Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File: 02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier: y884KnAEe5aWxggTIhsnyBVsweN7h+FsZg3X4BQREyI=
Subject key identifier: 19:D0:82:B6:14:B3:B0:FE:8E:9B:21:C0:D5:51:9A:82:BC:2F:E5:97
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer: /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial: 019EC1802C125FB0DC680E64181A401D8AFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number: 102A
Signing time: Sat 13 Jun 2026 15:01:03 +0000
Manifest this update: Sat 13 Jun 2026 15:01:03 +0000
Manifest next update: Sun 14 Jun 2026 15:01:03 +0000
Files and hashes: 1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: XUISXJ1n7yB2QncUQMRApsmjP89j1DIkXE2ZE3FJg1g=)
2: byVdI5-pp6NIJu3UrT-3MuGaeXY.roa (hash: l8DHq/5oUA3iWZHNp7UWg+LEjnOk5a1rdRkMplixMAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:80:2c:12:5f:b0:dc:68:0e:64:18:1a:40:1d:8a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Validity
Not Before: Jun 13 15:01:03 2026 GMT
Not After : Jun 14 15:01:03 2026 GMT
Subject: CN=19d082b614b3b0fe8e9b21c0d5519a82bc2fe597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:02:37:33:eb:13:b5:64:81:73:37:28:7a:70:
7d:78:7b:ec:5e:80:f1:26:87:79:40:04:3b:e9:cd:
b0:f6:b4:a1:61:c2:a3:68:10:9b:f6:2d:dc:1a:8f:
0c:35:29:f5:00:a1:5c:2a:fa:b6:2a:44:61:a9:96:
dc:8f:7f:0a:0a:4c:d5:53:98:68:95:df:3a:2c:7f:
22:3a:30:44:bf:f0:cc:1d:87:b3:fd:be:8a:79:85:
29:b0:42:b9:ca:ea:3e:3a:8c:47:37:94:0a:34:f4:
93:60:8e:fd:52:35:43:16:76:ef:8b:5e:94:92:05:
0f:e0:af:1a:ef:f3:92:5a:13:a2:17:5c:45:8f:1a:
48:6c:3d:f9:9e:8e:a1:e7:61:6a:ac:3a:67:6c:25:
d8:e2:8c:d6:48:aa:2f:da:d4:06:49:c7:f8:5f:9e:
4e:f6:b5:90:87:92:25:04:cb:c3:17:c6:2c:cf:60:
95:7e:bc:aa:4b:c9:91:20:0d:7c:0b:82:dc:a3:bc:
a0:cf:73:5f:ca:0e:73:dc:14:33:ad:8a:4f:f8:02:
30:01:8d:ce:4c:3f:6d:78:6b:23:68:de:b7:b8:71:
7a:3a:e1:3d:07:ab:52:11:b0:61:67:a8:9d:7a:0e:
e1:d7:86:32:71:57:c9:57:e9:c1:e5:80:58:b1:0c:
11:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D0:82:B6:14:B3:B0:FE:8E:9B:21:C0:D5:51:9A:82:BC:2F:E5:97
X509v3 Authority Key Identifier:
keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:a6:3f:b7:4f:dd:15:30:aa:32:6e:e1:56:84:2e:eb:51:5b:
a9:3c:29:db:e2:3b:fd:ee:8f:53:bd:e1:f9:23:0f:86:40:0a:
4b:5f:1a:ee:ef:4b:d0:b1:45:42:3b:1d:cc:5a:b8:d7:c0:c9:
3c:87:29:80:67:30:0f:a3:d2:66:a3:72:b1:99:04:17:ad:1e:
94:0b:2e:df:15:e5:21:37:3f:34:3f:93:91:29:ed:4b:cc:dd:
9c:13:f2:ed:bb:fd:3b:6b:ef:a8:be:f5:2e:26:59:3a:e6:83:
c4:ed:9d:8e:c3:28:88:c1:7f:af:0b:ef:00:c7:09:eb:4b:01:
73:b1:4c:49:b8:96:60:34:54:59:38:09:ca:15:06:96:65:54:
fd:49:75:d9:a8:1d:03:b8:b8:96:8a:f1:54:28:a6:30:a5:19:
79:5d:8c:bb:c3:16:f1:7e:03:bc:ce:e8:bf:9f:12:b0:f4:99:
55:52:74:a6:7b:43:dc:7a:c6:43:1c:74:13:29:fa:40:1b:4d:
76:28:ed:ba:81:11:e3:f3:94:f4:2a:38:fa:7c:cb:87:fc:6c:
1c:38:19:39:34:13:34:e6:5c:69:46:3b:fb:a7:0f:1f:c5:eb:
5c:e8:01:d4:4a:22:3a:d2:0e:81:9e:63:ec:cb:5d:c8:91:7b:
3f:4c:37:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:10:58 2026 by rpki-client