Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File: 02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier: 9oVKgVpRcuS7q7rZVtRO83nqBoEyHPvy7XT/J9C8XfI=
Subject key identifier: EF:84:26:9B:95:E8:25:36:EA:A7:CC:DF:F6:72:FF:26:CD:1B:89:3F
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer: /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial: 019D9A071BF2F075CD95431E1AEA98153AA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number: 0F91
Signing time: Fri 17 Apr 2026 06:00:50 +0000
Manifest this update: Fri 17 Apr 2026 06:00:50 +0000
Manifest next update: Sat 18 Apr 2026 06:00:50 +0000
Files and hashes: 1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: R+iiahjPLg8M4ZdyGB7Xr3Enu7gfkydFIHp8RL+q0KQ=)
2: byVdI5-pp6NIJu3UrT-3MuGaeXY.roa (hash: l8DHq/5oUA3iWZHNp7UWg+LEjnOk5a1rdRkMplixMAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:1b:f2:f0:75:cd:95:43:1e:1a:ea:98:15:3a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Validity
Not Before: Apr 17 06:00:50 2026 GMT
Not After : Apr 18 06:00:50 2026 GMT
Subject: CN=ef84269b95e82536eaa7ccdff672ff26cd1b893f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e0:d6:98:98:d2:47:d1:91:93:2e:e5:c7:81:
3b:31:c8:da:19:ac:b2:9d:3e:5b:7d:41:c3:69:66:
e1:f8:d2:8c:99:98:e9:b9:10:a8:79:a0:74:c6:c9:
8f:61:67:96:ef:63:14:61:9e:00:75:25:00:bf:ec:
cf:1c:db:37:6f:2a:bf:30:91:97:25:71:fb:84:86:
fa:9b:a1:20:4c:1c:50:63:f3:a1:7b:a4:77:e8:e3:
86:02:c7:a3:ea:25:87:bc:df:b2:eb:3e:93:b8:d6:
1d:ad:fa:95:ac:66:84:d8:dd:56:f8:17:7b:1a:e0:
37:2f:96:74:a4:fc:fc:30:e9:e2:44:ac:fd:08:78:
b1:30:9a:e9:19:4a:20:c9:4a:62:ff:43:e1:4a:31:
5b:5b:83:71:7a:23:11:ed:dd:d3:7b:79:ec:5b:91:
fa:e1:88:3b:00:9b:6b:45:f3:12:68:7e:f0:ef:57:
11:9b:64:ec:62:c4:95:45:db:ee:00:5a:49:89:23:
b7:6b:7b:37:75:ab:42:14:f6:88:63:f0:ef:c3:ea:
9a:5a:b0:9a:f0:72:48:32:7d:f2:22:dd:83:9a:bc:
60:aa:c8:34:53:64:69:60:9c:38:68:45:cc:e5:2e:
97:93:06:1b:e4:33:51:d2:30:96:96:43:78:35:37:
5f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:84:26:9B:95:E8:25:36:EA:A7:CC:DF:F6:72:FF:26:CD:1B:89:3F
X509v3 Authority Key Identifier:
keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:32:75:a3:f0:cc:34:27:e0:46:27:05:2b:2b:0c:c7:4d:5e:
5b:0a:8b:85:60:50:6e:86:04:a6:dc:8c:0e:b5:55:07:0c:c6:
28:79:dd:dd:ba:44:34:a0:68:60:65:16:75:18:b7:4e:d4:da:
93:6f:b0:45:cb:4d:4f:1e:ec:f7:19:29:8d:bc:ae:2a:14:71:
9b:82:0c:8d:68:ce:a4:bb:10:42:85:70:13:4f:77:5b:b0:32:
fc:ad:5c:c1:3a:c5:61:62:3a:26:62:9a:72:81:c6:8d:1d:82:
55:04:af:a8:2d:08:a2:ea:7d:6f:b0:a0:9b:51:d4:d0:26:5e:
93:11:58:19:85:d3:52:e6:43:08:7c:2e:7d:5b:88:82:56:42:
3e:56:da:b7:09:ef:97:47:4a:92:03:c0:19:16:7f:7a:a8:e4:
9e:ea:43:ea:4d:6f:40:76:bf:f8:b5:96:3b:96:60:c1:f8:03:
e5:ac:f6:15:86:11:e6:38:af:8c:69:78:33:14:55:a6:3f:b4:
ec:74:95:f3:bd:81:f3:85:3e:31:e6:c7:da:4a:12:4b:4f:a2:
0f:62:2f:0a:0a:42:fe:10:ee:d0:dd:65:b7:9e:9c:75:6f:5b:
77:e4:fb:99:a0:7d:46:d5:4a:dd:b3:6a:c3:ab:e7:9d:f5:6b:
ca:35:5c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:04:26 2026 by rpki-client