Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
File: q33wfyEEN2kvd-7DRpuaSCuW0ao.mft (raw, json)
Hash identifier: eCZUSHTGNDcRxiCkLZ/2+R4xyXz4yb5F3a8B6ZcpVeM=
Subject key identifier: F5:2D:16:AD:8D:DE:03:B7:2E:D3:A9:7C:22:96:6D:05:FC:E8:D5:C7
Authority key identifier: AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
Certificate issuer: /CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Certificate serial: 019D28167F935F7F326E768FB968A826B1D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
Manifest number: 081B
Signing time: Thu 26 Mar 2026 03:00:56 +0000
Manifest this update: Thu 26 Mar 2026 03:00:56 +0000
Manifest next update: Fri 27 Mar 2026 03:00:56 +0000
Files and hashes: 1: q33wfyEEN2kvd-7DRpuaSCuW0ao.crl (hash: Hchx6K7TIkKFrK4VDxFEXDPcG9FBJiQp2qcU7y3UGn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:7f:93:5f:7f:32:6e:76:8f:b9:68:a8:26:b1:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7df07f210437692f77eec3469b9a482b96d1aa
Validity
Not Before: Mar 26 03:00:56 2026 GMT
Not After : Mar 27 03:00:56 2026 GMT
Subject: CN=f52d16ad8dde03b72ed3a97c22966d05fce8d5c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:df:a1:d6:ba:81:f3:6b:95:d4:09:e9:cb:8b:
21:48:33:ef:2e:0b:f5:cb:fc:8c:0e:cb:f4:8a:2f:
5e:2e:6e:bf:f4:1d:e5:83:b8:d0:5e:af:c3:9d:e3:
84:c1:05:49:c2:66:f8:90:1c:51:53:1b:16:82:1e:
24:cb:3d:28:65:39:ab:8f:be:b1:4e:11:5f:82:d1:
d8:b4:a8:36:15:c6:8b:e7:69:ca:af:ac:50:eb:cb:
41:28:a1:44:e3:e0:d5:7a:5a:18:52:e9:4a:36:aa:
07:d1:aa:cd:c7:fc:6e:aa:85:fc:4c:7f:e1:3c:e9:
d7:39:dd:2e:7f:5a:84:54:53:97:57:e8:11:86:06:
a8:8b:f6:2a:6a:dd:49:7a:f3:43:36:95:f7:87:c8:
15:4c:ff:88:37:5d:7f:83:9c:00:1f:e5:fb:c0:59:
ba:0a:44:2c:7b:36:39:bc:e9:45:0b:7a:4f:2e:89:
64:92:6e:a3:7e:8a:99:08:35:f6:c0:ba:7f:c3:65:
0c:09:60:f1:89:06:b4:b9:34:dc:8f:c8:23:85:4f:
52:31:ea:c8:32:ba:e2:31:89:10:51:30:2d:82:3f:
4d:05:f0:6c:46:12:81:18:8c:23:9d:30:90:e2:53:
cf:55:7e:ec:da:3f:8c:ec:58:b6:6a:03:90:67:5f:
c7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2D:16:AD:8D:DE:03:B7:2E:D3:A9:7C:22:96:6D:05:FC:E8:D5:C7
X509v3 Authority Key Identifier:
keyid:AB:7D:F0:7F:21:04:37:69:2F:77:EE:C3:46:9B:9A:48:2B:96:D1:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q33wfyEEN2kvd-7DRpuaSCuW0ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/287870-0e1b-4cd2-8f24-6710e96a1b6f/1/q33wfyEEN2kvd-7DRpuaSCuW0ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:6e:fa:a1:da:92:1c:94:12:6a:14:4d:be:70:3d:4f:1a:2a:
