Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: xi90NOio0IogNQV6mAzpibyENufTU14oE16MdoLmSjU=
Subject key identifier: 0D:FF:50:41:38:D2:84:A3:95:3D:B0:64:3F:18:BF:C2:62:8E:3E:9A
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 019D2960AC2EA25458D201F0CE9AAD027261
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 107B
Signing time: Thu 26 Mar 2026 09:01:34 +0000
Manifest this update: Thu 26 Mar 2026 09:01:34 +0000
Manifest next update: Fri 27 Mar 2026 09:01:34 +0000
Files and hashes: 1: eutBwstQCFRzhm35XTnNphMWByQ.roa (hash: RdOW4ekiWsJoF7BZmUsggiXem+HWt5D8Hbfh8/B+px8=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: td11tY6u5yiF7BGW23oMn5Y2NYFgFqu3aUaT9k/+OUE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:ac:2e:a2:54:58:d2:01:f0:ce:9a:ad:02:72:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Mar 26 09:01:34 2026 GMT
Not After : Mar 27 09:01:34 2026 GMT
Subject: CN=0dff504138d284a3953db0643f18bfc2628e3e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3f:20:d4:e7:e7:76:2f:40:a8:94:f7:4e:6e:
bc:0d:4f:0a:84:dd:b6:a2:54:89:b6:ee:3d:88:26:
11:05:1c:11:95:af:91:93:88:84:f5:3e:9a:52:c6:
62:25:5d:53:1d:d6:17:ae:5e:a3:33:d4:42:db:ad:
94:55:04:21:44:09:fd:bc:52:b9:69:f9:f6:d4:9a:
5a:70:bf:40:50:33:e4:1b:79:9f:cb:f8:88:99:3c:
cb:46:a1:6a:52:3e:62:8a:77:44:bc:5f:79:d5:64:
06:64:e6:92:03:aa:d2:b5:66:c1:a0:51:56:4e:69:
28:24:54:22:6a:53:c7:41:50:d5:e3:62:32:7d:e1:
eb:35:d5:81:45:be:72:c5:3b:72:28:73:51:5f:ff:
62:f5:92:24:7a:92:c0:57:34:47:ba:04:90:1b:2c:
f0:c3:4a:32:c2:03:b7:63:80:78:a0:92:8b:c8:2d:
73:5f:4a:1d:2e:cc:89:4b:b1:5a:d0:81:db:89:21:
de:58:d2:96:83:1d:50:19:cf:00:99:8c:69:81:9c:
38:8e:f9:2f:ba:43:38:d4:64:31:20:32:c7:be:f0:
58:ef:57:63:e3:39:28:8f:40:43:e2:af:c3:7c:79:
eb:03:28:73:8f:dd:96:00:e7:c5:81:68:e7:63:39:
a8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FF:50:41:38:D2:84:A3:95:3D:B0:64:3F:18:BF:C2:62:8E:3E:9A
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:60:2d:ac:ea:3b:7a:99:59:94:cc:bb:41:1b:55:d8:49:61:
65:2d:ba:1a:a6:46:30:99:6d:49:ff:32:de:71:17:b0:0a:16:
61:b1:0e:2a:b1:d2:13:2c:cf:b5:e5:f2:51:9a:4a:9f:68:4b:
05:45:80:39:4c:79:ba:d9:05:99:2a:94:2e:b4:f5:22:98:7d:
eb:8d:74:cf:8b:ba:bc:b9:41:6b:c4:30:21:e9:7c:af:6e:1f:
50:bb:e7:3a:31:96:e1:6a:f0:21:8e:28:13:5d:ad:a3:17:f9:
e8:49:b6:f4:2c:3b:09:bd:c2:c5:76:99:d0:d1:75:73:05:59:
cd:9a:cd:82:71:f4:e0:93:c0:23:3a:9f:4a:9b:b4:c0:75:fc:
74:e9:90:da:43:b0:e9:e2:dd:1b:22:98:07:7e:1c:57:b4:d4:
d0:7e:01:b5:3b:b4:35:de:b5:f6:87:9b:4a:b5:04:81:2f:fc:
2d:84:b8:3b:db:fa:f2:86:98:ff:02:7c:41:a2:af:25:26:67:
86:28:97:db:c3:8e:d8:9a:1d:a4:c6:08:2c:e1:86:23:5b:bd:
fa:60:6a:f1:0b:67:64:77:d7:6a:0c:5d:e9:47:46:43:b7:38:
7c:e2:c3:07:ab:30:1c:a9:78:2e:e7:70:45:0b:f9:6a:c9:9b:
cf:a4:58:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:49:59 2026 by rpki-client