Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: 48LSpPGE43q6jGi+snimteKzDmXQ73pVV63lPMfrIHc=
Subject key identifier: 80:8B:27:FC:4E:12:DA:89:84:CD:99:BD:30:D7:E6:67:C2:FD:F8:EB
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 019E1EA395FDC507A10BB16ACD8DFEEA6D00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 10FA
Signing time: Wed 13 May 2026 00:01:37 +0000
Manifest this update: Wed 13 May 2026 00:01:37 +0000
Manifest next update: Thu 14 May 2026 00:01:37 +0000
Files and hashes: 1: eutBwstQCFRzhm35XTnNphMWByQ.roa (hash: RdOW4ekiWsJoF7BZmUsggiXem+HWt5D8Hbfh8/B+px8=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: pOF551cYty+/C/0N10e2gCanwAcfasF+Us59IEEHddY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:95:fd:c5:07:a1:0b:b1:6a:cd:8d:fe:ea:6d:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: May 13 00:01:37 2026 GMT
Not After : May 14 00:01:37 2026 GMT
Subject: CN=808b27fc4e12da8984cd99bd30d7e667c2fdf8eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:19:9a:ac:b7:d6:f1:32:ec:e2:eb:51:30:75:
c2:98:3c:7b:a9:e7:f0:a0:2d:cd:1d:7f:1e:cd:cb:
2f:fb:04:0a:dd:20:c2:1d:98:28:0d:30:f9:b2:43:
60:76:d3:63:0b:4c:8f:56:62:21:f6:ff:88:42:4f:
dd:b3:09:a4:4e:f2:7c:d6:f3:17:42:e2:e1:4f:b7:
ba:e1:f5:42:00:ef:5e:95:42:b8:22:bf:43:b8:08:
24:54:d3:79:22:00:d2:64:94:0d:14:4b:7e:14:f1:
94:79:20:ab:40:f7:97:56:64:82:49:c1:74:e0:b4:
7a:d4:2b:f7:dc:36:ad:92:43:87:71:65:24:8e:15:
2d:eb:4f:e4:71:81:14:20:f7:99:ae:a0:fa:90:ca:
fc:08:3b:91:dc:92:db:22:8c:13:b8:96:0b:65:d4:
83:18:6d:65:fd:18:b1:1b:3b:0b:2b:d5:a1:0f:06:
60:64:b9:15:63:da:15:56:bd:81:72:33:bb:01:97:
7c:ce:4e:86:ae:91:85:eb:74:ab:68:6c:d2:38:34:
db:56:b0:02:27:34:86:51:40:de:74:32:e9:43:a8:
22:d6:fb:33:fb:51:0a:fe:1a:e8:dc:f3:13:39:7f:
34:89:26:5a:32:13:07:2b:86:aa:4e:33:3a:e4:22:
ee:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8B:27:FC:4E:12:DA:89:84:CD:99:BD:30:D7:E6:67:C2:FD:F8:EB
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:0c:7c:bf:ff:bd:a5:2c:2f:2a:8f:9f:ca:4b:a8:85:4a:5c:
de:32:37:d2:93:8b:75:33:46:8c:b3:d3:15:ae:14:4a:eb:94:
db:c0:bb:03:d7:82:bf:90:0a:6d:04:e8:26:db:48:f3:9d:6a:
c5:c7:26:c8:d2:fb:95:fc:39:26:29:80:ea:23:c5:8e:86:37:
76:43:4f:9f:a7:e2:de:78:19:f3:aa:be:c7:ba:3a:5e:b8:c7:
5e:12:97:97:30:72:4d:a5:e2:23:02:2d:c0:46:4f:17:d6:ec:
07:b5:f0:9b:00:e6:76:84:bb:e6:88:cc:71:90:44:4b:83:80:
ab:98:3c:fa:d4:f2:c8:cf:5a:e9:e8:a1:cc:aa:21:af:35:52:
a0:6b:74:ac:b3:94:6d:e3:60:52:2a:5c:4a:0d:10:65:55:e4:
d0:59:e3:f3:ee:df:55:8e:d4:45:af:58:7f:5b:04:8e:2a:78:
99:4d:d2:e3:dd:23:e6:0a:6f:53:29:8f:78:34:f8:a8:77:6b:
2f:e9:22:f6:3d:3f:ed:a9:38:c3:9c:89:8e:7a:9c:99:ee:2b:
28:5d:13:34:40:8b:e7:0f:94:00:4f:d3:c7:2f:52:80:c0:d1:
41:b5:1a:35:83:05:bc:7a:9b:e2:0b:24:7e:fe:cf:c4:cb:e2:
96:e2:9d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:50:42 2026 by rpki-client