Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
File: qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft (raw, json)
Hash identifier: 6cqdBBGqJs3Gp8tgZpyKJbsoLWPZqaA7p9OOovsg4rg=
Subject key identifier: 64:D9:E0:54:BF:2C:AB:E1:10:2E:F3:D0:4E:85:54:48:B2:03:7C:8D
Authority key identifier: A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
Certificate issuer: /CN=a9a073b31d888e4439e272e007c9532fc305c80d
Certificate serial: 019D27728141F64A3BCEEC9C51F5EA39E6A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
Manifest number: 0F49
Signing time: Thu 26 Mar 2026 00:01:48 +0000
Manifest this update: Thu 26 Mar 2026 00:01:48 +0000
Manifest next update: Fri 27 Mar 2026 00:01:48 +0000
Files and hashes: 1: fVTksWbnATqXaCHSg3-Hyam5vM4.roa (hash: aKoDF8WcVN36RBOxnQH2HKKv2Xv+gPNSTtzRz6i4sY8=)
2: qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl (hash: PX0F1X4Luvg+Q15gRzmWhPnhbFFcFBXK90AaqvegOcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:81:41:f6:4a:3b:ce:ec:9c:51:f5:ea:39:e6:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a073b31d888e4439e272e007c9532fc305c80d
Validity
Not Before: Mar 26 00:01:48 2026 GMT
Not After : Mar 27 00:01:48 2026 GMT
Subject: CN=64d9e054bf2cabe1102ef3d04e855448b2037c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7f:4d:dc:38:03:a4:72:93:42:d7:98:63:58:
b1:be:a3:6b:3e:09:87:e9:05:b8:f4:60:e4:e9:ec:
cd:97:24:07:75:83:7c:80:a3:42:55:b6:61:d8:97:
30:20:c7:16:f9:e6:bf:dd:d6:77:b4:8b:49:5f:2f:
15:a3:fb:f9:80:12:32:52:f8:fd:e6:fe:8a:55:fa:
ee:58:60:9c:56:4f:60:1e:f2:de:6a:54:40:75:ed:
21:e7:49:25:19:31:d4:1f:04:1e:26:b5:9f:77:8c:
d9:d4:96:16:24:1b:16:ab:cc:f9:4f:cf:b2:4e:e1:
cd:5c:73:56:38:1f:f9:46:73:b9:dc:6f:56:7a:08:
cf:46:0e:49:ca:59:6e:af:d7:bb:4f:96:20:f8:b2:
70:70:70:75:c2:89:bb:dc:fb:07:fb:1d:e4:ee:f4:
9c:34:30:16:f0:57:68:ea:e6:a6:bc:f4:0d:0b:3c:
9b:2d:45:8f:64:1b:9d:7d:97:b1:64:b0:e9:4f:f4:
09:d1:58:24:4b:8e:97:70:9c:d0:25:3c:6f:b9:90:
54:0f:13:15:74:d7:db:51:27:b2:6f:0e:c0:b6:64:
ba:15:5c:f0:d0:a5:26:cc:46:8a:2e:3b:c6:e0:3d:
2a:3b:c4:d7:23:31:50:17:6b:51:0a:a8:79:a4:f3:
39:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D9:E0:54:BF:2C:AB:E1:10:2E:F3:D0:4E:85:54:48:B2:03:7C:8D
X509v3 Authority Key Identifier:
keyid:A9:A0:73:B3:1D:88:8E:44:39:E2:72:E0:07:C9:53:2F:C3:05:C8:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qaBzsx2IjkQ54nLgB8lTL8MFyA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ba3b2f-a289-404e-aef8-4e737e06d290/1/qaBzsx2IjkQ54nLgB8lTL8MFyA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ea:4e:34:49:b5:d0:28:df:71:1a:0e:db:89:79:91:fb:64:
a3:ef:62:97:98:18:27:d6:60:ad:0a:3f:14:2f:d7:95:5d:a3:
f2:81:60:71:a2:6f:d8:ea:5c:f0:83:f4:44:00:35:ef:45:8e:
6e:27:4e:ef:e2:51:6c:53:9e:e7:80:11:7c:c7:8c:23:43:29:
eb:6c:ae:9d:40:2d:24:b0:9f:12:66:62:5f:f3:3b:7a:43:dc:
2c:eb:4b:dc:ce:28:b6:f2:68:92:fd:92:1a:ae:55:de:46:47:
49:d7:64:8c:51:1c:d0:7d:58:31:39:bf:e4:d9:93:98:b0:2f:
ba:6d:e2:49:d4:89:52:cb:95:9f:ee:84:67:ee:8c:38:f9:9c:
08:54:24:b3:ff:57:44:7c:45:be:1b:12:e6:46:0c:b1:12:25:
78:8b:e9:d0:57:0f:b0:f1:31:21:3e:82:73:d9:b1:24:56:db:
d6:5c:52:98:bd:3f:de:19:1c:f9:9c:92:94:ff:c8:f5:27:f8:
59:4d:02:27:b3:98:28:91:5b:1b:2d:5c:58:4d:9c:ad:61:ad:
dd:a9:12:bc:41:1d:51:db:78:ff:03:cf:e8:f8:28:3f:36:9e:
d8:53:3b:75:12:e2:e1:c9:41:9d:16:68:4b:06:7d:2f:e5:dc:
96:87:fb:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:51:43 2026 by rpki-client