Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
File: qS25uA37nJVniwfvLJU9YxB_X2I.mft (raw, json)
Hash identifier: +6OsdI2DlE/9XTULOaVx0hT8vJSGDLrTdHan269f0Ds=
Subject key identifier: 14:45:22:A6:B0:DF:7C:DE:26:0F:71:19:C3:3D:E0:27:C6:92:7A:EA
Authority key identifier: A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62
Certificate issuer: /CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62
Certificate serial: 019CAC7E4AABDB091373166E4B6FBF48EFF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
Manifest number: 0AA8
Signing time: Mon 02 Mar 2026 03:01:23 +0000
Manifest this update: Mon 02 Mar 2026 03:01:23 +0000
Manifest next update: Tue 03 Mar 2026 03:01:23 +0000
Files and hashes: 1: AHY4ZcpWBg0aIiFkhUXaY2emMvk.roa (hash: XYjuOSawg9GbeUiAsIFDnNUeoKdfUJFTjZesq9ksMa4=)
2: qS25uA37nJVniwfvLJU9YxB_X2I.crl (hash: SWZ82xsg/yumrmFPC/j8eTx5I1CE88x+Kt5C06qOYA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:4a:ab:db:09:13:73:16:6e:4b:6f:bf:48:ef:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a92db9b80dfb9c95678b07ef2c953d63107f5f62
Validity
Not Before: Mar 2 03:01:23 2026 GMT
Not After : Mar 3 03:01:23 2026 GMT
Subject: CN=144522a6b0df7cde260f7119c33de027c6927aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f9:fe:b9:55:94:b8:27:9f:8a:c7:fc:9e:f4:
0e:4e:26:63:6e:bd:28:f3:25:03:8a:02:7d:ef:35:
75:f4:38:ab:e3:de:ab:f9:23:47:bc:4b:c4:f2:9c:
34:73:4c:49:13:bc:ae:03:98:83:78:25:4f:10:3f:
2f:84:d5:50:d0:43:c8:17:b5:09:d7:f6:49:ce:74:
1b:e7:f5:90:32:bf:20:45:34:2d:0e:b7:05:4f:b3:
8d:e6:a9:50:c7:30:ff:f8:f1:10:03:43:97:aa:da:
79:78:a0:c5:75:ad:5e:3c:94:bc:9f:5e:0b:2f:f2:
97:60:56:f9:a6:d6:fd:e6:d5:56:de:1a:83:5f:b1:
da:5c:57:ec:73:4d:7b:76:1d:ea:50:d6:36:fc:c2:
a2:b7:22:ff:25:b4:26:ca:e0:e4:ed:82:95:77:55:
8e:20:a7:a5:10:e3:fd:bf:64:eb:da:b6:62:f2:28:
77:34:f5:b9:f5:47:87:c1:c6:30:53:18:78:28:51:
69:e7:03:94:f9:19:f1:48:5c:27:1e:b6:3f:8a:94:
df:3c:cb:66:f6:ab:ab:f4:36:fd:7f:0e:de:93:e1:
fa:fa:86:31:f3:2c:23:4f:e3:bb:cb:20:ac:8c:c5:
49:ea:3c:a4:9e:48:7e:9b:e5:4d:ef:bd:e9:e9:25:
76:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:45:22:A6:B0:DF:7C:DE:26:0F:71:19:C3:3D:E0:27:C6:92:7A:EA
X509v3 Authority Key Identifier:
keyid:A9:2D:B9:B8:0D:FB:9C:95:67:8B:07:EF:2C:95:3D:63:10:7F:5F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qS25uA37nJVniwfvLJU9YxB_X2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/42b3bb-1935-478b-a302-cb7a5fd1ac47/1/qS25uA37nJVniwfvLJU9YxB_X2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:db:4f:0c:3a:24:63:5b:b0:71:f0:ab:1d:e3:f8:c1:c9:5a:
d6:1c:b8:9d:2f:cf:e1:e8:61:7a:e3:14:6a:52:53:69:03:66:
a8:1c:2e:2c:56:fa:58:90:9a:06:ee:0a:5d:7f:28:35:13:f5:
6b:ce:a0:60:84:5f:92:6b:89:0b:0a:7e:3c:fc:70:61:63:a3:
d9:59:74:30:81:db:29:e1:5c:9b:47:d7:0b:6d:7f:85:50:14:
c5:d7:53:60:a5:83:e4:3b:32:7e:e9:5f:9b:28:0a:3a:e0:d4:
d9:45:bc:82:75:86:e2:c7:e6:f4:87:f1:03:89:cc:03:99:ab:
25:57:1f:e2:cb:af:af:b6:63:ad:e3:2c:4c:6e:e6:10:ac:99:
8e:12:42:d8:65:2f:33:2e:5c:10:9f:b9:7f:30:28:85:e4:76:
9d:49:7e:12:cc:4f:ab:56:37:7e:2d:e7:28:f5:7d:13:ce:ca:
45:12:07:1d:13:b0:8a:69:a7:f2:87:ee:8c:2b:98:8a:23:6f:
23:35:87:cc:4b:42:74:25:34:b8:26:78:95:78:75:ba:af:43:
9f:1b:99:2f:e2:f5:b6:3b:0d:6c:f5:bd:c7:b4:0d:fe:5e:b9:
28:fb:0d:fb:55:fe:63:c4:bc:b1:8c:00:d8:21:58:a8:7d:dd:
5a:93:61:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:50:14 2026 by rpki-client