Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier: 3N5lj66TWJ+7XiGmJaV6B2y5sbpqIthKdO5gRjt2Dnk=
Subject key identifier: 90:E7:14:49:69:05:16:5F:28:3F:D1:0B:33:7C:D1:57:F8:8D:72:A7
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 019CABA2456C1BB68F97440C59E45FB50D16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 23:01:04 +0000
Manifest this update: Sun 01 Mar 2026 23:01:04 +0000
Manifest next update: Mon 02 Mar 2026 23:01:04 +0000
Files and hashes: 1: TG-T28D3sM1IJX9-bR6zimuu3dQ.roa (hash: sKx/GRdEWeKSqR5AF1hTqJiMQ+ztWu0vS1aze4IWqmA=)
2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: P7DVHwkfOCeRg2EfNOayZGLF88ShGmy3HT9gHgNry9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:45:6c:1b:b6:8f:97:44:0c:59:e4:5f:b5:0d:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: Mar 1 23:01:04 2026 GMT
Not After : Mar 2 23:01:04 2026 GMT
Subject: CN=90e714496905165f283fd10b337cd157f88d72a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:45:d0:10:ef:6a:00:aa:5f:1c:6c:a8:6f:b5:
c2:b7:1e:dc:df:4d:cf:4b:d7:35:f7:d9:85:92:60:
be:72:ca:06:11:28:ac:97:ce:2e:5b:78:71:15:bc:
bd:1d:9c:c2:de:40:66:17:b9:6c:81:e7:fc:03:b0:
13:bb:12:02:ec:97:94:f5:22:83:f4:e6:a2:f4:25:
f2:f5:56:9f:2e:f7:bc:db:a9:8a:cd:06:e8:fb:5f:
fd:14:c2:31:6b:28:07:6f:68:ca:ba:b8:f6:e7:d0:
e7:25:90:57:4a:e5:18:38:6f:f8:5d:88:f5:df:ff:
95:9e:48:e8:7e:08:de:4f:64:0a:23:68:53:c5:7b:
33:30:0b:87:e1:ed:1a:ac:8b:8c:88:ee:06:af:aa:
7d:fe:54:c7:35:bf:fe:fd:28:cf:3a:18:1c:42:91:
1b:96:b5:fd:ef:3a:84:0e:0b:ce:2e:1f:cc:ed:2b:
3d:e5:74:98:87:d6:da:40:8b:ac:e5:50:88:20:9e:
74:33:83:c2:0d:7f:73:7e:93:87:01:85:d2:d9:ea:
24:bd:42:f1:b5:81:19:3b:a5:9b:02:d3:9f:4e:f9:
cb:b8:2b:ee:d9:2b:55:03:a8:71:5c:3c:48:ae:26:
86:06:0e:db:e0:eb:89:40:58:ab:64:17:83:8c:23:
d9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E7:14:49:69:05:16:5F:28:3F:D1:0B:33:7C:D1:57:F8:8D:72:A7
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:26:f8:04:cd:f8:46:5e:78:f3:11:b6:e7:a8:a8:b0:c6:26:
4d:65:94:82:2b:19:88:ee:e0:6c:bd:e4:e5:08:74:7e:9f:be:
98:62:3f:bf:21:70:27:0e:03:bd:ac:0f:a9:46:d7:bf:63:40:
24:c1:eb:51:5f:59:04:a2:fb:90:f7:9c:dc:86:93:18:01:ec:
eb:26:11:80:24:89:ce:20:bc:bd:c1:b1:1a:1e:7c:60:0c:ed:
7f:be:42:a1:85:00:ca:ce:df:e6:45:ee:f8:bf:0e:d3:b2:3b:
a6:82:ac:3a:90:b8:68:9a:22:21:53:5a:2b:84:77:1c:9b:a8:
26:d1:f5:da:80:61:a3:35:fc:6b:52:38:52:bc:b0:63:47:76:
6a:85:09:29:68:90:5d:88:a9:c9:1f:7a:20:a6:32:c5:47:e9:
a0:b6:9b:7c:af:39:cf:41:f8:14:ac:09:2b:06:18:77:50:43:
81:c8:4d:3e:cb:10:9b:54:4b:be:ec:e2:10:8c:28:64:23:08:
d9:da:ef:a2:24:72:1b:a1:5d:35:97:f7:50:52:0d:a3:27:49:
3b:f0:a1:49:bf:2e:a8:7e:5f:63:12:14:26:7c:54:b9:3d:87:
ad:51:ad:9c:45:34:74:2a:87:1f:67:43:ed:e5:55:76:6a:4b:
7a:4a:f0:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:56:56 2026 by rpki-client