Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
File: DQh0szPjXfFP2XDhiVgdoJO8gJM.mft (raw, json)
Hash identifier: RwF9WI0qO0SSWVDeBiqUxjZcEloQEJzbrBwvd8/UnMk=
Subject key identifier: 30:7C:58:87:68:EA:6B:46:95:C3:11:BA:37:D1:AC:CE:10:FD:0A:EF
Authority key identifier: 0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93
Certificate issuer: /CN=0d0874b333e35df14fd970e189581da093bc8093
Certificate serial: 019CACEBEFFFAB8A295BEC0477269E7B7D03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
Manifest number: 184D
Signing time: Mon 02 Mar 2026 05:01:09 +0000
Manifest this update: Mon 02 Mar 2026 05:01:09 +0000
Manifest next update: Tue 03 Mar 2026 05:01:09 +0000
Files and hashes: 1: DQh0szPjXfFP2XDhiVgdoJO8gJM.crl (hash: +CoofUgTXoYNmefnSzbkN2PO6LtkG4aa4ld9E3DnNo0=)
2: X45FUcZNo-YtDvtPWevU4wJ2FEY.roa (hash: rSd13zzClfxZXjpfUKzjtwc06S4fldzcQ0W8TuRXJxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:ef:ff:ab:8a:29:5b:ec:04:77:26:9e:7b:7d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d0874b333e35df14fd970e189581da093bc8093
Validity
Not Before: Mar 2 05:01:09 2026 GMT
Not After : Mar 3 05:01:09 2026 GMT
Subject: CN=307c588768ea6b4695c311ba37d1acce10fd0aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:31:48:b1:30:46:93:97:9b:57:e1:03:c8:99:
39:c5:1e:b8:f0:d7:67:99:63:6e:e8:ab:4f:6e:fe:
e5:d2:34:5b:6c:86:ab:fa:f2:ba:f0:0a:7e:7b:62:
6f:db:c5:1d:e2:d1:c3:c5:43:0a:ac:df:87:4d:f5:
f4:2f:8c:cf:ee:73:2d:4e:75:d5:f3:b5:9e:24:a5:
49:00:c5:e3:04:56:41:55:90:de:58:b7:74:81:d8:
d8:11:6b:5a:70:33:73:4e:7c:d6:22:85:ba:8d:dc:
6f:48:b7:04:ca:c3:e5:cb:85:72:14:77:0c:5a:67:
24:11:f4:fc:1f:8b:c7:ae:71:2e:f3:93:16:9d:ee:
9a:b0:0e:a1:72:d4:4a:c9:39:d7:0f:87:c6:c8:c5:
82:d4:52:25:8f:9d:4b:eb:3b:69:c8:b7:ef:0d:4b:
6b:c3:3d:ea:e7:5e:63:d7:2b:c5:fe:06:90:e1:cf:
11:02:bb:6c:f1:d8:bc:1c:83:73:87:88:3c:43:44:
ff:ca:06:68:a6:aa:88:52:9c:ff:23:da:34:2e:1f:
69:8a:24:4a:11:ba:d4:62:5c:24:ec:9a:d2:43:95:
8e:46:87:63:14:56:37:98:a9:06:f2:42:f4:d0:69:
14:ad:70:21:f8:23:73:66:e0:97:90:27:58:e5:75:
f4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7C:58:87:68:EA:6B:46:95:C3:11:BA:37:D1:AC:CE:10:FD:0A:EF
X509v3 Authority Key Identifier:
keyid:0D:08:74:B3:33:E3:5D:F1:4F:D9:70:E1:89:58:1D:A0:93:BC:80:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQh0szPjXfFP2XDhiVgdoJO8gJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b039bc-213b-457c-96ae-3181db911a13/1/DQh0szPjXfFP2XDhiVgdoJO8gJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:38:40:be:36:77:78:de:4e:b9:a8:a7:da:7e:2d:bb:dc:1d:
