Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
File: qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft (raw, json)
Hash identifier: BpyWCN+ovV39n3w8EWPKYgixuT2HUNmSac428SlBQ4E=
Subject key identifier: 53:21:F9:EF:7E:EF:18:48:04:75:95:5D:B3:99:E1:01:63:21:D1:30
Authority key identifier: A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
Certificate issuer: /CN=a9a073b31d888e4439e272e007c9532fc305c80d
Certificate serial: 019E1EA2BB37A687E24FEDB18CFCEAF19F2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
Manifest number: 0FC9
Signing time: Wed 13 May 2026 00:00:41 +0000
Manifest this update: Wed 13 May 2026 00:00:41 +0000
Manifest next update: Thu 14 May 2026 00:00:41 +0000
Files and hashes: 1: fVTksWbnATqXaCHSg3-Hyam5vM4.roa (hash: aKoDF8WcVN36RBOxnQH2HKKv2Xv+gPNSTtzRz6i4sY8=)
2: qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl (hash: AriQM1c7A+ZnWoMxpOULunSwL1dV4abTVvlg+ohex+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:bb:37:a6:87:e2:4f:ed:b1:8c:fc:ea:f1:9f:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a073b31d888e4439e272e007c9532fc305c80d
Validity
Not Before: May 13 00:00:41 2026 GMT
Not After : May 14 00:00:41 2026 GMT
Subject: CN=5321f9ef7eef18480475955db399e1016321d130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a0:fd:89:70:2e:4a:57:72:ed:59:f1:49:65:
6b:35:4e:1b:19:95:3b:06:a1:f3:5c:c7:4f:a5:bd:
61:c4:6a:2c:3f:8f:b5:4c:e8:22:20:4e:43:9a:3a:
93:4f:0d:8d:f8:78:ed:c0:e9:bd:95:83:41:31:c1:
5d:f2:c5:f0:d3:96:64:70:57:7c:88:f6:81:2a:b3:
59:cc:3e:f6:9f:74:7d:2a:f5:15:4d:89:70:15:a0:
2a:6e:58:97:81:f2:3d:ac:57:43:fd:61:b8:02:82:
75:cd:d2:28:ae:60:c0:3c:cd:e5:bc:ac:db:9a:a0:
31:7b:38:46:fc:e0:96:1e:42:46:5a:bf:73:17:91:
b1:96:b7:6e:c3:85:fb:ed:eb:86:88:c0:a6:4e:ab:
af:aa:02:65:86:85:6e:ac:d0:92:57:5a:bd:85:54:
68:6a:8a:1a:0f:f5:17:69:75:5e:4d:40:9c:b1:0e:
70:5d:91:ba:60:d4:54:de:1f:01:67:21:6b:7e:96:
df:3b:ec:8d:3c:24:99:53:ea:6a:46:be:fa:b6:60:
af:b4:9d:19:86:47:35:38:31:c8:67:78:2e:cf:dc:
39:ef:f9:66:31:3e:53:42:3f:71:8c:5d:e8:70:63:
68:8f:c1:12:a8:92:b4:e9:15:24:88:d7:c8:bf:3f:
99:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:21:F9:EF:7E:EF:18:48:04:75:95:5D:B3:99:E1:01:63:21:D1:30
X509v3 Authority Key Identifier:
keyid:A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:8b:2f:be:a7:1a:07:92:79:a4:65:ba:40:fc:c7:0a:20:8d:
28:18:8d:04:ac:f9:fb:a8:28:2f:55:9c:9a:e0:c9:7d:26:32:
92:cf:a3:86:36:57:d1:d5:99:f6:42:83:c5:25:ad:d3:3c:15:
4a:d0:08:90:39:3f:fa:6e:d0:01:6b:6c:99:e4:9c:0b:9a:6b:
5d:4c:c8:e7:bc:5a:4e:1c:b7:f8:92:40:c0:83:18:fa:ab:96:
cf:8b:2b:84:be:bf:6e:b7:db:e6:03:b6:47:04:8b:74:c3:8a:
3f:7c:17:3b:82:6e:f2:f7:2c:b7:7d:01:cd:49:ff:7e:f2:b1:
5c:05:f4:ba:05:6d:1a:70:dd:e8:42:76:61:5b:31:ba:f9:07:
a5:23:e6:b3:47:c0:66:ff:95:27:50:20:3f:47:f0:b9:20:4d:
f7:da:dd:0b:08:c5:39:3a:d1:1c:83:86:90:93:ce:25:f3:e2:
fc:55:24:b8:1e:4c:21:51:cc:31:d7:14:60:99:01:5a:04:d5:
2e:65:b9:59:5d:cd:87:b7:88:1c:e0:00:bc:89:9b:ee:25:d1:
b9:e7:22:6e:83:d1:02:70:dc:dd:44:67:5b:85:56:a8:25:31:
2e:1d:6a:5e:ee:39:f0:05:d3:f3:b6:93:82:7f:b9:c2:2c:37:
a5:74:f9:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:29:42 2026 by rpki-client