Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
File: 0Q44sLejPvOhbhVDNAKYfW1njaE.mft (raw, json)
Hash identifier: rPIDaDl6EGUh33S+41H1TF9O37cIavmhsJDcnZ1R3t0=
Subject key identifier: FB:13:74:67:8D:EE:52:84:68:9F:9C:74:36:86:F1:1C:1F:D3:53:C5
Authority key identifier: D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
Certificate issuer: /CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Certificate serial: 019D27A8D350E91E78F5FCC1DBCEF84487EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
Manifest number: 1531
Signing time: Thu 26 Mar 2026 01:01:08 +0000
Manifest this update: Thu 26 Mar 2026 01:01:08 +0000
Manifest next update: Fri 27 Mar 2026 01:01:08 +0000
Files and hashes: 1: 0Q44sLejPvOhbhVDNAKYfW1njaE.crl (hash: iuwY4HwlU2UuoXa0iH6x3BHx7abOlxNzwugmdcERsso=)
2: phJ6M8N_zrI_IBZJHi5JECkFqfg.roa (hash: uo9pYnUB/RDMAdAyJLZVD99p6FFm8bpqEEb9g4ygjVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:d3:50:e9:1e:78:f5:fc:c1:db:ce:f8:44:87:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Validity
Not Before: Mar 26 01:01:08 2026 GMT
Not After : Mar 27 01:01:08 2026 GMT
Subject: CN=fb1374678dee5284689f9c743686f11c1fd353c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9f:88:33:44:7b:44:e3:db:f9:5a:1b:b9:dc:
5b:ea:63:85:7c:17:79:f3:bb:22:a9:4b:6b:14:15:
2f:3e:ac:0b:b2:7b:9b:d0:82:b6:55:88:b9:54:ac:
e6:2a:24:ed:6a:d6:85:47:58:f9:bf:16:5c:2c:90:
ef:7a:25:71:bd:1e:1c:56:18:1a:15:71:a0:c1:ae:
30:fb:0b:dc:98:94:bd:78:ca:d6:6b:09:ed:5d:85:
e0:7d:92:b2:8e:2a:67:0b:2e:4e:28:2d:1d:88:c1:
67:aa:59:81:ed:e0:72:ba:28:ef:b9:94:b1:f6:cf:
10:0c:57:ee:ef:9b:6a:4c:a4:c3:de:f0:fc:a5:8a:
0c:91:4f:c6:d1:08:0c:bf:15:e3:51:7d:e0:8c:85:
bb:9d:9c:cd:4d:d5:c7:26:6a:38:22:a7:2b:e7:03:
04:29:3e:b4:4c:0c:76:11:b5:8f:c3:61:bd:99:37:
d1:f4:60:5c:c5:04:22:15:3a:10:31:bf:c9:d3:37:
4d:2c:1f:56:d7:73:fa:f7:22:a6:b3:ed:7e:f2:42:
d5:fd:0c:fb:b4:8e:1b:11:91:34:3c:b3:78:73:cd:
c6:19:41:af:3f:5c:ac:61:94:12:54:0b:a0:32:50:
0e:5d:93:03:4b:ba:b5:da:16:22:3e:9d:ef:b6:4d:
e2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:13:74:67:8D:EE:52:84:68:9F:9C:74:36:86:F1:1C:1F:D3:53:C5
X509v3 Authority Key Identifier:
keyid:D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ea:ed:12:1d:ea:ef:f2:47:80:e2:f3:80:ba:c3:99:83:a9:
