Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
File: qERYOVOgK8amaZ3pJ89FcAfwVSg.mft (raw, json)
Hash identifier: JQHXReC3mtaVHBIEYQUaUga2cDagzJXCAXjOHZrtDOs=
Subject key identifier: 3D:05:3A:06:59:BF:8F:24:CB:29:5B:7C:EE:14:C7:98:13:71:D4:94
Authority key identifier: A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
Certificate issuer: /CN=a844583953a02bc6a6699de927cf457007f05528
Certificate serial: 019CACEB7C1AB083E4F4721129A03734E536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
Manifest number: DE
Signing time: Mon 02 Mar 2026 05:00:39 +0000
Manifest this update: Mon 02 Mar 2026 05:00:39 +0000
Manifest next update: Tue 03 Mar 2026 05:00:39 +0000
Files and hashes: 1: bzuHav72txau2Blj1JcbQR-3zHA.roa (hash: TCvNISq9G9+8+m7g0vleezt4nSYPh9D8kXCKj2MC7tQ=)
2: qERYOVOgK8amaZ3pJ89FcAfwVSg.crl (hash: 7RYYoTgfZJrupXyO1H2mWKTU4lo1KG8dcaAIgg9e4ig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:7c:1a:b0:83:e4:f4:72:11:29:a0:37:34:e5:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a844583953a02bc6a6699de927cf457007f05528
Validity
Not Before: Mar 2 05:00:39 2026 GMT
Not After : Mar 3 05:00:39 2026 GMT
Subject: CN=3d053a0659bf8f24cb295b7cee14c7981371d494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:af:9b:55:5e:90:23:49:b3:33:aa:37:26:0a:
57:d4:22:4a:cc:1f:41:a5:d0:6c:03:ef:30:a1:b9:
38:bd:48:b4:af:12:dd:56:1f:b2:0a:36:21:97:a0:
ef:37:7d:e1:2f:f7:53:13:7d:bf:ae:0c:23:e6:f1:
87:7e:65:b1:c5:46:76:98:58:0a:40:88:bd:81:6e:
b5:eb:d8:68:13:d8:e2:2d:39:6c:c9:2d:12:93:14:
d0:b3:b6:aa:ae:fc:51:75:f7:88:45:8e:95:6c:66:
ec:80:70:fa:8a:0d:9c:92:84:e3:a4:c3:0a:28:cd:
bb:6e:96:ee:56:99:e6:9b:ae:67:1d:02:1b:45:55:
a0:e6:61:da:b8:bb:20:01:64:42:c6:41:45:ea:c9:
3b:c8:18:3d:e0:9a:a0:77:bd:55:f6:23:9f:e2:78:
11:51:f1:89:2e:c0:0c:91:34:c2:42:1f:21:95:89:
66:80:0f:4c:f9:cc:85:ce:0d:56:f0:48:13:18:e2:
57:8a:52:4d:f7:e5:d9:ca:40:e7:8a:fb:ae:e6:0e:
fc:77:68:41:4a:d4:a7:73:f8:43:e5:fc:fc:b5:79:
28:d5:3b:2f:01:51:8f:40:cb:7c:3e:fe:07:18:08:
51:da:2b:c4:38:4a:81:5f:92:20:fd:5d:5f:6a:1d:
c1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:05:3A:06:59:BF:8F:24:CB:29:5B:7C:EE:14:C7:98:13:71:D4:94
X509v3 Authority Key Identifier:
keyid:A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:1a:9b:4d:b0:fe:fe:05:e7:93:bb:a4:4e:d6:ca:34:d5:74:
b8:af:89:b7:19:c6:ad:fa:b1:2c:dc:c7:a6:9a:bd:26:f0:26:
b0:79:60:85:a2:a0:ee:02:b3:d3:12:b3:ed:04:fe:5c:3b:22:
17:e0:7b:b9:c0:fa:95:6b:df:79:ef:b0:81:29:dc:73:39:2a:
50:b7:c5:65:95:e7:86:a0:3c:63:70:20:6c:3c:44:5f:27:a4:
50:85:6d:ca:a6:bc:39:93:52:da:13:df:92:ae:28:46:79:30:
09:94:24:0e:26:14:d8:35:eb:d7:02:34:82:d8:65:01:c9:d2:
f3:5a:0e:3e:40:3f:76:e1:50:06:c5:4e:ec:cc:f2:77:98:a9:
57:11:7b:a8:2d:47:0c:26:fd:60:a4:c3:48:8e:7a:da:8c:50:
d6:ff:b2:72:a0:c4:6f:63:16:66:7a:01:cc:45:55:01:ae:42:
03:aa:49:36:a3:d6:5c:0b:f0:68:74:0a:5f:a2:04:63:93:ce:
0f:b9:f3:72:2d:25:75:1b:a2:3a:1d:12:78:7f:cc:2a:33:de:
de:7b:85:1b:cc:82:2b:f0:2b:e9:4e:c4:7a:c8:13:ca:fb:2e:
be:d0:bb:e8:e4:43:18:3f:54:81:25:6a:05:84:f5:93:a7:48:
97:1c:72:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:57:20 2026 by rpki-client