Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
File: 7qq8oRa05zqZRKuXAs-YZleANYA.mft (raw, json)
Hash identifier: 4/N78oLuLPncNxJHWXF2Z1NX03Q0J6ovuYcISAGIJlk=
Subject key identifier: A9:9F:86:72:0A:A9:4E:8E:CA:2A:CD:0A:E4:A4:B3:84:3F:F0:1F:C3
Authority key identifier: EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
Certificate issuer: /CN=eeaabca116b4e73a9944ab9702cf986657803580
Certificate serial: 019CAA8F8DA42A918AFAB8730B888334A2BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
Manifest number: 048F
Signing time: Sun 01 Mar 2026 18:01:00 +0000
Manifest this update: Sun 01 Mar 2026 18:01:00 +0000
Manifest next update: Mon 02 Mar 2026 18:01:00 +0000
Files and hashes: 1: 7qq8oRa05zqZRKuXAs-YZleANYA.crl (hash: ZXE4eZvFaUlYX2w60KsGHpkQJi4f/Nw7dIBFCiE1qVc=)
2: QsP30C5AyyrplhJOQtwBFKHc2pI.roa (hash: 1rl1zPT5VgUb8N7x1I4JvxDOw2OsxnlXtnTYVUm9hGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:8d:a4:2a:91:8a:fa:b8:73:0b:88:83:34:a2:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeaabca116b4e73a9944ab9702cf986657803580
Validity
Not Before: Mar 1 18:01:00 2026 GMT
Not After : Mar 2 18:01:00 2026 GMT
Subject: CN=a99f86720aa94e8eca2acd0ae4a4b3843ff01fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cf:21:71:dd:ef:6e:e2:ac:53:51:06:f8:82:
4d:20:f0:7f:5a:df:2b:90:17:b6:44:f4:7a:ba:a6:
e8:b9:a0:b9:1e:86:e1:ea:2c:22:be:a5:c9:17:d7:
51:34:4a:24:9f:27:46:33:c1:38:bc:f9:22:60:e7:
3d:52:4b:ed:34:ae:c3:7e:4e:a9:4c:96:d7:ba:f4:
75:bd:9a:24:4c:0f:58:a4:fc:33:a3:91:28:30:3f:
cf:d1:2d:4f:6e:fd:b4:03:60:92:9c:77:1c:dd:83:
45:e5:34:a5:ab:60:c1:bd:ac:dc:15:3f:fd:ff:24:
33:62:72:44:a8:f3:ff:7d:18:29:eb:81:84:7c:e3:
3d:47:16:71:37:af:09:b0:83:85:66:b4:51:3a:43:
7f:51:c7:4b:3b:3d:ca:e9:8c:ed:79:90:c9:df:70:
21:b3:51:f2:66:97:c7:b7:f3:f6:47:0b:6d:58:c3:
c5:e5:93:86:eb:2c:f9:26:7e:b5:97:85:ca:a9:e2:
de:21:25:8f:79:23:86:64:bc:93:1b:58:42:26:6b:
09:bf:72:c2:3f:c1:a8:cb:d9:52:ef:6c:f0:33:d2:
3e:a0:8f:e1:22:60:65:12:29:93:fe:b9:e4:24:6a:
4f:b3:f6:70:48:d6:98:f1:59:09:39:d7:07:4a:5e:
e7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:9F:86:72:0A:A9:4E:8E:CA:2A:CD:0A:E4:A4:B3:84:3F:F0:1F:C3
X509v3 Authority Key Identifier:
keyid:EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:f9:12:65:3b:5e:ef:33:da:44:46:81:4a:0d:54:f9:da:58:
1d:7a:27:3c:d4:4f:00:23:6a:51:bd:cf:9c:3f:e5:c9:98:17:
