Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
File: qERYOVOgK8amaZ3pJ89FcAfwVSg.mft (raw, json)
Hash identifier: MB4sx/L/lV7ixsZBAdFrhdUHkvXiUByRaf8VZctmEAg=
Subject key identifier: C9:0C:67:98:72:7F:C0:17:7F:21:1A:A5:37:66:E1:E6:14:19:1E:0B
Authority key identifier: A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
Certificate issuer: /CN=a844583953a02bc6a6699de927cf457007f05528
Certificate serial: 019EC1EDD38B819A0A43F3DD6C6A3D247273
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
Manifest number: 01F2
Signing time: Sat 13 Jun 2026 17:00:49 +0000
Manifest this update: Sat 13 Jun 2026 17:00:49 +0000
Manifest next update: Sun 14 Jun 2026 17:00:49 +0000
Files and hashes: 1: bzuHav72txau2Blj1JcbQR-3zHA.roa (hash: TCvNISq9G9+8+m7g0vleezt4nSYPh9D8kXCKj2MC7tQ=)
2: qERYOVOgK8amaZ3pJ89FcAfwVSg.crl (hash: Zadfa46I74Cgmc3Z3PMmUwOrzTTjNRbcQXdjlX6KsxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:d3:8b:81:9a:0a:43:f3:dd:6c:6a:3d:24:72:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a844583953a02bc6a6699de927cf457007f05528
Validity
Not Before: Jun 13 17:00:49 2026 GMT
Not After : Jun 14 17:00:49 2026 GMT
Subject: CN=c90c6798727fc0177f211aa53766e1e614191e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:37:cb:89:dc:c6:58:b1:7e:b3:74:c6:d4:f7:
19:ee:61:03:cf:4c:01:f2:fd:08:b0:a1:e3:7f:50:
ed:6b:39:09:35:58:ea:26:30:93:f1:b2:43:85:30:
d2:ad:3f:54:8a:3c:b3:71:94:5b:d1:ed:56:1d:3b:
2c:56:45:c0:7a:54:27:a8:e5:c6:cc:1e:33:08:40:
90:69:6f:fb:d1:03:da:41:36:9c:df:55:73:cd:8f:
0f:39:7f:0a:97:47:7e:83:d8:aa:ee:75:d9:9d:43:
45:98:bd:e0:a6:d4:41:71:8f:3b:f8:2b:37:ab:e6:
ce:8b:38:cd:79:41:da:1a:50:bd:b5:3b:7f:bb:07:
cc:ae:24:d1:26:84:ea:4d:67:22:9c:c1:1f:5c:9c:
72:5e:d1:0e:45:1c:5d:d4:5f:d2:44:8f:31:b3:d4:
46:20:52:39:c0:29:ab:a0:a2:ba:ef:6b:23:2d:f7:
74:20:81:3b:ca:94:9a:ac:b0:c5:a5:d6:2b:d3:29:
c7:7c:ae:31:a4:c7:1f:f1:07:ae:aa:a2:97:f0:b6:
b3:2a:22:63:29:c1:e2:4e:4f:3f:05:82:a9:8a:11:
09:d1:d3:9c:1e:2b:18:09:6d:62:7a:34:3a:f3:96:
23:22:ea:6c:3b:de:74:4b:b2:41:39:f6:99:d8:d0:
32:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:0C:67:98:72:7F:C0:17:7F:21:1A:A5:37:66:E1:E6:14:19:1E:0B
X509v3 Authority Key Identifier:
keyid:A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ad:57:37:a1:8f:1b:51:40:30:76:96:8f:cc:0b:7d:56:19:
28:08:fd:05:94:ee:2b:dc:ce:64:e9:21:3d:b8:19:bf:a0:b0:
58:e1:08:58:b6:b3:3f:96:8f:2e:10:6a:7c:c6:0c:58:b2:6f:
9c:1e:08:0e:b4:43:38:af:2c:72:ee:29:17:2f:ab:d7:62:8b:
c3:83:31:4d:bf:60:e9:b2:37:3c:12:56:5d:c9:2e:1f:f3:cf:
73:b4:ff:f4:4f:10:af:8f:49:b0:51:87:5e:ba:fe:f3:90:70:
c4:d5:f7:a7:8c:cb:6f:06:f8:1b:84:fe:c5:19:4e:a4:f1:f0:
a5:a5:dc:12:95:88:ac:ab:f3:dd:fd:f8:35:1d:fa:83:d2:0b:
cb:13:bc:22:61:f8:f2:b6:03:5f:e4:d8:cd:03:2a:47:ce:7e:
a5:47:e5:8d:5b:9e:06:b9:f4:1b:69:07:71:58:54:48:74:da:
8f:4a:58:aa:da:c2:ef:14:32:9a:e1:12:1a:ac:14:1c:6c:45:
7f:62:7b:98:b4:3d:d2:7c:62:33:39:a9:a0:55:24:da:41:2a:
2d:36:1d:01:6f:8d:16:0d:08:ed:2a:23:8b:1f:8d:c8:a6:e4:
a2:2c:0b:25:80:ea:6d:6d:87:35:e8:30:61:e8:bb:7e:ee:65:
af:1a:ad:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:52:04 2026 by rpki-client