Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
File: qHxnPzWntwWmtCTTORT6OS07li4.mft (raw, json)
Hash identifier: 6B/RVD9TBPlS+eEN4Xc87bmjsKx8yhbgMaIDHzQu/N4=
Subject key identifier: E8:01:2C:B7:9F:BB:A2:A5:91:95:76:7A:FC:C7:AB:57:BA:20:68:25
Authority key identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
Certificate issuer: /CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Certificate serial: 019CAB6B0BC14FAA4AACD246F90A29E29EC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
Manifest number: 0AC1
Signing time: Sun 01 Mar 2026 22:00:45 +0000
Manifest this update: Sun 01 Mar 2026 22:00:45 +0000
Manifest next update: Mon 02 Mar 2026 22:00:45 +0000
Files and hashes: 1: MdQ19d3eFkD78fJxuXq5iy-2rpM.roa (hash: rp9j2xxR/tRXFv1++j74kJ2PghVMO1/nSR5xC0/6LuE=)
2: qHxnPzWntwWmtCTTORT6OS07li4.crl (hash: zWkFirdegaxq8zygtCnsgNOXGg3iu/k8CPjFzu4MuGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:0b:c1:4f:aa:4a:ac:d2:46:f9:0a:29:e2:9e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Validity
Not Before: Mar 1 22:00:45 2026 GMT
Not After : Mar 2 22:00:45 2026 GMT
Subject: CN=e8012cb79fbba2a59195767afcc7ab57ba206825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:80:c4:82:7a:56:ba:12:4e:6e:26:71:50:ca:
8b:8a:82:b6:f6:6a:74:99:b2:6e:75:d1:a2:7d:72:
da:02:97:54:1e:ec:52:5e:4e:67:b3:39:c0:3e:2d:
8e:04:01:8c:06:38:41:63:e2:e5:72:9e:f7:b0:34:
70:64:83:02:08:99:e4:74:1c:06:2e:c8:d2:bb:26:
22:5b:2e:23:3f:2e:c0:4e:6e:09:be:1c:7b:be:24:
4c:4a:d0:bf:2a:e6:a4:21:33:db:86:f3:85:37:39:
e4:d9:d6:02:c2:81:e3:19:a0:f0:39:51:aa:e6:b0:
26:c4:8e:fc:6e:ac:e1:6f:5f:34:66:7c:5a:b1:95:
3b:a7:2f:bb:b4:79:c0:64:15:5f:9b:68:40:c2:3b:
06:5f:f5:5f:31:6b:98:85:36:e3:70:62:b1:e6:73:
d8:a1:ed:04:0f:a4:af:9b:72:2d:1d:f1:cb:38:c3:
b3:21:ef:49:09:82:30:2c:2a:46:a2:0b:59:6d:03:
53:e2:ea:cc:f0:ff:2d:b5:7e:9f:6e:c0:30:2e:9b:
69:1c:6f:9e:f9:69:6a:7d:a4:8e:af:a1:4d:6e:2c:
99:8f:39:9c:0d:6d:73:0a:f0:0f:39:ef:63:63:c8:
7d:47:0b:e0:25:f4:98:bd:38:1b:9d:f7:8c:03:15:
0f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:01:2C:B7:9F:BB:A2:A5:91:95:76:7A:FC:C7:AB:57:BA:20:68:25
X509v3 Authority Key Identifier:
keyid:A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:41:3e:d9:bf:f5:59:2a:1e:29:48:3b:f3:71:37:9f:5a:a2:
7b:4e:57:17:44:89:b7:41:52:8e:93:a2:1f:34:f1:68:48:1d:
f6:ad:92:b8:64:a1:c7:5b:14:4a:ac:5f:02:51:fb:74:d9:64:
43:3d:2a:db:4a:c8:73:af:12:01:99:39:fc:97:fb:53:aa:da:
cb:74:c0:7a:91:30:36:00:c7:1e:1c:b7:65:1c:9c:1a:0f:5e:
f8:60:15:1f:1c:d2:0e:93:a5:f8:9a:2c:78:83:9d:c6:55:a6:
34:e6:8d:54:2a:fe:a9:c4:87:db:f7:6f:39:fd:a2:ca:db:ff:
84:f3:fc:ba:de:f5:52:2b:79:92:1e:33:99:c2:85:85:6b:99:
ae:8f:d1:01:40:55:c5:de:3a:d3:00:dd:9a:de:b8:4c:cc:cc:
6c:b9:fa:7f:9b:10:a1:72:16:88:4a:84:16:bb:e8:6a:cf:9a:
53:f2:18:f4:13:96:c7:c5:96:1b:d4:12:9b:8b:16:ca:09:4d:
df:44:34:7a:1f:92:dd:7d:fb:e7:47:61:e6:06:60:43:43:c3:
77:2d:7b:ee:89:9c:63:9d:37:3a:2a:07:25:f7:44:43:07:22:
1b:de:0b:08:ab:c7:52:6a:b4:01:f6:60:c3:b2:6b:3a:71:bf:
f8:2a:8e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:30:48 2026 by rpki-client