Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
File: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft (raw, json)
Hash identifier: I/MULldsLolNuby4nTxhYx0OoF33nY27rKd+Jr1uDso=
Subject key identifier: 5D:DA:3F:24:DA:33:5C:E9:C6:D0:A0:41:52:97:38:66:5E:E9:18:E1
Authority key identifier: D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
Certificate issuer: /CN=d50697943676399ac5cac6a3e476545af0df49dd
Certificate serial: 019CAAFD4829A6B28E36697B681F2AF9F4C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
Manifest number: 0A8E
Signing time: Sun 01 Mar 2026 20:00:51 +0000
Manifest this update: Sun 01 Mar 2026 20:00:51 +0000
Manifest next update: Mon 02 Mar 2026 20:00:51 +0000
Files and hashes: 1: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl (hash: jqyQC7q4nY6zMAPueNdQ3rzQg9woVybj3aHwfe1DZzQ=)
2: Rb6ICVosTC_zaZ16edh9MPPlC-4.roa (hash: f7bv124K8RG4yyZpz3BCEJydd5vMDmuet5IH5Sqpc1Q=)
3: X9Dk1AunWGE1Dosy-zP1Hnz0r7o.roa (hash: /pQF82MMJDZaxsI41JYaoLCQk3D/NV9NF4tHkKVR/m4=)
4: iM_ZBvtG32QBlHfVIn2ttPitF3A.roa (hash: n0U6ZQ9IjEu52Acx8IHWzTTmN0Tm9iyKYJwGHBgAhus=)
5: y81jmZh2IG1vc4T2rX8QCQEOL9E.roa (hash: Y1jjyD/MrRS3ujVJRgR28FUQy55OTENwus5vMZGjmSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:48:29:a6:b2:8e:36:69:7b:68:1f:2a:f9:f4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50697943676399ac5cac6a3e476545af0df49dd
Validity
Not Before: Mar 1 20:00:51 2026 GMT
Not After : Mar 2 20:00:51 2026 GMT
Subject: CN=5dda3f24da335ce9c6d0a041529738665ee918e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:58:d5:d0:fd:f2:91:7c:f2:5e:ce:f3:8b:15:
b9:b3:ec:3e:00:ce:73:29:00:cd:7c:e8:eb:84:fb:
fb:df:e0:43:a8:da:18:ae:50:22:5c:71:a9:f6:c4:
ce:40:b6:aa:32:80:d9:e1:b7:f3:fe:7c:03:96:0f:
d7:18:f3:12:bc:48:12:bb:34:05:b2:dd:d2:39:0f:
84:64:ac:0b:c0:25:1e:4d:a0:6f:67:d4:2c:1f:77:
67:c3:78:e9:88:47:7f:08:5e:85:6f:63:16:32:32:
47:bb:6a:0f:0f:a4:63:68:87:de:1a:ef:ab:a2:cf:
10:25:50:47:68:6a:0b:26:c7:9b:c6:c3:ef:14:66:
89:c3:21:79:a5:8a:40:3a:3d:46:51:20:17:16:7e:
89:2a:38:d1:81:8d:c3:7c:ce:4e:e9:b9:d9:83:40:
fb:69:cd:cf:41:a3:25:0d:db:3a:ee:2d:45:93:37:
c8:a4:be:f5:91:ab:5b:65:bf:57:ef:c6:01:cf:1b:
f4:92:6d:75:e0:24:03:d4:da:59:19:0b:c0:f5:7b:
b1:44:a0:c6:ef:b2:af:96:0d:61:04:59:63:42:a9:
d9:76:37:5c:45:1a:b1:19:dc:cd:ab:3e:e7:34:ab:
aa:4d:f4:61:33:63:93:6d:ef:05:8c:82:ac:eb:13:
c5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DA:3F:24:DA:33:5C:E9:C6:D0:A0:41:52:97:38:66:5E:E9:18:E1
X509v3 Authority Key Identifier:
keyid:D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:c3:fd:50:12:c9:0a:1a:59:e7:6b:ee:41:7c:76:28:b1:e2:
1c:4e:40:a2:f8:13:2e:58:23:f1:7f:a7:c3:15:f7:ff:b7:67:
34:34:58:24:84:f4:84:5a:7c:fb:e3:2d:df:5e:7c:fc:84:b9:
bc:5b:5d:85:46:ef:3d:ff:05:ef:ce:75:47:65:0f:06:86:44:
6d:ab:3c:15:56:d7:8f:29:31:de:1c:17:a2:e7:52:bc:cb:71:
f1:22:95:ca:5c:ef:eb:3a:f5:43:05:be:62:ec:e4:e1:db:6d:
61:db:bb:b3:72:16:16:43:c5:ce:ba:8a:d5:06:3b:89:cf:49:
fa:06:de:22:d5:32:b3:ad:b2:93:4c:ad:d4:1c:24:84:35:78:
c8:89:02:6f:2b:a1:ab:fb:d9:04:2e:c4:4a:ad:a1:09:55:df:
03:19:7d:fe:b2:6c:43:08:b0:b5:c4:d5:87:0e:4c:42:b6:54:
d3:a6:92:36:40:d9:f8:2a:30:75:a3:a7:0a:6a:5c:c0:9d:f4:
6f:f9:d3:39:1d:fc:e2:83:27:a1:e8:50:3b:50:e1:b1:f5:c1:
76:96:9c:7a:33:5d:62:5c:60:c4:03:77:38:f7:c0:08:26:39:
09:12:24:5b:3c:48:4d:97:76:e1:11:46:d4:60:25:a0:6e:06:
16:09:8f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:05:00 2026 by rpki-client