:4f:
ff:28:a6:c9:f1:f5:41:43:e6:64:eb:e4:17:7a:34:
1d:b6:40:ef:44:ec:7a:a7:63:8a:37:36:91:81:84:
53:a7:19:3e:67:a3:b3:0e:b9:dd:45:ef:80:95:b2:
67:7e:80:72:40:df:8b:72:a0:38:f5:de:b1:65:90:
78:8a:a8:ba:39:4e:a0:4d:15:8c:4d:e3:e6:a0:68:
0e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0B:56:EC:28:A0:83:90:27:F7:EB:FD:DE:4B:EA:5F:29:1F:83:A5
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:6e:7c:01:6c:df:7c:f8:3f:bc:20:7c:b0:67:0e:e1:96:ab:
6a:be:08:3e:d6:71:3e:4a:6c:0d:cf:a6:6d:1d:e7:94:34:37:
97:43:a2:67:60:bd:89:bb:d9:ee:ee:56:c3:89:35:b8:4e:4f:
3f:8c:df:7d:69:b0:86:06:c0:25:85:41:ff:28:4c:da:62:ff:
7e:39:50:79:cb:21:b0:85:f5:7a:e4:f9:f2:26:31:95:e8:1e:
a0:71:d0:41:a9:1a:1a:fa:30:40:e3:90:f2:cf:3d:0c:ad:ba:
c9:ff:b9:40:c0:27:84:f7:eb:ce:3d:75:a2:33:94:89:2e:1e:
05:53:c0:19:bd:1c:bb:19:0b:40:03:a8:cf:23:7b:ba:16:2c:
1b:4d:21:43:03:46:91:65:7e:22:df:4e:1f:ca:9a:67:0d:82:
2d:cc:c1:11:aa:ce:13:dc:51:74:5e:50:96:cd:13:d3:33:e8:
ad:53:aa:12:d8:4f:96:58:74:32:b5:83:d7:70:af:08:ae:05:
b2:06:af:e9:fd:8f:3d:96:7a:59:dc:13:1f:10:1a:1a:ae:11:
dd:8b:a8:1c:eb:54:db:ea:5f:49:b0:cd:81:01:92:70:59:b2:
e6:fc:b4:29:ba:38:45:a4:a0:e5:4a:2a:c0:64:30:87:f9:d3:
42:53:64:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ctH7MB8TsX483D+sxB1n9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MzU0MzIxYzEyNTQzNjAxNDVlYWYyNWY2OTkzOGI4ZGYz
NDdiMzEwHhcNMjYwNTEyMTUwMDUxWhcNMjYwNTEzMTUwMDUxWjAzMTEwLwYDVQQD
Eyg5MjBiNTZlYzI4YTA4MzkwMjdmN2ViZmRkZTRiZWE1ZjI5MWY4M2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+eh90BLneXlzy/xI+0byZIG+PgR
92w1MDR6EQte6vZVoU6+T4n/BawJhDkGC8iVrVnvgccD2eBY6NIHFpk4N+JIJBe9
VjcwlvFN3fYYp4J5BxxbGhjGZtTi0EasAdHigTVZT6yx9/adlFmcY4hK7f3s8gwI
5+7q3kVcIga21EnvOsc9RQuuD0jNEuD53DxrEuW+zZTShzn8slz4ZrzTk+rCHW0B
aKZd9Qp8BfXStcyGPk//KKbJ8fVBQ+Zk6+QXejQdtkDvROx6p2OKNzaRgYRTpxk+
Z6OzDrndRe+AlbJnfoByQN+LcqA49d6xZZB4iqi6OU6gTRWMTePmoGgOmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJILVuwooIOQJ/fr/d5L6l8pH4OlMB8GA1UdIwQY
MBaAFNU1QyHBJUNgFF6vJfaZOLjfNHsxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQt
YjY0ZWI4ZDgzNjU4LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQtYjY0ZWI4ZDgzNjU4
LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYm58AWzf
fPg/vCB8sGcO4Zarar4IPtZxPkpsDc+mbR3nlDQ3l0OiZ2C9ibvZ7u5Ww4k1uE5P
P4zffWmwhgbAJYVB/yhM2mL/fjlQecshsIX1euT58iYxlegeoHHQQakaGvowQOOQ
8s89DK26yf+5QMAnhPfrzj11ojOUiS4eBVPAGb0cuxkLQAOozyN7uhYsG00hQwNG
kWV+It9OH8qaZw2CLczBEarOE9xRdF5Qls0T0zPorVOqEthPllh0MrWD13CvCK4F
sgav6f2PPZZ6WdwTHxAaGq4R3YuoHOtU2+pfSbDNgQGScFmy5vy0Kbo4RaSg5Uoq
wGQwh/nTQlNkJw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:14:46 2026 by rpki-client