Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
File: q4PmT3LdWIn7E9whjGg_bi-s9bI.mft (raw, json)
Hash identifier: oaqcMvCiecQXOqSE9mL/pAJlwgopPbmlWzVs2DdZs0o=
Subject key identifier: 0A:74:44:DC:33:79:6E:1A:37:1F:87:83:A5:8C:A6:47:09:4E:3A:8E
Authority key identifier: AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
Certificate issuer: /CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Certificate serial: 019D28F29CEC256600D700DCCC2AF58C562F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
Manifest number: 1890
Signing time: Thu 26 Mar 2026 07:01:21 +0000
Manifest this update: Thu 26 Mar 2026 07:01:21 +0000
Manifest next update: Fri 27 Mar 2026 07:01:21 +0000
Files and hashes: 1: f4AZIRtQB5gDNGTVG0SqDa4vmXo.roa (hash: 9ufERm7dPXdZ8JI0YQRXJwdfyWGQYDyrJB99NlaPj8c=)
2: q4PmT3LdWIn7E9whjGg_bi-s9bI.crl (hash: S8H495RZQIX+bVBOXQcrg8NPQAWMMKFp10cnALoXeO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:9c:ec:25:66:00:d7:00:dc:cc:2a:f5:8c:56:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab83e64f72dd5889fb13dc218c683f6e2facf5b2
Validity
Not Before: Mar 26 07:01:21 2026 GMT
Not After : Mar 27 07:01:21 2026 GMT
Subject: CN=0a7444dc33796e1a371f8783a58ca647094e3a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d5:98:f7:5b:d0:89:71:67:ba:40:ef:8a:33:
1f:fc:c1:d2:59:fc:5c:d3:99:f7:5c:6b:dc:96:74:
21:60:46:17:7a:30:4c:50:73:8e:9d:5a:d8:17:6f:
1d:e5:07:51:7b:b2:bd:0c:88:e3:26:67:78:94:9e:
68:b5:cc:ed:b4:86:5f:d2:f3:87:d7:a5:60:59:36:
0b:88:58:87:07:e5:ab:be:ec:ff:01:70:cb:52:83:
aa:01:8f:2b:f2:2a:5f:9c:07:b2:14:4a:ba:c9:a9:
58:3b:22:b7:47:09:d3:ad:3e:49:8d:12:6d:69:0b:
fa:a4:22:b6:78:ac:f7:21:e4:c3:16:dc:37:07:0d:
ab:98:5a:d1:b2:ee:6e:d1:ca:4d:5d:dc:a1:a0:86:
ee:d7:65:c2:30:91:cf:86:d6:81:d9:01:c8:57:52:
48:b0:60:6d:eb:f2:80:0e:d5:f6:20:e5:8f:66:26:
54:da:86:70:a2:5c:b3:74:76:e1:e1:38:c1:f7:cf:
85:b8:3e:8e:4a:98:88:03:db:a2:c7:41:b1:0e:10:
6a:1d:db:39:5e:c5:82:81:56:4a:c6:8a:2b:5c:fd:
24:f5:c2:4a:61:f4:56:30:a0:d9:fd:2e:e6:32:ad:
7e:72:40:e3:01:a7:3a:15:fa:82:a6:9c:c1:d5:08:
8c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:74:44:DC:33:79:6E:1A:37:1F:87:83:A5:8C:A6:47:09:4E:3A:8E
X509v3 Authority Key Identifier:
keyid:AB:83:E6:4F:72:DD:58:89:FB:13:DC:21:8C:68:3F:6E:2F:AC:F5:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4PmT3LdWIn7E9whjGg_bi-s9bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9d66fc-31d4-4ab1-8eae-541f48924952/1/q4PmT3LdWIn7E9whjGg_bi-s9bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:40:de:d1:29:0d:91:19:f0:f3:98:b9:48:88:ca:2a:68:d8:
