Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/42692b-a460-477c-baa0-eccdac8b6a98/1/qOeaWm0FfybaCYxi-R31ExEa7a0.mft
File: qOeaWm0FfybaCYxi-R31ExEa7a0.mft (raw, json)
Hash identifier: 1TW+I73vy5/fIWMCkeCc/v4KiEcJlBa/8/ejB+MXQpw=
Subject key identifier: 0B:3A:09:2D:CA:34:8E:EA:2B:CF:5F:34:44:EB:F5:14:1D:52:0E:D1
Authority key identifier: A8:E7:9A:5A:6D:05:7F:26:DA:09:8C:62:F9:1D:F5:13:11:1A:ED:AD
Certificate issuer: /CN=a8e79a5a6d057f26da098c62f91df513111aedad
Certificate serial: 019D28F28C6304D5551204A1B5C28D846C8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qOeaWm0FfybaCYxi-R31ExEa7a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/42692b-a460-477c-baa0-eccdac8b6a98/1/qOeaWm0FfybaCYxi-R31ExEa7a0.mft
Manifest number: 033B
Signing time: Thu 26 Mar 2026 07:01:17 +0000
Manifest this update: Thu 26 Mar 2026 07:01:17 +0000
Manifest next update: Fri 27 Mar 2026 07:01:17 +0000
Files and hashes: 1: qOeaWm0FfybaCYxi-R31ExEa7a0.crl (hash: Gs7IqiD7CwaYKsiY9BfwkEnalcCHvGnvIVtbW23yqKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/42692b-a460-477c-baa0-eccdac8b6a98/1/qOeaWm0FfybaCYxi-R31ExEa7a0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/42692b-a460-477c-baa0-eccdac8b6a98/1/qOeaWm0FfybaCYxi-R31ExEa7a0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qOeaWm0FfybaCYxi-R31ExEa7a0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:8c:63:04:d5:55:12:04:a1:b5:c2:8d:84:6c:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8e79a5a6d057f26da098c62f91df513111aedad
Validity
Not Before: Mar 26 07:01:17 2026 GMT
Not After : Mar 27 07:01:17 2026 GMT
Subject: CN=0b3a092dca348eea2bcf5f3444ebf5141d520ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c8:00:22:33:5b:3d:24:86:5f:64:99:90:79:
d7:ab:b2:dc:be:af:59:ed:34:4c:56:27:55:49:23:
ee:96:6d:52:d1:21:b7:6d:91:c0:54:80:40:44:2e:
1a:00:d6:da:a4:ee:5d:1f:55:62:31:ed:8c:b7:b1:
17:7d:7e:4e:1f:34:12:d4:66:11:54:b2:81:73:25:
71:10:a9:69:58:92:4c:56:3b:07:d0:d5:ff:9f:e9:
a7:33:36:07:1e:b9:70:e0:6a:2e:26:50:6f:9b:f7:
ff:e9:46:03:60:8f:3f:32:6b:5d:8d:6e:30:95:c8:
15:12:fd:c8:59:fe:32:14:19:46:78:ba:08:54:7c:
5a:fe:a3:6e:67:31:40:30:d8:e0:2c:19:3a:f8:3a:
f5:24:ea:d2:59:ce:3c:e4:99:7a:1c:e4:60:fc:c3:
9b:28:51:3c:93:12:38:79:73:51:44:fc:6f:95:94:
70:b8:0c:77:f3:16:ea:01:e9:10:85:17:dc:65:17:
a9:50:71:19:06:07:ad:e5:c9:85:44:c3:1d:22:48:
d7:5e:ee:9f:dc:bb:1b:e9:7a:47:85:f6:db:84:12:
22:06:66:88:2b:37:c2:c0:1a:6e:05:dd:0e:88:04:
bf:58:90:bd:8a:66:77:c9:56:a8:bb:bf:4e:4f:d3:
6a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:3A:09:2D:CA:34:8E:EA:2B:CF:5F:34:44:EB:F5:14:1D:52:0E:D1
X509v3 Authority Key Identifier:
keyid:A8:E7:9A:5A:6D:05:7F:26:DA:09:8C:62:F9:1D:F5:13:11:1A:ED:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qOeaWm0FfybaCYxi-R31ExEa7a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/42692b-a460-477c-baa0-eccdac8b6a98/1/qOeaWm0FfybaCYxi-R31ExEa7a0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/42692b-a460-477c-baa0-eccdac8b6a98/1/qOeaWm0FfybaCYxi-R31ExEa7a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:d4:98:41:da:5b:0b:8f:15:6e:4f:c7:28:12:f2:17:35:6b:
9b:f1:96:62:48:7c:2e:32:c5:83:f1:4c:b3:9e:9d:77:36:4c:
54:d9:1f:34:4e:bf:fc:c0:18:eb:ca:d9:bc:13:14:2c:16:b9:
ef:05:51:8c:56:2c:b6:f7:73:df:31:3a:17:cb:22:0e:dc:3c:
a9:af:46:e0:6f:49:16:ba:f6:a0:cb:00:e0:4d:02:0a:24:1a:
cd:0f:da:c3:42:9a:be:c1:1e:47:3e:58:3d:49:37:ef:df:fa:
5d:99:a7:eb:92:3a:5f:8a:e6:23:39:23:2a:52:b8:9f:8a:df:
02:7f:06:32:4e:a4:f1:d4:57:b5:1e:89:35:04:46:98:03:92:
d0:d8:84:24:72:55:06:58:14:7c:ea:23:93:4c:6e:df:dc:d9:
3c:b0:67:04:27:88:11:60:75:de:de:2d:d3:e6:94:84:d5:8a:
bb:f9:86:0f:7b:fb:92:5e:77:fe:3c:38:bc:77:2b:38:eb:4b:
66:57:8b:66:f7:ac:68:ac:ef:ab:76:49:99:a9:ab:5c:0c:b2:
99:e2:47:b2:c7:75:58:06:9e:2e:cf:8b:c5:00:4e:4d:f3:eb:
c6:55:7c:f9:d3:32:cb:6e:4a:20:f7:ea:15:d6:37:a7:52:bf:
18:89:78:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:26:02 2026 by rpki-client