99:e7:35:08:24:a6:91:ac:ef:4b:a0:04:37:5b:3d:bb:94:66:
17:c5:0a:f7:73:36:e4:7e:27:08:c1:8f:05:72:50:e5:a9:6f:
73:d4:32:0c:2c:59:1b:fe:33:72:59:4b:a2:c0:61:db:75:ce:
06:1c:b9:86:b2:02:09:24:5d:3a:00:05:00:dd:8d:0a:57:d8:
06:75:24:6b:d7:18:ff:6b:12:34:50:99:f7:c8:18:69:1a:14:
8a:f5:20:cb:c0:1e:4b:89:fe:b0:e0:da:69:79:1a:14:cc:34:
61:dd:7d:82:49:2f:9c:94:5c:0b:5c:40:a8:46:cf:90:61:7c:
9c:b7:b1:00:b5:ec:52:bb:ce:b4:fe:75:a0:4a:01:97:10:43:
fe:84:3c:d1:81:19:74:07:a3:23:61:4e:7c:8e:4c:3a:2a:66:
b9:08:8a:f6:94:60:d2:b3:32:fd:e6:c6:c0:b8:6d:28:6f:27:
12:ad:46:34:2f:11:e9:65:e6:3c:ca:39:a1:15:4a:e9:83:fe:
0c:36:f1:ed:5c:6f:80:07:e9:9f:f4:07:7e:21:bc:80:60:9b:
22:55:67:31:dc:dd:f5:3b:92:7e:0a:f3:c7:05:cf:46:90:3c:
05:fe:ef:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nqNNQ6R549fzB2874RIfuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxMGUzOGIwYjdhMzNlZjNhMTZlMTU0MzM0MDI5ODdkNmQ2
NzhkYTEwHhcNMjYwMzI2MDEwMTA4WhcNMjYwMzI3MDEwMTA4WjAzMTEwLwYDVQQD
EyhmYjEzNzQ2NzhkZWU1Mjg0Njg5ZjljNzQzNjg2ZjExYzFmZDM1M2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4p+IM0R7ROPb+Vobudxb6mOFfBd5
87siqUtrFBUvPqwLsnub0IK2VYi5VKzmKiTtataFR1j5vxZcLJDveiVxvR4cVhga
FXGgwa4w+wvcmJS9eMrWawntXYXgfZKyjipnCy5OKC0diMFnqlmB7eByuijvuZSx
9s8QDFfu75tqTKTD3vD8pYoMkU/G0QgMvxXjUX3gjIW7nZzNTdXHJmo4Iqcr5wME
KT60TAx2EbWPw2G9mTfR9GBcxQQiFToQMb/J0zdNLB9W13P69yKms+1+8kLV/Qz7
tI4bEZE0PLN4c83GGUGvP1ysYZQSVAugMlAOXZMDS7q12hYiPp3vtk3ivwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPsTdGeN7lKEaJ+cdDaG8Rwf01PFMB8GA1UdIwQY
MBaAFNEOOLC3oz7zoW4VQzQCmH1tZ42hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy8zZmEwOWEtZTg3NC00ZjM0LWJmNDUt
MmMwZWRhNzA2NjZhLzEvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy8zZmEwOWEtZTg3NC00ZjM0LWJmNDUtMmMwZWRhNzA2NjZh
LzEvMFE0NHNMZWpQdk9oYmhWRE5BS1lmVzFuamFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANertEh3q
7/JHgOLzgLrDmYOpmec1CCSmkazvS6AEN1s9u5RmF8UK93M25H4nCMGPBXJQ5alv
c9QyDCxZG/4zcllLosBh23XOBhy5hrICCSRdOgAFAN2NClfYBnUka9cY/2sSNFCZ
98gYaRoUivUgy8AeS4n+sODaaXkaFMw0Yd19gkkvnJRcC1xAqEbPkGF8nLexALXs
UrvOtP51oEoBlxBD/oQ80YEZdAejI2FOfI5MOipmuQiK9pRg0rMy/ebGwLhtKG8n
Eq1GNC8R6WXmPMo5oRVK6YP+DDbx7VxvgAfpn/QHfiG8gGCbIlVnMdzd9TuSfgrz
xwXPRpA8Bf7vCQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:59:35 2026 by rpki-client