Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
File: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft (raw, json)
Hash identifier: wegnIZw/C4ijZBEICyUSQaXulW85WcB5a1T68ct6FY8=
Subject key identifier: 60:22:B8:79:60:D4:3F:CD:97:52:94:D3:08:EF:03:51:35:D0:14:04
Authority key identifier: D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
Certificate issuer: /CN=d5a2196ef119221155e1683f8967d254625dae71
Certificate serial: 019EBE11182984713404813F89BBA12309F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
Manifest number: 1957
Signing time: Fri 12 Jun 2026 23:00:51 +0000
Manifest this update: Fri 12 Jun 2026 23:00:51 +0000
Manifest next update: Sat 13 Jun 2026 23:00:51 +0000
Files and hashes: 1: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl (hash: Y7GaLCXNXgu2SEVhOOpL3RKehBZH0Q2/0+aQBOJoITo=)
2: AHnNibYpBfUdvSGboILQ1teAIw4.roa (hash: 42GSIkMZbcrmZ8XMph6d+mXrtH34NIs/JYMf8WUp4vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 23:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:11:18:29:84:71:34:04:81:3f:89:bb:a1:23:09:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a2196ef119221155e1683f8967d254625dae71
Validity
Not Before: Jun 12 23:00:51 2026 GMT
Not After : Jun 13 23:00:51 2026 GMT
Subject: CN=6022b87960d43fcd975294d308ef035135d01404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ba:14:95:92:ed:97:25:15:3b:0b:a8:29:52:
24:1e:e5:f5:05:d9:a2:c0:2e:25:d9:77:bb:06:cc:
e9:36:75:ff:dd:8a:c9:83:0b:cb:ee:f7:e1:08:51:
d9:e1:a1:df:a1:7c:f4:a3:4a:f4:65:a7:9a:6d:b4:
fb:5b:b1:1d:b9:9f:aa:b7:3a:2e:f0:96:f8:4c:c7:
5a:bf:06:d2:15:df:44:b9:99:66:29:9a:09:42:d2:
26:b7:4d:f8:14:e2:5f:6e:3c:a9:15:d6:81:12:f8:
06:25:c2:cc:44:22:fc:28:65:8f:c5:8e:17:0c:41:
88:4b:a4:29:0d:a8:82:cd:18:ff:9b:f9:c7:a3:83:
16:c8:58:42:83:27:c6:1e:39:e6:83:bb:73:b7:35:
f9:c0:98:2f:76:e3:b8:c7:51:cd:b2:25:4f:7b:1a:
4d:ab:a6:db:8c:ce:35:e4:76:68:9d:c4:18:12:2b:
f0:86:dd:d5:e5:5e:6e:f7:72:21:fe:b6:8c:25:48:
39:0d:6d:bf:88:95:8d:3f:72:2f:ea:81:ea:b0:37:
a6:13:6b:d2:31:11:a9:ab:fb:31:1b:13:c3:01:68:
94:1e:a1:24:36:0b:f0:12:2e:5f:3c:ab:24:a5:20:
db:0d:26:af:85:fc:17:5e:cc:05:d5:20:fc:f4:d5:
c5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:22:B8:79:60:D4:3F:CD:97:52:94:D3:08:EF:03:51:35:D0:14:04
X509v3 Authority Key Identifier:
keyid:D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:22:49:f5:40:7a:37:94:84:c2:85:ea:20:3a:04:b5:f3:e8:
4a:08:30:b9:95:e5:9a:11:fd:60:a8:0d:f5:dd:a9:27:17:c4:
dc:cb:51:02:71:25:be:60:63:9f:df:44:04:12:a0:cb:03:60:
8e:cb:1a:52:55:23:09:7e:aa:58:b5:14:98:b4:1c:3e:18:35:
82:e0:a3:14:52:a6:30:d0:16:76:ca:2b:e5:19:06:d5:71:24:
42:55:38:34:01:bc:15:44:49:dd:58:b9:b0:9e:fd:24:27:85:
80:ce:41:c4:ba:fa:99:2e:18:6c:9a:05:bd:1e:7d:5d:31:1d:
fb:51:ff:db:2a:63:4d:bf:c1:db:c0:a4:43:09:98:af:a1:3a:
04:67:fd:87:4b:eb:c2:49:81:b3:04:cb:c7:0e:90:e8:f4:16:
11:9b:d5:38:d3:45:dd:eb:c5:ff:96:2e:fd:3e:df:67:75:bc:
1c:00:df:13:5b:e5:26:72:e5:7d:34:31:ea:23:0c:eb:9d:5e:
e9:5e:23:b1:d3:e4:17:34:eb:81:74:be:dc:1a:2a:35:06:5a:
2e:ce:c2:6c:1f:c3:77:32:94:b8:3b:18:d4:ef:bc:1a:b4:57:
12:0d:4c:eb:e1:8c:ed:99:b5:81:cc:45:d4:0a:fa:40:d6:30:
3a:d3:f2:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:55:19 2026 by rpki-client