Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
File: qoXGfyIwng2EwwtUJSlyUyhgUVE.mft (raw, json)
Hash identifier: keDJTzDRVcpBr2LW1ReTgdpcyfISo0BCpzfv3vD5DsI=
Subject key identifier: DE:A9:23:37:8C:AD:5C:70:B5:04:18:73:24:36:63:9D:7E:E2:0E:7E
Authority key identifier: AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
Certificate issuer: /CN=aa85c67f22309e0d84c30b542529725328605151
Certificate serial: 019CACB4A2A5742546915B2C430857071ACF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
Manifest number: 0EC8
Signing time: Mon 02 Mar 2026 04:00:45 +0000
Manifest this update: Mon 02 Mar 2026 04:00:45 +0000
Manifest next update: Tue 03 Mar 2026 04:00:45 +0000
Files and hashes: 1: qoXGfyIwng2EwwtUJSlyUyhgUVE.crl (hash: wtGVTExyx2h16ZPUsB8vwPuV+dTh5Qmo6bktHWzcaLI=)
2: skeAadI4AP4ZvpAKWtTlCV07X48.roa (hash: teA/npSH8zrPPm6lOFHsXXFeJadHqVvDUxx+vJRFlGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:a2:a5:74:25:46:91:5b:2c:43:08:57:07:1a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa85c67f22309e0d84c30b542529725328605151
Validity
Not Before: Mar 2 04:00:45 2026 GMT
Not After : Mar 3 04:00:45 2026 GMT
Subject: CN=dea923378cad5c70b50418732436639d7ee20e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:43:93:2d:69:e3:e6:10:41:c8:5a:18:21:9d:
e6:a1:9c:fc:de:19:5a:74:8f:78:25:55:b0:0f:5e:
91:5d:19:8f:f4:44:cf:0a:88:3f:f6:f6:d7:e8:28:
46:6b:d7:73:11:3c:38:ee:25:87:dc:ff:64:03:ef:
37:5a:99:ce:6c:d4:cc:a6:6c:db:ea:ec:9a:ee:33:
e3:f0:85:07:98:3d:7e:59:42:f5:d4:4e:b0:1d:af:
d7:87:9d:9c:af:02:15:3d:ee:54:68:d2:0c:22:13:
65:e5:bd:b0:db:71:24:56:25:5a:18:8c:a9:08:14:
5e:b6:77:9c:5b:a6:f2:71:6e:89:5e:ab:9a:5a:6d:
92:c4:2c:50:fc:a8:76:6a:17:23:84:2c:27:f6:1b:
d9:3d:94:ad:5d:79:12:fd:3c:3a:61:a9:67:cf:23:
41:44:f1:7f:2e:95:99:13:90:8d:fb:2c:84:98:fe:
88:d8:64:08:99:41:78:82:48:ad:18:af:01:13:0d:
bf:5b:77:6e:55:0e:d5:f8:be:0b:24:e1:f7:3e:30:
9e:8a:d0:4c:67:86:b2:61:6a:6e:55:99:3d:c4:57:
06:ce:d0:99:03:7e:26:fd:8a:8d:a0:ed:cf:1e:40:
9d:d7:90:cd:bb:71:14:ee:8f:1d:87:5f:f5:43:02:
d4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A9:23:37:8C:AD:5C:70:B5:04:18:73:24:36:63:9D:7E:E2:0E:7E
X509v3 Authority Key Identifier:
keyid:AA:85:C6:7F:22:30:9E:0D:84:C3:0B:54:25:29:72:53:28:60:51:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoXGfyIwng2EwwtUJSlyUyhgUVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e79202-acab-4b1a-992b-2a2ed45e2712/1/qoXGfyIwng2EwwtUJSlyUyhgUVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:b2:66:23:71:22:e5:d3:ae:f0:d4:ae:2b:14:f3:d3:1e:55:
f9:41:7a:3a:a5:dc:29:b0:0b:2b:63:20:02:2c:77:6c:8f:bd:
18:b7:26:c9:e6:4b:17:f5:84:91:7e:94:d9:3d:0b:ff:e3:67:
3c:b3:38:04:30:2d:cc:8a:2e:46:2f:03:9c:da:9b:79:30:f6:
3f:12:76:fd:5a:9c:48:e4:29:2f:0f:65:0d:d2:c7:8b:3d:38:
48:dd:93:6e:fa:86:74:69:5d:83:07:e5:16:f1:76:e6:a0:66:
90:b1:47:e4:18:ae:0c:10:22:bf:74:c2:00:c4:b1:f3:dc:e8:
96:b4:1a:da:7c:15:6c:23:53:68:1e:a4:c6:72:d8:7e:bc:8e:
20:30:7c:61:81:a3:d0:98:88:61:77:38:21:cb:3d:3d:8c:bf:
ce:50:41:7a:e3:54:fb:f1:04:aa:75:31:61:cc:d0:53:16:a9:
3c:c3:7a:b3:29:a3:79:a1:85:8a:c9:fc:a1:57:b2:5a:fc:5b:
79:96:43:48:5e:62:e2:28:36:bf:32:e0:46:66:83:7f:70:73:
74:9d:f0:94:2b:59:ac:ac:2d:b9:8b:3c:ff:7f:e3:8f:26:98:
e4:cb:ed:d4:66:ba:80:55:8e:6e:c4:15:70:7c:50:71:e7:20:
13:ab:f3:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:38:18 2026 by rpki-client