8b:30:ed:24:f0:60:1d:65:bf:80:8d:d6:dd:c6:6c:ed:6b:41:
e8:dc:90:d6:04:a7:07:a9:33:fe:42:29:77:95:00:3e:a6:7a:
dd:94:95:22:22:3d:b8:e9:0e:81:99:0e:f5:a6:dc:d2:0d:8c:
75:ca:a1:71:ad:6f:bb:fc:90:6c:d1:43:76:96:5e:24:32:71:
d0:5a:d5:82:ae:aa:84:8c:05:6b:4b:69:04:55:cb:4d:f0:e0:
fb:7b:52:7e:c7:26:ea:cd:9a:16:ee:34:b1:74:42:60:cc:6e:
37:5e:26:16:f5:36:45:88:25:42:da:3c:6d:a0:2c:a0:e8:67:
52:76:34:14:48:fb:a5:0f:95:f2:77:29:2b:6c:30:cf:6d:a0:
44:d6:5e:f3:11:4f:e4:b6:10:96:a1:3e:7b:8d:3c:f4:42:29:
75:1f:a7:95:bf:ab:11:60:81:f8:15:3e:98:78:2e:2a:1b:4f:
90:b9:53:c5:00:25:24:63:42:a4:11:d3:d4:c4:ec:92:1c:15:
6a:73:98:3d:0c:02:7c:63:c6:ef:28:e8:66:72:a9:2b:84:b3:
f6:25:df:af:bb:15:9f:a9:3c:73:ad:3e:a7:91:4b:5b:f8:43:
2c:fd:9e:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8pzsJWYA1wDczCr1jFYvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiODNlNjRmNzJkZDU4ODlmYjEzZGMyMThjNjgzZjZlMmZh
Y2Y1YjIwHhcNMjYwMzI2MDcwMTIxWhcNMjYwMzI3MDcwMTIxWjAzMTEwLwYDVQQD
EygwYTc0NDRkYzMzNzk2ZTFhMzcxZjg3ODNhNThjYTY0NzA5NGUzYThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9WY91vQiXFnukDvijMf/MHSWfxc
05n3XGvclnQhYEYXejBMUHOOnVrYF28d5QdRe7K9DIjjJmd4lJ5otczttIZf0vOH
16VgWTYLiFiHB+Wrvuz/AXDLUoOqAY8r8ipfnAeyFEq6yalYOyK3RwnTrT5JjRJt
aQv6pCK2eKz3IeTDFtw3Bw2rmFrRsu5u0cpNXdyhoIbu12XCMJHPhtaB2QHIV1JI
sGBt6/KADtX2IOWPZiZU2oZwolyzdHbh4TjB98+FuD6OSpiIA9uix0GxDhBqHds5
XsWCgVZKxoorXP0k9cJKYfRWMKDZ/S7mMq1+ckDjAac6FfqCppzB1QiMUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAp0RNwzeW4aNx+Hg6WMpkcJTjqOMB8GA1UdIwQY
MBaAFKuD5k9y3ViJ+xPcIYxoP24vrPWyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTRQbVQzTGRXSW43RTl3aGpHZ19iaS1zOWJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS85ZDY2ZmMtMzFkNC00YWIxLThlYWUt
NTQxZjQ4OTI0OTUyLzEvcTRQbVQzTGRXSW43RTl3aGpHZ19iaS1zOWJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS85ZDY2ZmMtMzFkNC00YWIxLThlYWUtNTQxZjQ4OTI0OTUy
LzEvcTRQbVQzTGRXSW43RTl3aGpHZ19iaS1zOWJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHkDe0SkN
kRnw85i5SIjKKmjYizDtJPBgHWW/gI3W3cZs7WtB6NyQ1gSnB6kz/kIpd5UAPqZ6
3ZSVIiI9uOkOgZkO9abc0g2Mdcqhca1vu/yQbNFDdpZeJDJx0FrVgq6qhIwFa0tp
BFXLTfDg+3tSfscm6s2aFu40sXRCYMxuN14mFvU2RYglQto8baAsoOhnUnY0FEj7
pQ+V8ncpK2wwz22gRNZe8xFP5LYQlqE+e4089EIpdR+nlb+rEWCB+BU+mHguKhtP
kLlTxQAlJGNCpBHT1MTskhwVanOYPQwCfGPG7yjoZnKpK4Sz9iXfr7sVn6k8c60+
p5FLW/hDLP2evg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:56:43 2026 by rpki-client