Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File: 02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier: KrtOkqTm+ARqdat2hKeD6gxf0MbISVbpTHu54rVp0UI=
Subject key identifier: 7C:A0:07:4B:EC:69:0A:AF:4F:9E:91:EB:DD:D1:DE:1C:35:96:7E:B2
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer: /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial: 019CAA8F9ADACFC91A9AA4B2456F351D6106
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number: 0F15
Signing time: Sun 01 Mar 2026 18:01:03 +0000
Manifest this update: Sun 01 Mar 2026 18:01:03 +0000
Manifest next update: Mon 02 Mar 2026 18:01:03 +0000
Files and hashes: 1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: Q8axKWauWwI1HkiF1CktTzWvFioIq6mdxujckJyKd/Y=)
2: byVdI5-pp6NIJu3UrT-3MuGaeXY.roa (hash: l8DHq/5oUA3iWZHNp7UWg+LEjnOk5a1rdRkMplixMAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:9a:da:cf:c9:1a:9a:a4:b2:45:6f:35:1d:61:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Validity
Not Before: Mar 1 18:01:03 2026 GMT
Not After : Mar 2 18:01:03 2026 GMT
Subject: CN=7ca0074bec690aaf4f9e91ebddd1de1c35967eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3e:aa:fd:e8:f2:2f:7b:14:82:bb:f6:e3:6f:
ed:af:92:b7:6e:65:34:24:a9:68:41:c5:35:19:96:
75:13:26:9f:5f:ec:37:f9:60:67:5d:0c:9a:85:7f:
42:10:e4:70:15:74:b2:3f:d4:01:18:d3:41:8c:37:
fd:60:c3:58:32:45:d8:d1:f8:35:6c:ae:7b:da:bb:
53:2a:a6:d8:53:ca:4a:83:2b:89:b4:3e:a0:33:ce:
70:f7:4a:b2:2f:5d:5d:c4:52:a3:93:a1:e0:1b:ff:
85:c0:f5:33:4e:e6:8a:03:e4:dc:93:18:2e:46:a1:
f6:12:35:18:48:c6:16:fd:e7:9c:50:74:e8:6d:bb:
2f:95:22:b5:3c:fa:da:d1:3a:c9:7b:aa:16:c4:e5:
00:fc:73:3e:b2:3e:62:fd:cc:14:1e:de:e0:3f:c4:
a1:fb:06:31:f2:65:bf:5d:b5:ce:b0:de:2e:30:bf:
25:c3:df:a9:ba:84:b3:33:f3:f8:1f:3c:e0:af:7f:
c9:51:b0:ed:84:82:b4:8a:51:e6:b6:99:f3:f2:9d:
a9:57:76:02:5c:15:54:df:c8:a9:71:1d:f3:3b:09:
60:86:bc:3a:1d:f3:cc:64:7e:a2:ac:4f:cb:51:fc:
b1:44:54:91:c2:ab:1d:37:1e:91:b2:f2:0d:bd:43:
05:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A0:07:4B:EC:69:0A:AF:4F:9E:91:EB:DD:D1:DE:1C:35:96:7E:B2
X509v3 Authority Key Identifier:
keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:34:0c:0e:c8:02:2b:d0:b1:06:41:ed:11:ab:66:95:83:15:
0d:48:f2:5b:e0:62:47:35:cd:7c:20:18:15:bd:48:d8:88:ff:
1a:dc:41:64:89:a5:8b:8d:78:7b:34:67:ec:6f:9a:58:9f:46:
e1:75:b2:6c:28:fc:0e:be:8d:4f:26:97:67:f8:f4:19:30:a0:
d4:d5:a1:d1:26:b7:d0:02:32:78:72:06:3f:c1:dc:17:12:50:
a0:8e:e8:3e:84:e5:0d:b1:6a:ad:a2:56:78:7e:3b:86:ca:69:
78:69:9f:9f:3c:1c:8f:12:9e:6d:c9:bf:32:7e:e2:64:36:42:
d6:0d:34:7c:78:f7:85:38:a7:ad:bd:0d:36:e8:2f:6b:e9:f5:
87:dc:cd:bf:02:b1:74:34:62:20:eb:02:56:80:26:c0:54:46:
2a:44:e4:a1:19:39:6d:77:e6:7a:00:06:6f:c2:1d:13:a6:17:
b2:1a:35:be:bf:d0:28:8e:ab:57:71:d7:58:d5:e5:22:9f:a7:
3f:6d:e5:75:54:ce:62:2d:f4:58:df:0d:90:df:97:43:ea:30:
ff:41:9d:53:16:a6:81:c1:f3:ed:0a:e2:24:cf:75:cb:19:9a:
8d:a9:d9:61:91:4b:c1:49:3b:b8:1b:7c:29:09:1b:2c:86:9f:
92:db:3b:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:12:54 2026 by rpki-client