Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
File: 2qM7UIN5nEnPntwAhit8nCGMZhM.mft (raw, json)
Hash identifier: 1Jp1uLVb7TL2kTRJvRgF3jHoicxnGtKccq1eEpfJAMc=
Subject key identifier: 03:04:90:A4:8F:81:C6:30:03:0C:AD:67:81:41:06:DF:0C:E3:F7:89
Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Certificate serial: 019D26CCEEF650B5BF485FFB197E4E6BAB62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
Manifest number: 060F
Signing time: Wed 25 Mar 2026 21:00:57 +0000
Manifest this update: Wed 25 Mar 2026 21:00:57 +0000
Manifest next update: Thu 26 Mar 2026 21:00:57 +0000
Files and hashes: 1: 2qM7UIN5nEnPntwAhit8nCGMZhM.crl (hash: 9D8Upg8qBuFQifLTBRMOJuXzx+9PGkYzuTgviskq9kg=)
2: S_RLG-qdyAaQjiZGgL5sIfI-AYY.roa (hash: yQu9ZmP/q7jsTu4yw/AuWtFPXstyX5q6aeR1beEfVWY=)
3: U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa (hash: RA50m9VAkp/7GXmqEXtG2sTYJiK0WAUeyva3ilsrFA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:ee:f6:50:b5:bf:48:5f:fb:19:7e:4e:6b:ab:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Validity
Not Before: Mar 25 21:00:57 2026 GMT
Not After : Mar 26 21:00:57 2026 GMT
Subject: CN=030490a48f81c630030cad67814106df0ce3f789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:39:4b:07:4c:a1:c5:8d:78:8b:f2:e9:31:9b:
91:bb:d7:39:47:e5:0f:8f:ec:d2:aa:c1:32:51:14:
0e:50:0f:50:8c:a4:a0:62:51:48:87:7e:45:9d:ab:
9f:08:cd:4b:02:fc:9a:c0:56:bb:e9:9d:f2:6b:d0:
ee:28:bd:28:9a:bb:ea:ef:e4:4a:cf:cd:0d:70:97:
4e:c6:4c:90:a8:fc:74:8c:d9:d5:3d:f2:48:4f:a8:
04:2f:4e:4b:e2:6d:f7:ee:25:22:5e:31:7b:77:92:
d8:f4:a3:54:17:c9:bd:37:53:e9:61:05:76:da:36:
4e:cc:82:a9:07:b3:b8:ec:c0:1b:a5:00:3a:4c:1d:
56:75:bf:b1:a7:98:c9:d7:0e:6c:2b:13:ca:48:82:
15:4b:17:1b:5d:23:31:e0:e3:67:11:8b:a8:88:17:
7d:cb:ff:dc:22:08:34:0f:f4:31:21:3e:40:9c:e1:
d0:5f:d7:7a:7e:cc:f2:fd:9e:e8:5e:a9:89:f0:8a:
7c:47:c7:fb:45:f7:b0:56:16:f1:2d:1c:b4:06:73:
3a:38:5c:8b:02:4a:cf:67:67:32:ae:ac:32:87:16:
f8:c8:59:19:e3:04:0f:35:7f:32:69:fe:0b:b6:f6:
be:d9:19:bf:33:e4:31:d8:7d:e5:f2:f8:63:ce:3f:
6d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:04:90:A4:8F:81:C6:30:03:0C:AD:67:81:41:06:DF:0C:E3:F7:89
X509v3 Authority Key Identifier:
keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:fe:9b:f9:5c:90:68:93:b2:b6:83:24:b3:d7:20:87:c9:ad:
d3:8e:0c:c5:54:15:9d:0a:11:aa:ec:f4:2b:2c:b2:8d:fa:10:
d3:0c:eb:94:2d:62:3f:13:8d:8f:06:70:c2:c4:26:3c:ac:f3:
e8:b1:2f:ef:88:aa:19:81:01:cf:6a:cf:59:0d:63:22:3a:c3:
0c:cf:2f:3e:05:fc:80:3d:6c:d4:f1:6a:cc:e9:72:bd:b0:6b:
01:54:03:70:22:33:58:91:cc:cb:a3:f5:64:27:d6:ac:65:b9:
c4:42:cc:b3:63:08:e6:cc:32:49:d1:d5:e8:4d:dd:bd:5a:a9:
25:33:0c:db:80:1e:db:63:49:89:f3:bf:70:da:5d:d9:26:09:
64:96:3c:92:86:f5:1d:56:02:20:63:00:06:78:55:63:c4:bb:
83:59:04:aa:6b:43:6d:75:9f:87:c5:2e:8c:92:55:2e:04:27:
91:55:ad:4c:d8:35:8f:06:40:96:3f:a3:72:15:88:93:73:68:
73:fc:50:0c:ab:ce:37:07:d9:9e:ef:1b:69:91:b9:16:23:cc:
f0:5c:8e:4a:94:e3:f3:b5:bd:37:a0:ac:f7:8a:a1:25:43:66:
27:c9:43:3f:3b:3c:c2:48:41:d0:a0:7b:43:1b:db:36:91:fb:
b2:7a:ed:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:33 2026 by rpki-client