c4:92:a4:9d:d9:85:a3:af:39:19:28:29:44:26:44:a5:95:de:
7a:3b:f8:0b:99:34:f2:33:7f:61:21:16:56:a2:b1:a6:27:ad:
e3:4a:21:28:7e:6b:42:36:52:4f:8c:c3:b0:83:1f:2c:6a:d9:
08:81:0d:a4:7d:1a:de:6b:a8:ad:71:78:98:8d:5c:4e:60:aa:
79:1e:c2:0b:28:64:fc:98:1c:4a:a7:f2:96:23:5b:2d:81:d5:
3b:75:69:6e:a9:3f:d0:75:a0:00:b6:4f:57:15:6e:0b:b1:01:
0c:9d:dd:db:b7:96:97:3a:e1:65:4d:f4:15:59:30:e7:5c:d2:
8c:35:82:9d:51:ea:54:cd:2c:1d:23:03:07:8c:53:83:e6:42:
7f:53:54:77:54:2f:4e:4b:f4:b5:5f:98:d0:de:12:d8:3a:bb:
d1:2e:fb:e6:12:5f:73:f9:76:d3:24:bf:46:cc:18:4a:31:be:
0b:ee:3d:bb:0b:02:32:01:bf:72:03:24:26:88:59:87:88:80:
bd:ed:78:3c:d7:a9:8c:73:28:d3:1a:65:34:92:28:3b:3c:ba:
dc:62:8b:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqj42kKpGK+rhzC4iDNKK6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYWFiY2ExMTZiNGU3M2E5OTQ0YWI5NzAyY2Y5ODY2NTc4
MDM1ODAwHhcNMjYwMzAxMTgwMTAwWhcNMjYwMzAyMTgwMTAwWjAzMTEwLwYDVQQD
EyhhOTlmODY3MjBhYTk0ZThlY2EyYWNkMGFlNGE0YjM4NDNmZjAxZmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyM8hcd3vbuKsU1EG+IJNIPB/Wt8r
kBe2RPR6uqbouaC5Hobh6iwivqXJF9dRNEoknydGM8E4vPkiYOc9UkvtNK7Dfk6p
TJbXuvR1vZokTA9YpPwzo5EoMD/P0S1Pbv20A2CSnHcc3YNF5TSlq2DBvazcFT/9
/yQzYnJEqPP/fRgp64GEfOM9RxZxN68JsIOFZrRROkN/UcdLOz3K6YzteZDJ33Ah
s1HyZpfHt/P2RwttWMPF5ZOG6yz5Jn61l4XKqeLeISWPeSOGZLyTG1hCJmsJv3LC
P8Goy9lS72zwM9I+oI/hImBlEimT/rnkJGpPs/ZwSNaY8VkJOdcHSl7npQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKmfhnIKqU6OyirNCuSks4Q/8B/DMB8GA1UdIwQY
MBaAFO6qvKEWtOc6mUSrlwLPmGZXgDWAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3FxOG9SYTA1enFaUkt1WEFzLVlabGVBTllBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hZWJkNDgtYTAwMi00NWY1LWIzMDct
ZGI0MTVhOWJlYmY1LzEvN3FxOG9SYTA1enFaUkt1WEFzLVlabGVBTllBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9hZWJkNDgtYTAwMi00NWY1LWIzMDctZGI0MTVhOWJlYmY1
LzEvN3FxOG9SYTA1enFaUkt1WEFzLVlabGVBTllBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa/kSZTte
7zPaREaBSg1U+dpYHXonPNRPACNqUb3PnD/lyZgXxJKkndmFo685GSgpRCZEpZXe
ejv4C5k08jN/YSEWVqKxpiet40ohKH5rQjZST4zDsIMfLGrZCIENpH0a3muorXF4
mI1cTmCqeR7CCyhk/JgcSqfyliNbLYHVO3Vpbqk/0HWgALZPVxVuC7EBDJ3d27eW
lzrhZU30FVkw51zSjDWCnVHqVM0sHSMDB4xTg+ZCf1NUd1QvTkv0tV+Y0N4S2Dq7
0S775hJfc/l20yS/RswYSjG+C+49uwsCMgG/cgMkJohZh4iAve14PNepjHMo0xpl
NJIoOzy63GKLbg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:33:22 2026 by rpki-client