Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
File: 2QqBMQKSV7_3YURI5va1A8Ersp0.mft (raw, json)
Hash identifier: sCbYjPlr5m520rNKqtBw+ZpyBDAK9m9nN6FhjzWm1KE=
Subject key identifier: 7D:E4:66:C8:FD:89:FC:D1:64:7D:FB:1F:96:CB:B9:6E:EB:EA:9E:78
Authority key identifier: D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D
Certificate issuer: /CN=d90a8131029257bff7614448e6f6b503c12bb29d
Certificate serial: 019D2A7284AE32ACFD6568B97294BF04779B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
Manifest number: 0559
Signing time: Thu 26 Mar 2026 14:00:41 +0000
Manifest this update: Thu 26 Mar 2026 14:00:41 +0000
Manifest next update: Fri 27 Mar 2026 14:00:41 +0000
Files and hashes: 1: 2QqBMQKSV7_3YURI5va1A8Ersp0.crl (hash: 6j4LcLC842fQ0pDjXdQypUgbbMrK8Y7VmcBISiGeci0=)
2: qTa7UU6Qri1LNslfL1VV2t1o7uE.roa (hash: 2xhVFcGKtML/9CwTX6mgniStIE2RskPbIQ6SKVau5AA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:84:ae:32:ac:fd:65:68:b9:72:94:bf:04:77:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90a8131029257bff7614448e6f6b503c12bb29d
Validity
Not Before: Mar 26 14:00:41 2026 GMT
Not After : Mar 27 14:00:41 2026 GMT
Subject: CN=7de466c8fd89fcd1647dfb1f96cbb96eebea9e78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b8:70:14:cd:96:58:58:a8:d4:0b:a9:e2:73:
bc:1b:3f:af:ed:5c:ee:9f:71:c3:11:83:3c:76:85:
96:56:83:b5:a5:c7:22:8e:5a:91:cb:6f:8e:e9:ea:
f1:38:db:b8:8d:5d:0a:f7:e9:1c:06:04:6b:bc:ec:
77:26:22:dc:4a:39:1f:50:c6:fc:24:5d:b3:a4:7a:
af:d9:5b:44:91:d0:b4:ca:40:9e:fb:c3:51:79:cf:
07:cd:97:9f:99:d4:b6:6a:68:18:18:f1:13:0b:a9:
61:92:da:77:8d:d6:a2:a0:aa:fb:4b:73:fa:df:c3:
2f:93:2e:96:b9:f5:35:5b:48:6d:f3:51:15:3e:c4:
eb:98:8a:7e:0d:a8:f9:81:db:7f:a9:c0:ad:0d:17:
ea:65:a6:20:b9:a1:23:89:ec:26:a9:05:9f:8e:0b:
65:2c:bf:81:e4:b4:75:60:d3:f2:5b:9e:95:7f:bb:
73:1b:47:c3:da:42:11:ed:25:bc:e9:28:f1:09:2b:
e1:9c:ff:53:07:1f:f9:5b:a4:6f:09:79:c6:ef:80:
0d:32:b6:7e:81:ea:29:56:b5:a2:76:c0:5d:a7:6b:
cd:ad:f0:b2:1c:53:e0:65:de:b7:27:37:56:73:9b:
4d:2e:8b:f6:c6:08:fe:b6:d7:d9:fc:57:5a:3f:9f:
28:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E4:66:C8:FD:89:FC:D1:64:7D:FB:1F:96:CB:B9:6E:EB:EA:9E:78
X509v3 Authority Key Identifier:
keyid:D9:0A:81:31:02:92:57:BF:F7:61:44:48:E6:F6:B5:03:C1:2B:B2:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QqBMQKSV7_3YURI5va1A8Ersp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8ff2ad-a68f-4465-8d18-96cd86fd0cb7/1/2QqBMQKSV7_3YURI5va1A8Ersp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:71:4a:ed:c7:47:15:40:3a:b9:b0:12:5f:4c:82:d1:c9:a5:
16:3e:8b:55:80:73:20:03:17:67:c6:16:e1:1d:21:c9:b5:da:
9e:eb:a1:49:40:b9:b6:16:46:f7:4f:36:44:8c:ec:91:7c:9f:
e2:de:88:47:12:a3:d0:0e:2a:14:9a:85:ea:8b:e4:59:89:f3:
0c:58:08:be:8e:13:21:db:08:00:2a:9d:c0:3c:19:4a:f1:f2:
f9:52:b9:16:75:8e:08:3d:a2:91:1d:05:b3:af:63:f9:0a:07:
38:17:df:c3:43:6f:7b:5b:80:2a:7d:41:09:e6:06:3e:18:64:
10:c9:45:62:6e:e6:d0:d0:c0:27:3a:2a:42:bf:5d:53:7b:d6:
fc:6d:45:70:25:d1:6b:8b:c9:61:7c:d3:32:37:39:42:58:bf:
63:fd:55:e7:03:f3:e2:ac:93:b4:f6:a0:97:75:ac:94:36:f7:
6e:8f:48:a2:e1:34:38:c0:6e:50:97:b9:19:a3:d4:4b:c6:9f:
4e:9f:00:74:60:ee:27:60:e5:cb:d8:ac:aa:66:54:fb:37:d8:
61:74:f9:99:2b:ff:bf:5c:82:4c:80:35:ef:61:79:78:d9:e0:
c5:fb:be:3e:cb:58:4d:ae:2f:9e:03:f4:3a:89:de:96:65:7c:
fa:ba:47:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:54:30 2026 by rpki-client