Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
File: qnv9Qg21yuutoaIFXYe8faKwnAc.mft (raw, json)
Hash identifier: xv3i4hXXVQRcupTbugQoGXS/9Apua2QCGTBFapl3/Pw=
Subject key identifier: 64:7F:C5:A2:96:92:D0:CD:B6:11:46:F2:9B:FF:3B:1D:F2:77:41:45
Authority key identifier: AA:7B:FD:42:0D:B5:CA:EB:AD:A1:A2:05:5D:87:BC:7D:A2:B0:9C:07
Certificate issuer: /CN=aa7bfd420db5caebada1a2055d87bc7da2b09c07
Certificate serial: 019CAF11457E5727C8D992D1BF874FEC0840
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
Manifest number: 02E8
Signing time: Mon 02 Mar 2026 15:01:10 +0000
Manifest this update: Mon 02 Mar 2026 15:01:10 +0000
Manifest next update: Tue 03 Mar 2026 15:01:10 +0000
Files and hashes: 1: 5-EJwRqi1XA3u9gFAcZ9njZ3ubQ.roa (hash: hFNKGoVbXoj2tJMUg9incrRV/V229/edfKbWOK21tzs=)
2: qnv9Qg21yuutoaIFXYe8faKwnAc.crl (hash: L6NimBx2p+T2MZ8eLkkaEwaksiaqoAaq3qj02+htFk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:11:45:7e:57:27:c8:d9:92:d1:bf:87:4f:ec:08:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7bfd420db5caebada1a2055d87bc7da2b09c07
Validity
Not Before: Mar 2 15:01:10 2026 GMT
Not After : Mar 3 15:01:10 2026 GMT
Subject: CN=647fc5a29692d0cdb61146f29bff3b1df2774145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:1e:92:11:82:0f:3e:f3:37:fb:0e:87:69:12:
66:61:84:85:c6:9d:2a:c7:87:99:ea:9c:89:6a:43:
aa:f6:92:81:84:a6:35:7e:8d:b9:37:78:a8:7b:fd:
c9:0f:13:f4:ee:4b:aa:a2:6b:ae:cd:08:6b:af:50:
50:ec:29:3c:71:6b:be:26:f1:70:db:63:86:61:b6:
d5:6c:48:61:d3:7e:92:79:20:ff:5b:6d:fd:b1:9c:
79:72:dd:f5:44:78:85:79:bd:e7:60:83:89:cb:2e:
24:da:33:9a:d0:8b:49:ad:9a:f3:91:bf:a2:2f:6f:
1d:fe:45:a0:ca:ce:1c:b3:7c:d7:28:1e:44:c5:d4:
a0:94:a9:46:4e:98:02:7e:56:47:9d:1f:0e:41:87:
b8:17:51:04:7e:ed:68:6d:76:ce:45:79:0b:69:a5:
f7:d8:c7:10:e8:fc:49:2f:01:f8:89:60:03:49:7f:
00:a0:20:50:f6:ac:cb:60:54:cc:aa:ad:ba:f9:ce:
ab:fd:2a:ed:45:03:14:76:b9:a3:52:88:d0:1d:6c:
e4:47:8c:7b:b9:f3:46:91:dd:21:e4:96:18:41:1f:
03:2a:97:ee:6b:d2:fe:e9:6a:6a:c2:aa:b6:37:f7:
84:57:4a:a1:99:0c:56:c2:04:16:0e:6d:d1:e8:65:
72:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7F:C5:A2:96:92:D0:CD:B6:11:46:F2:9B:FF:3B:1D:F2:77:41:45
X509v3 Authority Key Identifier:
keyid:AA:7B:FD:42:0D:B5:CA:EB:AD:A1:A2:05:5D:87:BC:7D:A2:B0:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnv9Qg21yuutoaIFXYe8faKwnAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/55bd95-c637-451b-b07c-79b409c1bd38/1/qnv9Qg21yuutoaIFXYe8faKwnAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:d6:78:bc:83:23:8f:59:f5:75:24:64:17:5c:cd:4b:0f:92:
