Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
File: Q94YPxSj8k-bhtBE-HcphoC1Ers.mft (raw, json)
Hash identifier: UZER5L3QfDPoqw3cDWjlNt6Z3YzIcKcO6kgyw9Gxxys=
Subject key identifier: E0:10:BE:ED:31:75:72:82:A3:AD:68:C6:44:43:E4:90:86:83:6B:70
Authority key identifier: 43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
Certificate issuer: /CN=43de183f14a3f24f9b86d044f877298680b512bb
Certificate serial: 019CAA21441302F124C10AB472A5A66D817B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
Manifest number: 06AF
Signing time: Sun 01 Mar 2026 16:00:32 +0000
Manifest this update: Sun 01 Mar 2026 16:00:32 +0000
Manifest next update: Mon 02 Mar 2026 16:00:32 +0000
Files and hashes: 1: Q94YPxSj8k-bhtBE-HcphoC1Ers.crl (hash: msdHb3sz1m0HWNPczoUfuXvux+ncC23ZAIj7phdGCr0=)
2: Ry5ogaq6xel6bb_wfpnNMOgHoYY.asa (hash: bj382q+fQvCb8yK5gj2+0feyLhrIoXjHwjxqqTWqDdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:44:13:02:f1:24:c1:0a:b4:72:a5:a6:6d:81:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43de183f14a3f24f9b86d044f877298680b512bb
Validity
Not Before: Mar 1 16:00:32 2026 GMT
Not After : Mar 2 16:00:32 2026 GMT
Subject: CN=e010beed31757282a3ad68c64443e49086836b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:04:7f:22:b7:be:d4:5c:84:dd:33:c1:97:74:
b0:d7:8a:e8:9f:73:72:1a:7a:f0:d0:d0:32:08:32:
6a:20:b7:8f:9d:bf:14:9d:fd:40:cf:70:16:cd:d4:
76:39:9b:19:0c:6e:d7:7c:e5:c2:0b:64:d6:9f:3b:
08:c5:06:53:30:7b:fb:eb:61:54:5f:b5:a9:ae:63:
08:ff:ef:9f:e2:a3:9f:e5:34:0a:25:8f:6b:9a:c9:
6c:25:f1:24:da:a4:53:86:ef:2b:85:ff:38:43:18:
58:98:4e:44:7a:c2:9d:73:37:7f:13:f6:a7:a7:4b:
76:8e:a9:a1:45:3c:23:b0:f6:f8:fb:b9:2d:43:b5:
d3:e0:11:e1:73:58:88:ed:11:34:49:9f:5f:05:83:
61:6a:f8:40:1f:40:b9:c7:fb:b1:e9:37:97:15:cb:
d0:fd:d8:98:46:2f:5e:42:1e:5b:22:71:0f:70:79:
d3:08:ba:e0:ac:e8:81:76:06:5a:98:9c:5f:03:ec:
2f:46:9a:ef:87:6d:1c:b6:a5:e1:59:09:4c:86:0c:
28:42:b6:c6:db:ee:2a:52:84:89:6c:75:40:8c:46:
61:e4:6c:89:61:ce:0a:62:01:a4:0a:a0:a8:25:89:
b6:1d:dd:e1:f4:8c:58:38:0d:24:41:16:be:12:40:
ed:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:10:BE:ED:31:75:72:82:A3:AD:68:C6:44:43:E4:90:86:83:6B:70
X509v3 Authority Key Identifier:
keyid:43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:75:b9:8b:4c:b3:bc:dc:23:de:bd:dd:23:ba:cb:34:80:0f:
