Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
File: Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft (raw, json)
Hash identifier: 66gt6JmSiFKUJsgQS2p1QDp/bhvuC3yKc22wCYL+DW8=
Subject key identifier: 87:AE:56:CF:FF:8B:67:FC:03:75:61:42:78:33:23:25:B7:CF:45:3A
Authority key identifier: 43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB
Certificate issuer: /CN=4367547d851e3cd776cd33290b2454acc0e851bb
Certificate serial: 019CAB33E52E65DAAB26987FA7D55FFC7F18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
Manifest number: 04CE
Signing time: Sun 01 Mar 2026 21:00:30 +0000
Manifest this update: Sun 01 Mar 2026 21:00:30 +0000
Manifest next update: Mon 02 Mar 2026 21:00:30 +0000
Files and hashes: 1: 5sjVZOffDC3SdMXl3xj-LISTTRA.roa (hash: NgYO+E9uip8I6LBuV26/SjtRZiAA/mIEsqO23fxRKZo=)
2: Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl (hash: ThzPdyqyiPIc35ob22qqKlgjYebQxQY7Lm8D0CFo57Q=)
3: UZ8MoagtWKlsIsRGsjso-iozLGw.roa (hash: dnetz1uWniSUYV1OlTPjy0Ix9dXrnsa95CDJdNzqlUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:33:e5:2e:65:da:ab:26:98:7f:a7:d5:5f:fc:7f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4367547d851e3cd776cd33290b2454acc0e851bb
Validity
Not Before: Mar 1 21:00:30 2026 GMT
Not After : Mar 2 21:00:30 2026 GMT
Subject: CN=87ae56cfff8b67fc0375614278332325b7cf453a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:3b:69:69:f9:e6:61:60:08:21:2a:9d:71:66:
06:cc:99:76:33:85:2f:22:17:51:3b:0b:0c:da:bd:
7a:b0:b4:81:f3:72:5c:2e:0e:66:47:78:ca:fb:a9:
1c:f2:0d:a6:28:95:a3:8b:2e:77:b2:b3:ad:55:05:
36:f8:dd:6d:60:6a:7e:32:48:96:db:21:bd:cf:2d:
98:48:25:91:ea:7e:ff:b6:aa:8f:d6:64:74:12:48:
1d:47:50:f1:c5:69:36:93:2c:6f:f9:5d:0b:49:55:
4b:18:d1:c3:05:35:45:47:51:88:b7:3b:5a:d0:b8:
61:67:88:61:18:1c:5f:e8:8e:c4:63:4e:64:8f:4a:
95:82:77:a3:d6:1f:a8:50:3f:aa:98:f9:0d:8d:a1:
2c:38:88:8b:86:aa:fc:83:44:68:66:4a:25:7f:65:
11:1c:99:35:53:fc:72:ae:09:a0:21:79:b9:49:35:
16:cd:0f:7e:ba:ae:dc:56:45:f6:55:95:dd:68:13:
53:05:b9:12:72:4e:26:4e:cf:1a:b6:09:e5:d3:e8:
25:d9:2a:5f:d3:6c:2a:50:d1:87:18:b0:f7:7a:6a:
9b:1d:4a:7f:b1:b3:87:37:b2:19:1b:a0:12:22:d3:
82:c5:d4:f3:32:70:d2:da:5a:a9:29:8b:cc:df:e3:
b0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AE:56:CF:FF:8B:67:FC:03:75:61:42:78:33:23:25:B7:CF:45:3A
X509v3 Authority Key Identifier:
keyid:43:67:54:7D:85:1E:3C:D7:76:CD:33:29:0B:24:54:AC:C0:E8:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2dUfYUePNd2zTMpCyRUrMDoUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/874c85-9e7d-4ace-958f-dab7f0c8d240/1/Q2dUfYUePNd2zTMpCyRUrMDoUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:90:d7:86:cb:cd:50:55:ce:46:79:b1:79:91:c0:b1:28:bf:
f9:74:09:55:2f:33:89:ea:8a:4a:f7:7b:a5:4c:5e:6f:6f:ef:
83:f9:80:78:cb:76:82:97:1b:ab:f0:af:4b:80:b9:e1:d9:d8:
40:da:1b:43:c6:d3:e1:16:e0:11:32:22:e4:0f:54:cd:36:7f:
6f:2f:61:46:ab:c9:b0:0c:5d:39:dc:84:8d:97:7d:4a:3d:8d:
af:1a:b8:bc:24:da:56:19:9f:46:5a:77:4a:97:fe:ba:0d:a4:
ce:53:04:ae:71:a3:0b:b8:6a:0d:36:e7:4a:4c:d1:e6:f5:6e:
0f:f3:45:8e:68:c6:81:99:34:65:28:a2:e9:37:67:cb:df:29:
5f:88:e8:11:1b:31:5b:d0:58:b4:f1:8b:c6:76:59:68:49:29:
21:20:96:59:d3:1e:d1:2a:31:5f:1a:c7:c4:f1:d5:c1:c0:c8:
c5:f9:72:ad:a2:70:c1:bc:ef:96:43:73:0b:ef:18:e4:d0:1a:
e6:e5:93:3f:16:63:76:fa:ad:ab:a1:14:ce:10:bb:62:03:f5:
73:fe:1b:ac:55:80:17:30:1c:06:75:eb:de:71:c5:93:fa:29:
44:c1:fe:35:c5:c3:cd:9d:1c:27:09:0f:2e:10:84:59:3f:96:
12:79:49:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:28:49 2026 by rpki-client