Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
File: q2TJrlviZApf1pRYanBMo0wgh78.mft (raw, json)
Hash identifier: Tkgv/WwxTuvLpxVrq/dWp7uhybh3vaSW6mDN8sCop2c=
Subject key identifier: 0B:83:4F:CA:CB:27:77:78:F3:15:82:E1:8B:A8:66:99:20:33:5F:F4
Authority key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
Certificate issuer: /CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Certificate serial: 019CAB344DCD08E779D24F5ACCF3A4E139CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 21:00:57 +0000
Manifest this update: Sun 01 Mar 2026 21:00:57 +0000
Manifest next update: Mon 02 Mar 2026 21:00:57 +0000
Files and hashes: 1: Yrcgx8X9stHwgpCHDOsVbc1hluI.roa (hash: ECVF6igxy3y3LufgBVxh6FK9Aw/oP5gnb7fO7cFVtSs=)
2: q2TJrlviZApf1pRYanBMo0wgh78.crl (hash: Wm4rHnThI/G7qGBH6CAZt7yUhO+aYW4lkOS6IGmWOI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:4d:cd:08:e7:79:d2:4f:5a:cc:f3:a4:e1:39:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Validity
Not Before: Mar 1 21:00:57 2026 GMT
Not After : Mar 2 21:00:57 2026 GMT
Subject: CN=0b834fcacb277778f31582e18ba8669920335ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:52:0a:6b:b9:3b:4a:18:39:c5:ee:fd:a5:5a:
f8:1e:fa:5d:32:2c:44:1d:11:f2:a0:97:a0:ea:c2:
36:48:91:78:e8:4c:a4:21:12:5d:f5:e2:75:ab:95:
e9:e6:38:ca:70:87:64:89:49:ad:87:bb:e7:25:c5:
cb:48:43:b0:80:6d:06:d4:4b:1e:14:0d:2c:52:04:
43:37:85:10:cf:ab:10:7a:98:8a:d8:20:32:e5:a4:
fe:72:49:45:9a:57:f3:04:6c:32:22:3d:c3:04:b5:
e5:81:13:b8:27:43:16:f4:10:51:19:f3:03:da:c6:
64:05:8e:9b:1a:d3:99:90:6b:a5:01:f6:26:8d:fc:
19:d6:5b:dc:02:81:f0:29:02:ca:b9:aa:27:39:71:
4c:b1:3f:e7:8f:e7:75:58:9c:cf:cf:e8:d3:4d:ef:
5a:f2:25:cc:52:64:bc:bd:c9:a4:b6:57:d2:38:e4:
da:bc:25:8f:6a:e5:4f:fa:0b:7a:3d:19:01:8b:2f:
1d:d3:a6:ae:7d:f1:e0:fb:93:42:fa:8f:42:67:cc:
cb:aa:5a:52:f9:d7:9f:90:0d:29:71:fc:de:af:e5:
60:b8:15:2c:c2:51:97:3a:cc:4d:a2:ec:59:af:42:
13:b9:48:f5:4f:d7:c8:b9:c3:dd:d0:6e:fb:10:33:
e4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:83:4F:CA:CB:27:77:78:F3:15:82:E1:8B:A8:66:99:20:33:5F:F4
X509v3 Authority Key Identifier:
keyid:AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:8a:27:71:25:37:96:bf:38:05:2a:06:3f:55:79:95:34:d6:
7a:a5:57:2f:7e:92:89:33:75:b7:8d:c4:76:0c:96:55:65:00:
dc:dc:b2:b7:18:be:08:f6:b0:5f:c5:53:cd:db:92:9b:dd:c2:
91:f1:a9:ea:c9:0c:10:20:75:03:21:90:6a:f1:dd:b2:da:3a:
1a:8b:de:b9:ea:65:8d:71:22:ca:dd:1d:50:44:0b:34:24:00:
97:d3:b2:65:a3:47:c7:68:b9:45:13:90:b9:a5:07:95:6d:d1:
7c:3d:29:ec:1e:78:de:33:fb:f4:66:11:d7:23:ea:0f:d3:24:
07:64:40:96:ff:41:95:04:7c:91:e0:5e:a6:4f:c1:10:6a:e2:
e7:f9:03:df:e7:66:66:0d:9c:d7:50:71:d5:8d:de:30:25:2e:
ce:88:6a:11:5b:69:bb:f5:fa:8d:ca:c5:79:0e:da:59:de:41:
57:2f:a1:4a:67:d3:df:23:f0:5e:64:3b:9b:e5:5c:73:86:94:
72:3f:5b:5e:91:4b:63:b6:d0:84:91:a2:a6:18:b2:bf:57:10:
20:3d:96:55:64:58:c4:b9:9a:93:2d:21:32:f3:d8:19:ff:34:
f4:50:c0:86:f6:17:a2:34:39:50:a6:2d:89:3a:1b:9b:58:62:
c1:da:ea:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNE3NCOd50k9azPOk4TnMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNjRjOWFlNWJlMjY0MGE1ZmQ2OTQ1ODZhNzA0Y2EzNGMy
MDg3YmYwHhcNMjYwMzAxMjEwMDU3WhcNMjYwMzAyMjEwMDU3WjAzMTEwLwYDVQQD
EygwYjgzNGZjYWNiMjc3Nzc4ZjMxNTgyZTE4YmE4NjY5OTIwMzM1ZmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1IKa7k7Shg5xe79pVr4HvpdMixE
HRHyoJeg6sI2SJF46EykIRJd9eJ1q5Xp5jjKcIdkiUmth7vnJcXLSEOwgG0G1Ese
FA0sUgRDN4UQz6sQepiK2CAy5aT+cklFmlfzBGwyIj3DBLXlgRO4J0MW9BBRGfMD
2sZkBY6bGtOZkGulAfYmjfwZ1lvcAoHwKQLKuaonOXFMsT/nj+d1WJzPz+jTTe9a
8iXMUmS8vcmktlfSOOTavCWPauVP+gt6PRkBiy8d06auffHg+5NC+o9CZ8zLqlpS
+defkA0pcfzer+VguBUswlGXOsxNouxZr0ITuUj1T9fIucPd0G77EDPkEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAuDT8rLJ3d48xWC4YuoZpkgM1/0MB8GA1UdIwQY
MBaAFKtkya5b4mQKX9aUWGpwTKNMIIe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9jNTVjYmMtZTQzZC00MGNiLTg0NGYt
MzFjNTEzN2VjMzhhLzEvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9jNTVjYmMtZTQzZC00MGNiLTg0NGYtMzFjNTEzN2VjMzhh
LzEvcTJUSnJsdmlaQXBmMXBSWWFuQk1vMHdnaDc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoYoncSU3
lr84BSoGP1V5lTTWeqVXL36SiTN1t43EdgyWVWUA3Nyytxi+CPawX8VTzduSm93C
kfGp6skMECB1AyGQavHdsto6GoveuepljXEiyt0dUEQLNCQAl9OyZaNHx2i5RROQ
uaUHlW3RfD0p7B543jP79GYR1yPqD9MkB2RAlv9BlQR8keBepk/BEGri5/kD3+dm
Zg2c11Bx1Y3eMCUuzohqEVtpu/X6jcrFeQ7aWd5BVy+hSmfT3yPwXmQ7m+Vcc4aU
cj9bXpFLY7bQhJGiphiyv1cQID2WVWRYxLmaky0hMvPYGf809FDAhvYXojQ5UKYt
iTobm1hiwdrq4w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:50:15 2026 by rpki-client