Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
File: q9lqrojvmbTVDknsrpyuSPN4gfc.mft (raw, json)
Hash identifier: DB//j5LsjdZwBojQlWQLn/NE5NQAJDthyX1LFtnTBIc=
Subject key identifier: F4:02:6F:7D:96:5F:29:81:6F:15:8B:12:2D:A9:CD:B8:1E:AA:35:64
Authority key identifier: AB:D9:6A:AE:88:EF:99:B4:D5:0E:49:EC:AE:9C:AE:48:F3:78:81:F7
Certificate issuer: /CN=abd96aae88ef99b4d50e49ecae9cae48f37881f7
Certificate serial: 019CAAFCF8296590AF8142DBC7152380133F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
Manifest number: 0495
Signing time: Sun 01 Mar 2026 20:00:31 +0000
Manifest this update: Sun 01 Mar 2026 20:00:31 +0000
Manifest next update: Mon 02 Mar 2026 20:00:31 +0000
Files and hashes: 1: 1-DN9R_xhKOI4mV80WkUcPVaagQc.roa (hash: ASJpdR212uLae0GK1ckKJRJ0hpliZAorVI6HruZ1pYo=)
2: q9lqrojvmbTVDknsrpyuSPN4gfc.crl (hash: 4KboFH8BEKtqVmjWki6X7o7rhh8WO6TfuBHL+xuro7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fc:f8:29:65:90:af:81:42:db:c7:15:23:80:13:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abd96aae88ef99b4d50e49ecae9cae48f37881f7
Validity
Not Before: Mar 1 20:00:31 2026 GMT
Not After : Mar 2 20:00:31 2026 GMT
Subject: CN=f4026f7d965f29816f158b122da9cdb81eaa3564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:da:e8:e1:c9:b5:df:f7:7c:05:71:89:0b:d4:
5c:8f:9d:2a:07:cc:32:e9:43:c8:18:08:1a:5d:df:
a2:c3:e0:00:f3:b7:b9:45:bd:c3:f1:eb:d9:9a:db:
e0:5b:96:51:f0:2a:c6:b2:eb:38:f3:ff:b7:3a:8c:
6e:24:82:e9:16:3f:93:b2:4d:cc:b8:73:79:75:f4:
86:6c:41:df:41:24:17:81:24:ba:50:c0:81:d3:54:
87:39:05:9a:20:4d:0b:6a:4e:e0:ce:c8:23:35:03:
ed:4c:39:62:6d:9d:d7:8d:27:c3:62:06:92:3b:b0:
b1:d5:b8:f1:16:c7:01:73:36:52:a9:f3:d3:4d:13:
f0:36:b7:00:a9:d7:22:eb:95:49:b6:fb:bc:90:b0:
c3:a3:82:07:2c:52:76:09:9f:70:a6:d4:7f:e2:65:
39:e3:0f:f6:6f:24:42:31:90:ef:f2:78:3b:87:36:
6c:5b:14:cd:47:c4:88:ce:55:c9:4e:0b:25:04:cd:
11:01:e1:ad:46:81:27:45:ad:08:b2:d9:59:5c:83:
c9:82:3a:92:54:2b:f6:b9:14:f4:e5:df:c3:a6:b3:
d2:ca:0e:f2:7a:1e:a2:14:c3:83:d9:1a:74:8c:51:
a5:34:c8:94:0d:9c:dc:20:de:62:d1:46:8e:02:9b:
4a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:02:6F:7D:96:5F:29:81:6F:15:8B:12:2D:A9:CD:B8:1E:AA:35:64
X509v3 Authority Key Identifier:
keyid:AB:D9:6A:AE:88:EF:99:B4:D5:0E:49:EC:AE:9C:AE:48:F3:78:81:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9lqrojvmbTVDknsrpyuSPN4gfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3f9619-4bd0-4aba-90e2-7c3f8c40c510/1/q9lqrojvmbTVDknsrpyuSPN4gfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:c8:9d:a8:2d:6f:81:3e:a9:b5:86:3f:29:af:b6:99:e4:c7:
7f:28:84:b1:69:62:d3:9a:37:b9:73:bd:7a:af:ac:cd:57:8e:
a9:a2:08:15:d1:cf:43:fc:70:6f:02:a9:f3:08:53:c3:eb:54:
b0:db:1f:64:e2:26:c4:ac:8b:5e:a5:ac:ad:63:00:5d:d1:09:
e3:20:e7:8b:4d:aa:b4:3b:4c:b8:d4:28:76:78:45:dd:ce:33:
62:30:8e:82:4a:cb:2e:43:80:f7:f4:a6:9d:a7:56:2e:f5:c3:
e8:fa:6e:db:8a:f6:14:a6:58:c0:3d:93:06:33:69:21:28:6d:
39:f1:ed:9a:bf:21:2c:60:45:35:b9:21:84:07:48:b0:a1:d8:
9d:78:1c:a1:f3:f3:59:a1:fb:31:ae:5d:7d:58:df:95:47:d3:
52:bf:63:15:30:50:a1:80:a0:03:29:f9:d6:13:7f:dc:52:47:
05:7f:f9:cd:79:b3:ba:d2:f8:e6:82:ca:38:e4:10:e6:bf:7a:
9e:fd:a1:c1:5d:1c:84:3b:60:ec:00:b0:29:6f:2d:a7:65:21:
7b:41:cc:1b:2d:12:1b:ca:44:d0:0f:6b:e2:c5:d9:fe:95:91:
b7:51:f4:7a:cf:23:03:60:ca:cb:94:4b:dc:63:5a:9e:5d:27:
f9:8e:11:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:14:17 2026 by rpki-client