Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
File: q53IX5TKZH3g22TXTTE5lHzESbo.mft (raw, json)
Hash identifier: 9/zje6CzKaH6Ezyo144y5SgrdZF9PB6PjEsJ3V2QyjA=
Subject key identifier: E1:8E:E2:A6:97:9B:9C:C8:46:0E:A8:58:D2:47:59:28:C2:F9:02:43
Authority key identifier: AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
Certificate issuer: /CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Certificate serial: 019D2772B9C5AD4A9501B0EEAB6069CD8A76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
Manifest number: 1574
Signing time: Thu 26 Mar 2026 00:02:03 +0000
Manifest this update: Thu 26 Mar 2026 00:02:03 +0000
Manifest next update: Fri 27 Mar 2026 00:02:03 +0000
Files and hashes: 1: 479ZV3Yo2azoMThPuEqrM6qYhP8.roa (hash: iH7bjfyw/FV+kXgRaALQRgdoNp0fV7bf6CUsJ1nPg+k=)
2: q53IX5TKZH3g22TXTTE5lHzESbo.crl (hash: 12r3c68WQuvP4Sl3zPpT4L6w3vDDt8jq+BEmGxEDb+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:b9:c5:ad:4a:95:01:b0:ee:ab:60:69:cd:8a:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9dc85f94ca647de0db64d74d3139947cc449ba
Validity
Not Before: Mar 26 00:02:03 2026 GMT
Not After : Mar 27 00:02:03 2026 GMT
Subject: CN=e18ee2a6979b9cc8460ea858d2475928c2f90243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d3:f9:92:fa:8a:75:3e:7a:92:3a:cd:19:c0:
ba:93:24:69:64:7a:e9:5c:ae:e4:47:5a:ff:44:bb:
4e:31:48:1a:8e:13:b3:ae:9d:b5:64:64:a8:91:b6:
92:b7:dd:22:b1:e6:90:ce:45:9e:43:6a:f4:d0:2f:
76:07:2b:ff:e6:8d:3f:bd:78:e5:af:03:e0:e0:52:
81:86:09:5a:d8:22:12:a5:47:83:70:47:ea:91:7a:
b2:db:5d:06:07:10:bf:17:58:2a:8e:fa:df:84:a6:
77:39:91:94:14:32:34:ec:b4:58:2d:9d:af:3a:d5:
df:39:13:d6:f1:33:c2:74:59:7e:07:cc:e9:bb:a5:
fd:cf:71:bc:4c:eb:a2:12:a3:8c:15:45:7e:96:60:
ba:41:42:36:90:af:97:3b:43:8a:fa:2b:6a:0b:4b:
3a:3b:da:11:06:bb:72:a8:37:5f:6a:d4:c8:16:92:
b6:0c:45:fe:65:df:0f:22:8c:a2:87:ea:60:22:03:
db:8c:17:eb:63:8a:34:c6:7f:a3:83:be:1a:02:5b:
17:1a:45:db:b9:30:68:fa:7a:65:d0:e2:b7:05:9e:
ef:86:ad:23:9e:cd:08:ec:ad:5a:7f:da:5a:45:22:
76:7b:94:c2:6b:95:56:cb:be:0a:fd:24:b8:36:a5:
25:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:8E:E2:A6:97:9B:9C:C8:46:0E:A8:58:D2:47:59:28:C2:F9:02:43
X509v3 Authority Key Identifier:
keyid:AB:9D:C8:5F:94:CA:64:7D:E0:DB:64:D7:4D:31:39:94:7C:C4:49:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q53IX5TKZH3g22TXTTE5lHzESbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/9c83a5-3a9a-4715-9b16-4046324970af/1/q53IX5TKZH3g22TXTTE5lHzESbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:6f:7d:05:d2:5f:02:6c:1b:f0:14:5d:e8:66:80:71:42:4a:
cc:bd:2b:04:0b:7b:22:b9:7c:7b:b7:30:b6:3a:4e:ae:b6:8f:
3e:d7:49:1a:71:c3:61:31:ac:f9:89:c3:f4:7f:65:e0:bd:ac:
66:57:17:1f:55:26:e1:92:d0:f4:49:a8:d4:ff:64:51:2a:35:
81:af:15:69:15:88:4b:6b:b2:1f:83:5a:f2:c8:58:91:0b:3a:
1c:b0:28:9f:89:c4:d8:d3:a3:6d:71:5d:2b:c9:fe:0b:eb:c8:
83:a8:88:3f:74:68:a5:73:19:16:8a:40:62:6a:12:f9:1c:6d:
94:ad:26:4f:9b:aa:e6:29:d1:ac:aa:b1:90:a3:52:fe:8d:f7:
11:e6:6f:4c:14:aa:f2:d1:57:c1:14:19:36:26:b0:9c:85:d0:
84:9a:ea:48:8f:31:b9:cc:ad:df:b1:16:25:4d:55:c1:25:5d:
72:08:95:ac:78:b9:b1:7e:55:03:59:ee:a4:f0:87:2c:55:91:
5b:7c:80:d6:1f:6b:25:17:0e:47:63:d2:bf:4a:25:a5:a9:85:
1a:70:38:cb:16:71:7d:29:33:a5:c6:13:7f:78:4a:6a:f6:2e:
9e:09:eb:6c:2a:24:1f:47:22:e1:90:2b:3e:0d:bc:6e:b3:d3:
6c:e3:a6:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:43:25 2026 by rpki-client