Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
File: qERYOVOgK8amaZ3pJ89FcAfwVSg.mft (raw, json)
Hash identifier: teMPTv2iu2mor9rkFWH02wbqG3Wv0lXllatEZh0XqwU=
Subject key identifier: 9E:59:9F:21:09:AA:82:FE:D8:C3:48:FD:67:49:DE:E8:E1:5E:CA:2C
Authority key identifier: A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
Certificate issuer: /CN=a844583953a02bc6a6699de927cf457007f05528
Certificate serial: 019D9A74CF48D3FD972C8B2E7D9EC8E261AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
Manifest number: 0159
Signing time: Fri 17 Apr 2026 08:00:39 +0000
Manifest this update: Fri 17 Apr 2026 08:00:39 +0000
Manifest next update: Sat 18 Apr 2026 08:00:39 +0000
Files and hashes: 1: bzuHav72txau2Blj1JcbQR-3zHA.roa (hash: TCvNISq9G9+8+m7g0vleezt4nSYPh9D8kXCKj2MC7tQ=)
2: qERYOVOgK8amaZ3pJ89FcAfwVSg.crl (hash: 9zpniERcDs3NQfpyrrhMSfTVJgRwNznDcG/XRl4uQKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:cf:48:d3:fd:97:2c:8b:2e:7d:9e:c8:e2:61:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a844583953a02bc6a6699de927cf457007f05528
Validity
Not Before: Apr 17 08:00:39 2026 GMT
Not After : Apr 18 08:00:39 2026 GMT
Subject: CN=9e599f2109aa82fed8c348fd6749dee8e15eca2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b2:04:a3:87:33:c4:1b:a9:82:f0:06:9c:91:
eb:e7:8b:95:9b:07:f0:b8:dd:8a:98:d2:07:3c:6a:
8d:e8:9e:7b:f7:18:12:8f:6f:62:bb:7e:4e:61:17:
bc:d8:93:7d:3e:45:c7:17:39:a3:0d:a1:e2:59:7f:
44:55:bd:5c:c4:ee:5c:9d:22:e4:59:5f:e5:14:40:
10:0f:da:48:aa:e5:45:ba:bb:90:e6:34:a2:2e:fe:
0b:b3:40:12:0c:cb:ea:8d:21:0d:c1:0c:8f:8e:5a:
d4:04:dd:64:10:65:f3:49:e2:97:77:f4:50:a2:88:
ee:eb:5d:b6:1e:0f:61:36:ed:5f:d9:27:33:51:e6:
0c:f9:47:3f:60:15:97:87:f9:4e:3e:87:ae:21:c5:
35:e4:0e:d0:43:dc:ba:c0:63:ce:20:5d:48:ea:64:
01:0c:3a:4e:3c:c2:a9:f5:04:80:dc:3b:58:85:7b:
cf:ef:a1:99:e9:c5:b2:34:69:93:71:46:4b:fb:b6:
bf:22:a5:f9:8f:c7:36:2f:ae:1a:03:81:43:1c:cf:
5d:07:ef:f7:e0:35:2d:42:1b:92:e5:3e:ee:6a:f8:
30:f4:9a:96:9e:24:bc:3a:fe:5f:9b:62:65:14:0a:
6a:b1:84:33:13:b6:4f:9f:7b:84:43:cd:97:ff:91:
05:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:59:9F:21:09:AA:82:FE:D8:C3:48:FD:67:49:DE:E8:E1:5E:CA:2C
X509v3 Authority Key Identifier:
keyid:A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:40:28:9b:ec:e7:18:89:57:dd:ee:c4:2f:96:77:c3:06:39:
30:4b:b3:83:5f:97:a0:81:ae:68:cb:84:db:a0:85:9f:68:75:
28:33:9c:f6:03:05:dc:6f:7d:bf:84:06:81:9c:28:4d:50:41:
86:d3:9a:86:01:92:76:61:eb:31:0d:28:09:80:eb:76:d2:05:
aa:10:6e:65:bc:ef:33:50:b2:4a:17:46:69:17:8a:af:7f:9b:
25:33:2f:c8:f7:e3:88:2a:94:20:ae:f6:8c:b2:6e:cb:0b:a4:
53:64:26:21:4c:ed:f4:01:65:7b:82:c8:02:25:f4:c7:d0:f3:
92:18:c4:6c:88:50:4b:f6:40:a0:59:f7:ac:ef:85:b3:40:ef:
17:64:0b:8b:89:bd:0b:65:b4:30:f2:76:aa:9c:04:14:2d:ef:
ec:9b:43:b8:68:b2:60:3f:be:18:09:84:5e:93:fa:39:fe:05:
2a:a8:f2:66:00:cd:9d:da:86:bd:3c:89:b1:7a:70:0e:e3:42:
49:73:97:d7:9a:37:6f:fa:9d:fc:91:8d:a9:c4:7e:71:a8:33:
cc:d6:cb:39:09:13:7a:1d:d7:b3:29:04:12:40:99:70:01:6e:
83:e0:92:b5:9c:b0:57:23:2b:0a:8a:88:34:df:6d:02:bf:13:
60:04:b3:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:43:49 2026 by rpki-client