Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: 0bN2aSXD319nQlJkCT7PRGWNBHnFvo6kmmzStSMpYbc=
Subject key identifier: 83:B8:48:99:31:75:26:F3:EE:F5:B4:CB:7E:31:33:D5:15:9E:A8:01
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 019D2AA9C70EDA1D3056C3A71EAEA7B5D9BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 15:01:02 +0000
Manifest this update: Thu 26 Mar 2026 15:01:02 +0000
Manifest next update: Fri 27 Mar 2026 15:01:02 +0000
Files and hashes: 1: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: 2WYq01+fNtEimy0QYklz1uzuH9hYylgsrtnrnpwQbzg=)
2: y-ScFLanDsjVsM3wGQyWrMPavCs.roa (hash: EfxOZrUcMelgWorEhLZGI65x8ngLIwOn6wnoqi8/fyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:c7:0e:da:1d:30:56:c3:a7:1e:ae:a7:b5:d9:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Mar 26 15:01:02 2026 GMT
Not After : Mar 27 15:01:02 2026 GMT
Subject: CN=83b84899317526f3eef5b4cb7e3133d5159ea801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5a:2f:e5:58:25:6f:80:53:fc:c1:9e:b4:c2:
be:b4:6d:57:27:49:44:26:63:5f:ff:c7:e9:d1:fd:
58:e9:ed:9f:5e:48:04:69:3f:81:cc:35:c6:f7:89:
1a:86:11:a1:c8:a0:69:ad:6d:77:7e:73:c9:54:30:
64:91:4d:f4:49:66:ad:a8:2c:b3:24:34:54:11:3b:
b5:ae:d4:36:6f:9d:ea:03:f9:b1:96:d8:94:f5:12:
99:f2:a9:5a:0b:75:1e:46:a4:03:0c:5b:bb:e8:40:
05:90:c2:fa:3e:30:ed:3b:29:89:b1:f1:e1:bb:a2:
0b:26:db:be:62:86:08:73:42:80:11:d4:ba:8b:65:
e8:e1:a9:e2:b2:f7:cd:30:a5:bc:f2:8f:19:68:c3:
4d:0f:44:35:6b:96:2e:89:d1:0a:d5:e9:99:06:f1:
63:37:80:50:e8:b3:7d:84:c2:db:84:75:91:e1:18:
df:c4:4a:db:9e:bc:56:2d:d6:b2:e0:f5:2e:23:67:
d7:bf:29:55:89:a4:03:48:1c:3d:29:a1:11:ea:23:
8e:5f:79:cf:64:72:b9:85:a9:b0:8b:82:4f:44:a6:
12:cc:10:7c:44:b0:61:66:f5:b4:7d:ec:5f:bc:2f:
3f:5a:6b:da:33:6e:61:e1:e7:32:07:ab:57:7f:20:
7f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B8:48:99:31:75:26:F3:EE:F5:B4:CB:7E:31:33:D5:15:9E:A8:01
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:6d:1f:66:47:1c:d4:07:52:7e:be:29:12:55:21:1b:7a:6b:
7b:00:19:8a:53:d4:f2:31:d4:57:33:51:88:8b:d6:0b:bc:5c:
d8:a1:d6:73:aa:6c:0a:a3:95:ac:f3:d7:d9:af:0d:68:49:71:
81:a4:75:36:48:73:04:c3:ef:7c:d5:29:32:7e:6d:99:a4:9d:
1f:a1:4e:a8:82:bd:48:a8:39:da:f8:4e:90:02:11:f3:70:be:
a4:c2:c4:94:3c:67:bd:ed:5f:1e:4c:1d:99:6b:15:83:36:d2:
59:03:4a:55:78:57:80:5b:f0:7e:04:d8:e8:25:b0:e8:64:f8:
bf:5d:57:30:f3:f5:6c:c4:cc:11:53:02:f3:02:46:bc:ff:8c:
70:2d:a6:23:1e:35:f5:6a:ad:4f:4e:ee:ac:d4:60:22:59:78:
7a:2a:e3:9a:ac:18:15:90:21:21:fa:02:fa:a8:0a:bc:68:78:
73:2c:bb:65:cd:18:a6:fa:c4:ce:9f:2c:d7:b3:48:2e:fd:73:
78:4d:f7:2e:cd:90:99:92:22:35:d5:3d:68:dc:b9:cc:e1:1a:
96:d4:f8:78:d6:f2:be:21:cf:a8:86:f9:7e:52:d7:ed:b9:45:
6b:62:c7:a0:ec:51:22:39:8f:6d:7f:be:3b:0c:6c:b1:8e:b0:
b0:8b:e2:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qqccO2h0wVsOnHq6ntdm9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNDUzNjRlNDlkYzNhMTViZWZmMjY5YzNhMzJiM2MwNTQx
YzhiNjYwHhcNMjYwMzI2MTUwMTAyWhcNMjYwMzI3MTUwMTAyWjAzMTEwLwYDVQQD
Eyg4M2I4NDg5OTMxNzUyNmYzZWVmNWI0Y2I3ZTMxMzNkNTE1OWVhODAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqlov5Vglb4BT/MGetMK+tG1XJ0lE
JmNf/8fp0f1Y6e2fXkgEaT+BzDXG94kahhGhyKBprW13fnPJVDBkkU30SWatqCyz
JDRUETu1rtQ2b53qA/mxltiU9RKZ8qlaC3UeRqQDDFu76EAFkML6PjDtOymJsfHh
u6ILJtu+YoYIc0KAEdS6i2Xo4anisvfNMKW88o8ZaMNND0Q1a5YuidEK1emZBvFj
N4BQ6LN9hMLbhHWR4RjfxErbnrxWLday4PUuI2fXvylViaQDSBw9KaER6iOOX3nP
ZHK5hamwi4JPRKYSzBB8RLBhZvW0fexfvC8/WmvaM25h4ecyB6tXfyB/NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIO4SJkxdSbz7vW0y34xM9UVnqgBMB8GA1UdIwQY
MBaAFKtFNk5J3DoVvv8mnDoys8BUHItmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTct
ZjhiZDI1MDQ1NGViLzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTctZjhiZDI1MDQ1NGVi
LzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdW0fZkcc
1AdSfr4pElUhG3prewAZilPU8jHUVzNRiIvWC7xc2KHWc6psCqOVrPPX2a8NaElx
gaR1NkhzBMPvfNUpMn5tmaSdH6FOqIK9SKg52vhOkAIR83C+pMLElDxnve1fHkwd
mWsVgzbSWQNKVXhXgFvwfgTY6CWw6GT4v11XMPP1bMTMEVMC8wJGvP+McC2mIx41
9WqtT07urNRgIll4eirjmqwYFZAhIfoC+qgKvGh4cyy7Zc0YpvrEzp8s17NILv1z
eE33Ls2QmZIiNdU9aNy5zOEaltT4eNbyviHPqIb5flLX7blFa2LHoOxRIjmPbX++
OwxssY6wsIviwQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 21:38:57 2026 by rpki-client