Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
File: 0xQt8vZwlAzPWksnoNDJh-zIhlY.mft (raw, json)
Hash identifier: MN6FUbpyHS3h9w54d3805+M0KPz33I0d+xH7z8XS1PE=
Subject key identifier: 17:60:FA:D3:AF:CC:A5:73:93:79:CB:2F:7B:9A:01:D9:5C:E3:C6:9C
Authority key identifier: D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56
Certificate issuer: /CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656
Certificate serial: 019CAC4729C05F407F9C179130D8F64E09D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
Manifest number: 0558
Signing time: Mon 02 Mar 2026 02:01:10 +0000
Manifest this update: Mon 02 Mar 2026 02:01:10 +0000
Manifest next update: Tue 03 Mar 2026 02:01:10 +0000
Files and hashes: 1: 0xQt8vZwlAzPWksnoNDJh-zIhlY.crl (hash: H8Al78wR2ExmqQRFQEk8cXviBBV4eHT6Ym+Fl2JQXG4=)
2: iWvUwAU_qvWcuMvoIuoO-qPVv9c.roa (hash: FGFkjOVAlseZE4i4Gp+aJPkMH2fpBKQOFk0SOsvRbNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:29:c0:5f:40:7f:9c:17:91:30:d8:f6:4e:09:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656
Validity
Not Before: Mar 2 02:01:10 2026 GMT
Not After : Mar 3 02:01:10 2026 GMT
Subject: CN=1760fad3afcca5739379cb2f7b9a01d95ce3c69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:eb:78:aa:f6:d5:6e:83:15:8b:5d:48:85:e4:
fd:9a:af:de:71:93:87:d2:2c:9c:ce:50:3d:fb:29:
95:cc:c0:c4:9d:f3:b5:00:03:e6:1b:aa:37:8d:02:
cf:a1:ec:7d:b4:8a:70:1f:e7:c8:d9:d4:f4:75:fa:
f9:5e:37:91:6d:28:6c:80:85:94:3c:21:d1:a1:60:
38:b8:5b:d2:e8:72:32:68:b5:07:5b:26:77:d7:72:
f4:7a:1f:a3:43:90:72:f3:54:7d:da:41:9c:82:e6:
7e:a7:6a:78:56:96:36:e5:48:18:5e:78:55:54:ee:
30:b0:4b:43:3d:57:29:15:01:4f:4b:41:84:33:42:
ee:04:e6:a3:3b:ff:2b:a5:f2:c0:2c:02:67:aa:ae:
1f:75:ff:d5:d1:01:85:d0:8d:f4:84:e2:d4:f1:1b:
85:68:3b:c4:9d:14:c6:31:e0:50:95:e1:c7:be:d9:
01:45:df:7f:5a:59:85:d9:2b:68:1e:96:b3:48:09:
3c:7f:42:cb:3f:1e:68:c3:f0:c6:b5:47:fd:ec:46:
34:da:77:9b:58:12:56:0c:0c:36:83:4a:6d:fb:23:
27:ca:d6:98:14:99:0e:49:d0:57:a2:7d:a4:5f:3d:
e4:67:d5:89:37:98:0a:9e:f9:13:04:90:3d:fd:a0:
48:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:60:FA:D3:AF:CC:A5:73:93:79:CB:2F:7B:9A:01:D9:5C:E3:C6:9C
X509v3 Authority Key Identifier:
keyid:D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:e4:83:0b:f5:d8:ff:66:e1:d9:f1:e0:07:46:f4:94:81:5d:
c4:90:ec:03:aa:7a:95:ab:2c:26:fa:bc:34:46:26:91:d9:08:
6a:c1:5a:36:2f:f2:db:a4:a8:bc:ee:00:49:11:d2:aa:71:fd:
1d:67:36:3a:11:38:ec:10:b3:bb:ef:c9:4c:6c:e8:7c:11:f8:
3a:57:f1:4a:3c:9a:55:b5:c1:f6:68:a9:9c:3a:f8:f9:3a:39:
7e:7e:5b:92:10:9b:86:bc:8c:3c:7b:25:61:93:77:b9:bd:83:
64:ed:6e:44:53:ba:5b:e1:70:b1:43:56:fa:eb:c3:f2:3f:c9:
0e:12:82:7b:e0:3b:86:15:3a:8c:13:dd:98:e3:ab:7a:f6:ec:
43:d6:17:ca:1c:82:45:d3:e1:d8:35:17:0c:f2:3b:92:6d:75:
fe:80:87:14:ab:e0:cc:b4:3f:70:0b:ee:d8:e2:d9:bc:fd:6f:
1a:f7:80:7b:c5:97:3a:5f:6a:d6:e3:23:56:59:b8:55:16:59:
4e:a2:f8:b3:3c:ea:34:87:08:e4:e4:b4:82:6a:60:53:82:59:
39:fd:e2:36:11:26:fb:54:6c:be:a9:c3:8c:5e:10:cd:4d:b0:
94:e4:ac:7d:1f:c4:13:83:65:0c:a7:e2:64:a7:8f:2b:34:a6:
9b:a0:8e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:27:23 2026 by rpki-client