2e:59:21:f8:c3:e1:67:33:82:ee:b6:a7:df:2a:81:23:bb:0d:
82:fc:77:4b:98:a0:3d:4a:ca:c4:5a:1b:3f:fd:fb:8a:21:41:
d7:98:30:75:c9:fc:20:51:fd:2f:96:ad:de:f9:74:cc:79:90:
92:68:1b:3b:ae:5f:0f:8e:5e:09:b7:00:58:9a:59:e9:2c:9f:
26:eb:fb:62:c3:87:c8:50:4f:fb:6d:52:d6:a2:bf:f3:59:3c:
85:dd:60:46:61:12:9a:b4:ac:c8:52:78:90:b1:c2:ab:c1:ed:
8c:fd:5f:5c:c7:48:ff:e2:22:a3:9d:a2:bf:17:51:09:e4:73:
85:ac:45:f7:3e:fb:4b:9d:64:50:5e:01:ce:30:32:3b:a2:74:
78:c5:e7:e3:78:82:a8:c1:40:a1:2c:a2:d5:0d:42:0e:19:51:
1a:4a:95:de:20:0d:7e:1b:0b:3a:7d:6d:06:9b:43:be:84:34:
f4:f8:6a:84:6e:d1:07:ef:2d:8f:03:2f:28:b1:94:de:0a:38:
18:87:a1:93:5a:34:6d:7c:f5:82:7b:6b:9f:f2:26:23:03:56:
4f:5c:9f:23:b0:bd:ab:ca:8c:24:d7:35:cd:63:31:5e:f7:22:
70:f3:62:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqIUQTAvEkwQq0cqWmbYF7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzZGUxODNmMTRhM2YyNGY5Yjg2ZDA0NGY4NzcyOTg2ODBi
NTEyYmIwHhcNMjYwMzAxMTYwMDMyWhcNMjYwMzAyMTYwMDMyWjAzMTEwLwYDVQQD
EyhlMDEwYmVlZDMxNzU3MjgyYTNhZDY4YzY0NDQzZTQ5MDg2ODM2YjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswR/Ire+1FyE3TPBl3Sw14ron3Ny
Gnrw0NAyCDJqILePnb8Unf1Az3AWzdR2OZsZDG7XfOXCC2TWnzsIxQZTMHv762FU
X7WprmMI/++f4qOf5TQKJY9rmslsJfEk2qRThu8rhf84QxhYmE5EesKdczd/E/an
p0t2jqmhRTwjsPb4+7ktQ7XT4BHhc1iI7RE0SZ9fBYNhavhAH0C5x/ux6TeXFcvQ
/diYRi9eQh5bInEPcHnTCLrgrOiBdgZamJxfA+wvRprvh20ctqXhWQlMhgwoQrbG
2+4qUoSJbHVAjEZh5GyJYc4KYgGkCqCoJYm2Hd3h9IxYOA0kQRa+EkDtGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOAQvu0xdXKCo61oxkRD5JCGg2twMB8GA1UdIwQY
MBaAFEPeGD8Uo/JPm4bQRPh3KYaAtRK7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9lMmQ4ZmUtMDFmMS00YzU2LTkxZjgt
ZGVkNzQzMTQ3ZDU4LzEvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9lMmQ4ZmUtMDFmMS00YzU2LTkxZjgtZGVkNzQzMTQ3ZDU4
LzEvUTk0WVB4U2o4ay1iaHRCRS1IY3Bob0MxRXJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdnW5i0yz
vNwj3r3dI7rLNIAPLlkh+MPhZzOC7ran3yqBI7sNgvx3S5igPUrKxFobP/37iiFB
15gwdcn8IFH9L5at3vl0zHmQkmgbO65fD45eCbcAWJpZ6SyfJuv7YsOHyFBP+21S
1qK/81k8hd1gRmESmrSsyFJ4kLHCq8HtjP1fXMdI/+Iio52ivxdRCeRzhaxF9z77
S51kUF4BzjAyO6J0eMXn43iCqMFAoSyi1Q1CDhlRGkqV3iANfhsLOn1tBptDvoQ0
9PhqhG7RB+8tjwMvKLGU3go4GIehk1o0bXz1gntrn/ImIwNWT1yfI7C9q8qMJNc1
zWMxXvcicPNipA==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:56 2026 by rpki-client