Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
File: bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft (raw, json)
Hash identifier: gqtR8ixxUXp99YmBcjWRk/ap+QwtAFQ+qis3Mvh+6K0=
Subject key identifier: B5:BC:76:CB:8B:9E:6C:AD:77:4D:64:12:35:34:48:DE:16:95:41:CD
Authority key identifier: 6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
Certificate issuer: /CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Certificate serial: 019D270398C8B0FD9BC2D67335CF6F02B1F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
Manifest number: 0C4B
Signing time: Wed 25 Mar 2026 22:00:40 +0000
Manifest this update: Wed 25 Mar 2026 22:00:40 +0000
Manifest next update: Thu 26 Mar 2026 22:00:40 +0000
Files and hashes: 1: bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl (hash: 5YUhEqnjDhYSXem+3wG8biuf/yoXQjV5ncey0ooXiwQ=)
2: gq6lk47TA17e6REZA-zN8if3ODs.roa (hash: j1zLYjz1yht8bRIjCyc5xCvjTG5lN3f/7Pg2PlyRjnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:98:c8:b0:fd:9b:c2:d6:73:35:cf:6f:02:b1:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eaf16dcc550cf81ecf0f81952179a048130877a
Validity
Not Before: Mar 25 22:00:40 2026 GMT
Not After : Mar 26 22:00:40 2026 GMT
Subject: CN=b5bc76cb8b9e6cad774d6412353448de169541cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c1:be:b3:a7:30:b4:3c:7f:df:3c:ad:99:b3:
69:2f:97:b0:d5:f0:bb:61:45:0c:67:09:16:2c:aa:
d5:3a:b6:80:8d:c9:92:bc:68:2a:69:dc:e7:ef:00:
c6:31:11:c2:6e:e1:6d:ce:74:af:f9:75:6d:32:f0:
da:f0:65:fb:98:47:43:74:6a:c1:7c:41:58:b2:02:
7d:c3:6d:a5:ce:0e:0f:d5:0b:c7:08:76:9b:7b:0d:
8c:e2:11:19:f6:55:ac:90:b5:2b:fc:ab:b2:c0:2d:
2e:df:63:47:7c:50:93:c1:7b:fa:a6:3d:af:19:de:
0b:90:2b:10:9f:c3:88:35:97:6b:b4:4f:23:db:d2:
f2:dc:b2:56:0b:e3:28:15:ad:46:af:60:b2:64:31:
7b:fd:23:04:f9:ba:84:26:e6:a2:fc:cd:21:2a:f0:
75:8a:4e:e9:b5:df:56:f5:00:a0:06:09:2a:3c:7e:
21:64:1f:3c:3d:58:03:fa:e8:86:f8:ac:db:9e:4f:
d4:0e:99:45:fb:25:1a:8e:e3:d1:7d:79:94:bf:14:
c3:06:98:90:51:9e:b3:da:16:ea:c3:96:f1:78:d9:
16:58:ee:65:f3:66:61:6f:d6:51:7b:79:aa:f7:39:
d2:32:46:7a:59:12:cc:88:d3:03:0d:df:00:24:f6:
08:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:BC:76:CB:8B:9E:6C:AD:77:4D:64:12:35:34:48:DE:16:95:41:CD
X509v3 Authority Key Identifier:
keyid:6E:AF:16:DC:C5:50:CF:81:EC:F0:F8:19:52:17:9A:04:81:30:87:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq8W3MVQz4Hs8PgZUheaBIEwh3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/060e1e-328a-4818-bfd1-4fa3481a47e1/1/bq8W3MVQz4Hs8PgZUheaBIEwh3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:6f:2c:52:1b:d2:ca:8f:19:bd:6b:79:20:f4:96:fd:c9:d2:
9e:b1:71:31:18:e0:ea:74:a3:4c:f1:47:6c:19:ab:fa:1c:10:
e0:c0:ee:d4:3a:91:58:a4:b3:cd:f5:f6:1e:4d:35:36:d0:b2:
e4:d5:58:84:03:de:28:fc:85:a9:bd:aa:12:54:8c:32:d6:3d:
1b:48:92:20:88:18:81:dd:71:f1:08:58:33:46:34:61:a2:73:
aa:83:68:39:7a:71:67:4b:25:ed:d9:81:8a:fb:64:b9:20:dc:
60:13:66:94:d8:e7:2a:ad:c5:aa:19:92:c3:9a:f1:70:5d:de:
d5:46:b1:d9:62:96:ab:3a:d5:bb:91:31:90:af:aa:83:f5:95:
44:af:df:f9:08:54:c0:50:1e:16:38:22:b7:5e:58:a0:2d:4d:
5a:54:31:2e:b7:70:d3:18:eb:30:ec:22:bd:74:0e:31:3a:d8:
a0:db:9e:20:32:c5:14:3c:8b:e5:1c:bc:92:f5:69:9a:6f:83:
8f:53:a1:8a:5a:dc:2f:92:94:ed:c5:3f:a8:e5:4f:e5:08:00:
0f:72:0d:44:95:9c:40:2b:c8:a1:c9:c8:d3:e6:27:ff:9b:fc:
90:8d:59:99:70:5d:ab:b5:21:d4:4a:36:8d:d4:42:c0:8f:48:
da:70:67:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:50:26 2026 by rpki-client