83:81:6b:39:7b:e6:7e:f8:82:b8:2e:7c:a5:cf:4f:a8:d8:c2:
81:31:15:0d:a7:93:c0:5e:40:6c:4f:d2:c2:fc:d4:f1:04:d9:
d3:f8:6f:d3:9d:f9:e0:4f:9d:d0:dd:2c:92:bf:88:1c:8f:7c:
4c:b0:fc:16:f6:10:b3:cf:e0:9e:4d:e5:c8:40:d3:82:f4:e1:
0d:e9:d1:fc:90:20:4f:e4:c0:a9:50:d2:84:17:e2:c3:e8:9d:
45:c8:ff:41:d0:10:a4:a1:fe:25:cf:2e:8a:a9:c8:67:d8:04:
93:26:fe:0d:f5:fe:27:97:13:17:0a:63:28:40:fa:25:39:f4:
2f:08:37:ed:81:ad:dd:5d:75:15:86:d3:d2:ef:51:e6:2b:e1:
29:9c:7d:32:2e:28:6e:e3:af:3d:8e:ee:c1:65:67:28:1e:62:
5c:69:d7:3b:45:7f:3a:e4:9d:6f:62:16:0c:f9:c0:46:61:91:
80:00:3f:5c:7a:ad:39:22:0c:db:4f:2b:27:45:48:0b:6d:f4:
89:10:9a:73:e0:00:76:2c:f9:0b:a7:f1:a6:c2:e3:89:5f:96:
97:22:2e:eb:61:f8:1d:b2:cb:03:4b:43:47:18:16:8f:ca:35:
54:98:00:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyvEUV+VyfI2ZLRv4dP7AhAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhN2JmZDQyMGRiNWNhZWJhZGExYTIwNTVkODdiYzdkYTJi
MDljMDcwHhcNMjYwMzAyMTUwMTEwWhcNMjYwMzAzMTUwMTEwWjAzMTEwLwYDVQQD
Eyg2NDdmYzVhMjk2OTJkMGNkYjYxMTQ2ZjI5YmZmM2IxZGYyNzc0MTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjx6SEYIPPvM3+w6HaRJmYYSFxp0q
x4eZ6pyJakOq9pKBhKY1fo25N3ioe/3JDxP07kuqomuuzQhrr1BQ7Ck8cWu+JvFw
22OGYbbVbEhh036SeSD/W239sZx5ct31RHiFeb3nYIOJyy4k2jOa0ItJrZrzkb+i
L28d/kWgys4cs3zXKB5ExdSglKlGTpgCflZHnR8OQYe4F1EEfu1obXbORXkLaaX3
2McQ6PxJLwH4iWADSX8AoCBQ9qzLYFTMqq26+c6r/SrtRQMUdrmjUojQHWzkR4x7
ufNGkd0h5JYYQR8DKpfua9L+6Wpqwqq2N/eEV0qhmQxWwgQWDm3R6GVyjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGR/xaKWktDNthFG8pv/Ox3yd0FFMB8GA1UdIwQY
MBaAFKp7/UINtcrrraGiBV2HvH2isJwHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW52OVFnMjF5dXV0b2FJRlhZZThmYUt3bkFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS81NWJkOTUtYzYzNy00NTFiLWIwN2Mt
NzliNDA5YzFiZDM4LzEvcW52OVFnMjF5dXV0b2FJRlhZZThmYUt3bkFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS81NWJkOTUtYzYzNy00NTFiLWIwN2MtNzliNDA5YzFiZDM4
LzEvcW52OVFnMjF5dXV0b2FJRlhZZThmYUt3bkFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAetZ4vIMj
j1n1dSRkF1zNSw+Sg4FrOXvmfviCuC58pc9PqNjCgTEVDaeTwF5AbE/SwvzU8QTZ
0/hv05354E+d0N0skr+IHI98TLD8FvYQs8/gnk3lyEDTgvThDenR/JAgT+TAqVDS
hBfiw+idRcj/QdAQpKH+Jc8uiqnIZ9gEkyb+DfX+J5cTFwpjKED6JTn0Lwg37YGt
3V11FYbT0u9R5ivhKZx9Mi4obuOvPY7uwWVnKB5iXGnXO0V/OuSdb2IWDPnARmGR
gAA/XHqtOSIM208rJ0VIC230iRCac+AAdiz5C6fxpsLjiV+WlyIu62H4HbLLA0tD
RxgWj8o1VJgA4A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 18:33:26 2026 by rpki-client