Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
File: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json)
Hash identifier: /2u8nrxONPGeEXIVy31JwS5PH7e6Fkku+gXXM+yfR94=
Subject key identifier: 95:F8:D6:00:76:9C:E4:56:17:BF:E5:1D:AC:1D:D4:2F:36:89:50:E5
Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
Certificate issuer: /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Certificate serial: 019D99622A50EE0C0C6E24AABD6B47E18B5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
Manifest number: 05D9
Signing time: Fri 17 Apr 2026 03:00:40 +0000
Manifest this update: Fri 17 Apr 2026 03:00:40 +0000
Manifest next update: Sat 18 Apr 2026 03:00:40 +0000
Files and hashes: 1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: 7i/VCL/+mPADvzGvsLKIqe8TEhjAkNQ8efGNn9IfCpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:2a:50:ee:0c:0c:6e:24:aa:bd:6b:47:e1:8b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Validity
Not Before: Apr 17 03:00:40 2026 GMT
Not After : Apr 18 03:00:40 2026 GMT
Subject: CN=95f8d600769ce45617bfe51dac1dd42f368950e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c7:9c:4e:98:a1:53:a5:80:e8:5f:59:c3:27:
21:25:95:9e:09:dd:36:a6:bc:f8:e9:f4:0c:bd:3a:
c5:88:6f:15:a3:7c:d1:23:70:60:bf:b6:d4:21:ba:
f3:71:71:c1:c5:22:99:c8:46:8a:b6:49:49:78:42:
b7:8c:05:08:4b:a1:f3:3d:c7:73:23:67:13:bd:cb:
0d:4e:af:86:34:29:22:8c:98:30:11:16:af:6b:65:
52:76:bd:74:f5:b3:f5:b2:35:ae:1d:48:41:52:ce:
39:41:f3:c0:48:29:d7:8a:79:00:3f:31:5a:2f:ac:
17:a9:48:c8:43:48:82:38:ba:e9:a8:16:0c:92:48:
31:a4:30:ec:31:0e:5f:27:ab:6f:c1:64:90:ff:4f:
9c:b1:e1:26:25:20:f0:b1:8d:d0:9e:0b:1d:0c:ca:
f8:9e:dd:d3:d2:f3:a1:87:3e:63:ee:b6:0c:6c:e6:
00:5c:f9:1e:3e:44:2f:83:30:52:ee:8e:b9:ac:ee:
83:28:48:ff:74:7b:19:6a:82:b5:d3:b1:8c:fa:45:
c2:84:6f:19:99:5b:5a:e2:1f:ff:ee:91:3e:63:eb:
22:e7:da:a7:99:53:32:61:a2:8b:c0:6a:85:8a:fb:
e8:55:57:b2:65:a4:30:90:27:ea:6f:e6:29:3d:6c:
25:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F8:D6:00:76:9C:E4:56:17:BF:E5:1D:AC:1D:D4:2F:36:89:50:E5
X509v3 Authority Key Identifier:
keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:f4:c5:d1:1c:05:1a:08:9f:c9:14:c2:00:10:f8:39:78:29:
76:40:fa:3a:b1:46:4c:f9:da:92:db:80:29:ee:7d:02:c7:78:
73:22:d3:1c:70:0b:9a:83:bc:3b:37:9b:cb:fd:22:27:5f:0d:
fe:dc:1c:02:f3:45:2f:18:c7:95:81:53:db:6d:c4:a3:33:21:
52:a1:73:e4:78:b7:2e:81:af:84:50:12:85:92:69:71:cb:21:
47:83:c4:07:85:f5:e6:e9:34:a1:4d:27:35:d6:c4:1f:ff:fa:
78:42:56:8d:50:d3:e6:f4:6f:f1:24:5f:de:94:8f:d3:01:f7:
ed:ff:65:40:db:54:ec:ec:a8:53:ad:29:a0:e8:04:51:95:8e:
20:29:a2:d0:82:10:cf:4f:f7:49:7b:dc:eb:91:f1:bf:b4:43:
3b:d5:be:48:04:81:07:f4:00:ce:33:f6:14:37:75:2b:0f:dd:
3b:60:a5:ce:25:4c:32:e7:14:05:d9:a6:e6:18:85:11:87:d8:
01:c2:92:b2:19:66:a7:13:c4:ca:ed:f7:28:40:0f:fb:d9:ae:
c0:c8:fa:3f:11:6a:09:c4:15:f7:9a:01:19:1d:bb:4f:6f:3f:
1a:21:46:7f:8a:35:95:49:0a:ab:4b:62:f6:30:f3:5d:3b:1f:
67:3a:96:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:22:45 2026 by rpki-client