b8:f5:e8:d6:1b:44:71:b8:93:f0:d6:3b:cd:90:bb:09:f1:24:
7d:c6:bb:cd:f4:a0:fb:ff:43:8c:f0:b5:d1:01:65:6a:50:e2:
49:f6:4e:1b:91:65:03:8e:34:db:5a:86:37:f5:df:5e:be:15:
eb:20:07:d5:92:42:80:9c:27:85:5a:02:5e:af:ba:ec:2f:c8:
78:da:16:74:23:bf:6e:07:bd:ea:09:71:87:4c:ff:52:e0:15:
5a:8e:3e:fd:6a:be:14:fa:12:ee:21:e5:cb:ef:a9:24:f0:a9:
81:02:a0:20:ed:c7:7d:95:cd:5f:9a:e3:de:95:6d:6b:31:6d:
4c:4a:15:ee:83:5b:76:a2:aa:cf:c6:1e:6e:ea:d7:3e:7a:35:
a6:49:8b:f1:f0:3c:41:5c:3d:51:ac:29:7b:fa:05:91:c3:cb:
13:28:28:c1:76:9c:2f:b3:b1:2f:bb:4e:a8:de:43:98:eb:20:
e6:b0:67:4c:5a:92:0f:7d:dd:a2:ee:99:85:32:eb:4c:ea:d0:
ba:cd:b9:8c:96:fb:c9:96:bc:df:32:e7:07:99:b1:c8:3f:2b:
2a:03:25:13:2c:ce:a4:66:56:1f:bc:07:75:c0:c6:b9:c2:0e:
11:eb:c3:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZys6+//q4opW+wEdyaee30DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMDg3NGIzMzNlMzVkZjE0ZmQ5NzBlMTg5NTgxZGEwOTNi
YzgwOTMwHhcNMjYwMzAyMDUwMTA5WhcNMjYwMzAzMDUwMTA5WjAzMTEwLwYDVQQD
EygzMDdjNTg4NzY4ZWE2YjQ2OTVjMzExYmEzN2QxYWNjZTEwZmQwYWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTFIsTBGk5ebV+EDyJk5xR648Ndn
mWNu6KtPbv7l0jRbbIar+vK68Ap+e2Jv28Ud4tHDxUMKrN+HTfX0L4zP7nMtTnXV
87WeJKVJAMXjBFZBVZDeWLd0gdjYEWtacDNzTnzWIoW6jdxvSLcEysPly4VyFHcM
WmckEfT8H4vHrnEu85MWne6asA6hctRKyTnXD4fGyMWC1FIlj51L6ztpyLfvDUtr
wz3q515j1yvF/gaQ4c8RArts8di8HINzh4g8Q0T/ygZopqqIUpz/I9o0Lh9piiRK
EbrUYlwk7JrSQ5WORodjFFY3mKkG8kL00GkUrXAh+CNzZuCXkCdY5XX0lQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDB8WIdo6mtGlcMRujfRrM4Q/QrvMB8GA1UdIwQY
MBaAFA0IdLMz413xT9lw4YlYHaCTvICTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFFoMHN6UGpYZkZQMlhEaGlWZ2RvSk84Z0pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9iMDM5YmMtMjEzYi00NTdjLTk2YWUt
MzE4MWRiOTExYTEzLzEvRFFoMHN6UGpYZkZQMlhEaGlWZ2RvSk84Z0pNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9iMDM5YmMtMjEzYi00NTdjLTk2YWUtMzE4MWRiOTExYTEz
LzEvRFFoMHN6UGpYZkZQMlhEaGlWZ2RvSk84Z0pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXjhAvjZ3
eN5Ouain2n4tu9wduPXo1htEcbiT8NY7zZC7CfEkfca7zfSg+/9DjPC10QFlalDi
SfZOG5FlA44021qGN/XfXr4V6yAH1ZJCgJwnhVoCXq+67C/IeNoWdCO/bge96glx
h0z/UuAVWo4+/Wq+FPoS7iHly++pJPCpgQKgIO3HfZXNX5rj3pVtazFtTEoV7oNb
dqKqz8YeburXPno1pkmL8fA8QVw9Uawpe/oFkcPLEygowXacL7OxL7tOqN5DmOsg
5rBnTFqSD33dou6ZhTLrTOrQus25jJb7yZa83zLnB5mxyD8rKgMlEyzOpGZWH7wH
dcDGucIOEevD9g==
-----END CERTIFICATE-----
Generated at Mon Mar 2 10:01:56 2026 by rpki-client