Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
File: MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft (raw, json)
Hash identifier: cCejWLmYcjtbVwaoDu3kQJYubFwJtgOrcPdWFf58A14=
Subject key identifier: EB:89:27:61:57:DD:96:B5:C8:50:ED:03:20:4C:E2:42:13:34:FD:39
Authority key identifier: 31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
Certificate issuer: /CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Certificate serial: 019D2816E3C28B4CCD8EB172EE2503CBE7C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
Manifest number: 1086
Signing time: Thu 26 Mar 2026 03:01:21 +0000
Manifest this update: Thu 26 Mar 2026 03:01:21 +0000
Manifest next update: Fri 27 Mar 2026 03:01:21 +0000
Files and hashes: 1: MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl (hash: fKEOkQ8nS6gHZvjknsFVOX5x0b8jtYED22HqwklPjQ4=)
2: TTYH0FgPVUCi7TDxCLPtISBge9U.roa (hash: TUaK8nKuF4G0Sk8aPLzkm12KcCYMpggVQXj1I8D7TKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:e3:c2:8b:4c:cd:8e:b1:72:ee:25:03:cb:e7:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Validity
Not Before: Mar 26 03:01:21 2026 GMT
Not After : Mar 27 03:01:21 2026 GMT
Subject: CN=eb89276157dd96b5c850ed03204ce2421334fd39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:09:60:b3:f2:97:dd:3e:54:1e:d4:7c:e6:10:
83:ac:90:40:d4:56:4a:a9:59:05:a4:96:14:20:e1:
1a:dc:f9:a9:d5:38:23:c3:f4:c4:48:ae:ef:f1:81:
44:7a:be:71:61:3f:7a:5e:c3:00:f8:31:5b:ac:7c:
a9:9f:29:b4:68:24:cb:d9:57:fd:3a:4d:5e:cc:97:
b6:a0:f4:6e:bd:db:6f:87:32:61:36:43:ff:07:1c:
c1:3c:65:ae:3d:a7:b0:cd:ae:57:3c:d9:69:79:3a:
91:2a:65:55:ad:79:41:16:94:dc:93:7b:2e:55:ea:
37:44:a5:b7:45:b7:d3:e4:d5:7f:e4:ec:a2:61:02:
4a:ef:97:f2:16:0a:eb:77:7b:fb:07:49:f3:84:76:
0c:57:3d:48:02:0d:01:51:83:0c:e2:0c:d0:c5:c4:
3a:c6:46:15:cc:f1:5b:e8:29:60:30:a3:93:4d:47:
64:d9:e0:62:ef:61:7e:82:f1:bf:d5:0a:31:8c:d8:
4b:c9:c2:3e:73:f5:3c:ff:a5:29:77:04:4e:31:42:
05:e3:78:a5:49:f2:c2:f3:3c:77:01:60:2b:64:36:
92:4f:28:e1:5e:39:7e:09:a7:68:d8:8b:41:0c:ef:
ae:a6:95:06:61:59:f0:03:4a:65:6c:e6:7f:3f:39:
45:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:89:27:61:57:DD:96:B5:C8:50:ED:03:20:4C:E2:42:13:34:FD:39
X509v3 Authority Key Identifier:
keyid:31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:1a:38:02:b5:a8:6c:0d:6d:6a:bb:b0:1c:60:74:47:80:a4:
09:29:e5:84:b3:cf:2b:ca:2d:a1:d5:c6:dd:09:c3:be:6a:74:
13:e7:3c:4f:e0:14:22:50:36:83:ba:38:28:2d:27:42:ac:fb:
a8:ab:a9:af:f0:08:71:09:ad:9a:13:9d:f4:c9:38:fc:a2:fb:
8f:33:76:9f:84:a1:3e:8e:e0:5b:6a:fd:ae:18:64:28:0b:69:
b1:73:42:18:1b:41:4f:63:61:ab:9a:0a:12:49:54:41:29:1e:
b7:b9:ed:89:64:0a:1c:60:89:40:84:d2:ed:8e:3b:c2:40:d7:
ad:11:48:79:0a:14:11:46:46:41:79:dc:02:dd:2f:c1:54:9e:
31:9b:f0:e3:1c:33:5f:61:22:d2:c7:4a:d5:67:8a:5d:6e:14:
5e:c0:7a:08:c2:05:41:c1:2c:13:2a:6f:70:5b:b4:a8:d7:0e:
09:77:5f:56:bd:25:e8:84:fc:07:f0:27:5f:03:7e:65:35:77:
59:37:01:19:73:9d:f8:96:05:ff:dc:2c:f7:d9:93:a2:13:b0:
d0:9d:c9:13:96:b2:fb:77:43:48:bf:58:30:9a:70:ff:ce:a0:
ce:88:8b:f8:49:1c:d9:d4:51:66:37:ee:6f:d0:ca:78:b5:8b:
d7:b0:da:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:09:26 2026 by rpki-client