Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json)
Hash identifier: dCOMkA7r+oUaK3lEdjIcEkEW+tzDVGD1Eg+E4mBfl40=
Subject key identifier: 36:E1:98:F8:68:6C:BE:58:05:11:2D:17:77:A7:33:3B:EA:4F:99:C9
Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Certificate serial: 019CA97D1BC3BC37AF51254EA526B22659A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
Manifest number: 1571
Signing time: Sun 01 Mar 2026 13:01:14 +0000
Manifest this update: Sun 01 Mar 2026 13:01:14 +0000
Manifest next update: Mon 02 Mar 2026 13:01:14 +0000
Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: sGRGsPDpT7HoByfSEbcx5CbOGijavjANR+TjJu7HkKc=)
2: TQWvkAi8bonEzYNgt0Kx7jD-EqQ.roa (hash: 4l9r6gsisRPOUrwiMnNC/ZEB32QweKRJ3pss8gUXvAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7d:1b:c3:bc:37:af:51:25:4e:a5:26:b2:26:59:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Validity
Not Before: Mar 1 13:01:14 2026 GMT
Not After : Mar 2 13:01:14 2026 GMT
Subject: CN=36e198f8686cbe5805112d1777a7333bea4f99c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:81:db:58:8e:1e:67:d5:ec:54:70:21:9f:aa:
6d:53:5a:7c:e0:79:1a:98:6d:01:3a:2b:c6:df:9e:
5c:9a:8c:fc:dc:31:3b:bd:70:f5:07:2f:2a:e9:0c:
8a:39:57:41:f5:a8:07:41:ff:de:28:32:a0:90:16:
9d:73:0f:81:d0:99:ad:db:3e:08:ef:03:d8:e5:9f:
22:a9:63:1f:81:e2:51:61:88:d5:80:af:ca:8e:ae:
f7:31:6d:be:38:95:51:11:dc:9c:ac:f5:72:29:08:
a6:43:06:80:75:17:e4:cf:22:05:c6:17:07:61:9a:
c6:f6:e6:3e:7f:fb:c8:06:c5:9e:5e:31:6a:8a:f9:
15:6f:9e:28:0f:79:1d:83:19:ad:6f:fe:b3:3b:d4:
23:b9:02:36:6d:38:c3:5c:31:b7:29:d4:a5:04:1a:
91:ec:ec:26:09:10:2b:e0:2f:e3:7c:48:85:51:25:
10:58:fd:d2:ed:6c:23:81:7e:b3:7b:08:11:27:c5:
e4:7d:18:bd:0f:ce:fd:ad:1b:31:25:93:32:43:c0:
ef:16:b1:40:c5:60:4b:74:57:f8:74:3a:b2:88:ee:
43:b2:b7:b3:ab:ef:94:af:ba:7f:5d:da:cc:96:6e:
05:ff:b7:16:3c:80:38:2c:11:a4:8d:49:24:0c:59:
ee:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E1:98:F8:68:6C:BE:58:05:11:2D:17:77:A7:33:3B:EA:4F:99:C9
X509v3 Authority Key Identifier:
keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9b:55:0c:2d:41:f3:b3:f3:da:ca:c1:65:19:22:a6:04:bd:
a6:f2:6e:de:cc:b7:15:d3:17:c5:f0:ef:b1:ce:89:d2:bf:b2:
c8:89:40:47:db:93:c3:2e:9a:ea:f2:7b:4d:93:3c:c7:4b:55:
e7:05:12:6f:c3:e9:79:45:63:5a:d5:49:b8:4e:e6:38:97:4a:
d8:7e:ad:8f:2f:3e:ff:e2:f3:eb:f4:01:22:a7:b1:1d:6a:d7:
4b:81:fa:2b:a4:df:ee:48:04:74:96:a7:cd:1c:c5:8a:d2:fa:
d1:5e:f6:8e:fb:9f:7f:ac:15:f6:0b:50:89:49:ad:99:32:76:
bc:f9:e2:ed:a7:99:7c:97:f0:d3:2c:7b:58:85:14:4c:2f:cf:
a9:9b:26:64:90:d2:d2:46:c9:1c:28:79:01:cf:19:bd:e5:4f:
17:25:09:fe:cf:bb:a0:ba:11:a1:74:b2:d7:d9:4f:82:e7:fa:
3e:b0:d3:45:38:72:4d:35:81:95:0d:89:d9:0c:51:ca:df:c1:
07:08:9f:fd:58:3c:18:f5:43:e6:8d:e4:a0:94:b1:26:41:4e:
ec:12:93:08:3d:9c:46:22:01:eb:82:00:ec:be:2c:e2:77:ff:
3b:43:b9:30:67:29:23:23:d5:79:c4:d1:73:66:40:0b:44:e7:
94:88:c3:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypfRvDvDevUSVOpSayJlmpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzNjgzMzBiZWEyZGZlODgwZmZhNjJmNjdiNTY2YWVhZTJk
Mjg3ZmQwHhcNMjYwMzAxMTMwMTE0WhcNMjYwMzAyMTMwMTE0WjAzMTEwLwYDVQQD
EygzNmUxOThmODY4NmNiZTU4MDUxMTJkMTc3N2E3MzMzYmVhNGY5OWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAioHbWI4eZ9XsVHAhn6ptU1p84Hka
mG0BOivG355cmoz83DE7vXD1By8q6QyKOVdB9agHQf/eKDKgkBadcw+B0Jmt2z4I
7wPY5Z8iqWMfgeJRYYjVgK/Kjq73MW2+OJVREdycrPVyKQimQwaAdRfkzyIFxhcH
YZrG9uY+f/vIBsWeXjFqivkVb54oD3kdgxmtb/6zO9QjuQI2bTjDXDG3KdSlBBqR
7OwmCRAr4C/jfEiFUSUQWP3S7WwjgX6zewgRJ8XkfRi9D879rRsxJZMyQ8DvFrFA
xWBLdFf4dDqyiO5Dsrezq++Ur7p/XdrMlm4F/7cWPIA4LBGkjUkkDFnuwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDbhmPhobL5YBREtF3enMzvqT5nJMB8GA1UdIwQY
MBaAFENoMwvqLf6ID/pi9ntWauri0of9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS84ZmMzYjAtOTcwNC00NzUxLWIxNDkt
NWEzN2Y2YTFiY2E5LzEvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS84ZmMzYjAtOTcwNC00NzUxLWIxNDktNWEzN2Y2YTFiY2E5
LzEvUTJnekMtb3Rfb2dQLW1MMmUxWnE2dUxTaF8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI5tVDC1B
87Pz2srBZRkipgS9pvJu3sy3FdMXxfDvsc6J0r+yyIlAR9uTwy6a6vJ7TZM8x0tV
5wUSb8PpeUVjWtVJuE7mOJdK2H6tjy8+/+Lz6/QBIqexHWrXS4H6K6Tf7kgEdJan
zRzFitL60V72jvuff6wV9gtQiUmtmTJ2vPni7aeZfJfw0yx7WIUUTC/PqZsmZJDS
0kbJHCh5Ac8ZveVPFyUJ/s+7oLoRoXSy19lPguf6PrDTRThyTTWBlQ2J2QxRyt/B
Bwif/Vg8GPVD5o3koJSxJkFO7BKTCD2cRiIB64IA7L4s4nf/O0O5MGcpIyPVecTR
c2ZAC0TnlIjD3A==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:43:31 2026 by rpki-client