89:a5:f0:b1:c3:2c:bb:da:84:90:8e:02:94:b4:00:0d:71:42:
9d:c3:f6:31:72:10:d6:92:0f:ae:ac:c9:04:41:04:e9:10:9d:
56:df:e4:79:a4:a2:54:ba:c9:75:50:0a:3c:09:69:33:e2:8a:
ca:79:0f:c6:dd:bc:41:22:77:19:7c:93:8f:ea:46:14:f4:b6:
a6:ec:cc:7d:51:92:90:8b:29:50:8a:e0:8b:1f:0f:1e:0a:e5:
35:ff:17:55:26:97:88:ec:a3:32:46:b0:56:c3:94:f8:d1:78:
63:7b:a3:2b:93:de:02:9d:95:30:5c:e8:c7:20:08:f5:39:04:
35:8c:e4:5e:05:58:e1:8f:44:a0:18:3c:0c:92:83:94:00:77:
2e:7f:d6:bf:c1:bf:84:ad:f9:cb:48:f1:47:55:0f:83:36:92:
05:39:52:12:a2:74:e3:91:3c:3a:fa:c4:1d:a0:cf:c5:1e:4a:
f1:f3:6d:21:52:c6:83:b3:50:b4:b7:e7:54:1c:58:58:6f:5b:
75:9b:bd:1b:be:63:ea:c5:f2:10:ad:87:6a:32:fa:a9:25:16:
a3:26:4d:6f:f5:2a:11:b8:e6:52:ff:43:f0:4b:6e:0c:02:aa:
ca:d4:a1:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oFn+TX38ybnaPuWioJrHXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiN2RmMDdmMjEwNDM3NjkyZjc3ZWVjMzQ2OWI5YTQ4MmI5
NmQxYWEwHhcNMjYwMzI2MDMwMDU2WhcNMjYwMzI3MDMwMDU2WjAzMTEwLwYDVQQD
EyhmNTJkMTZhZDhkZGUwM2I3MmVkM2E5N2MyMjk2NmQwNWZjZThkNWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5d+h1rqB82uV1Anpy4shSDPvLgv1
y/yMDsv0ii9eLm6/9B3lg7jQXq/DneOEwQVJwmb4kBxRUxsWgh4kyz0oZTmrj76x
ThFfgtHYtKg2FcaL52nKr6xQ68tBKKFE4+DVeloYUulKNqoH0arNx/xuqoX8TH/h
POnXOd0uf1qEVFOXV+gRhgaoi/Yqat1JevNDNpX3h8gVTP+IN11/g5wAH+X7wFm6
CkQsezY5vOlFC3pPLolkkm6jfoqZCDX2wLp/w2UMCWDxiQa0uTTcj8gjhU9SMerI
MrriMYkQUTAtgj9NBfBsRhKBGIwjnTCQ4lPPVX7s2j+M7Fi2agOQZ1/HaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPUtFq2N3gO3LtOpfCKWbQX86NXHMB8GA1UdIwQY
MBaAFKt98H8hBDdpL3fuw0abmkgrltGqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTMzd2Z5RUVOMmt2ZC03RFJwdWFTQ3VXMGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8yODc4NzAtMGUxYi00Y2QyLThmMjQt
NjcxMGU5NmExYjZmLzEvcTMzd2Z5RUVOMmt2ZC03RFJwdWFTQ3VXMGFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS8yODc4NzAtMGUxYi00Y2QyLThmMjQtNjcxMGU5NmExYjZm
LzEvcTMzd2Z5RUVOMmt2ZC03RFJwdWFTQ3VXMGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgm76odqS
HJQSahRNvnA9TxoqiaXwscMsu9qEkI4ClLQADXFCncP2MXIQ1pIPrqzJBEEE6RCd
Vt/keaSiVLrJdVAKPAlpM+KKynkPxt28QSJ3GXyTj+pGFPS2puzMfVGSkIspUIrg
ix8PHgrlNf8XVSaXiOyjMkawVsOU+NF4Y3ujK5PeAp2VMFzoxyAI9TkENYzkXgVY
4Y9EoBg8DJKDlAB3Ln/Wv8G/hK35y0jxR1UPgzaSBTlSEqJ045E8OvrEHaDPxR5K
8fNtIVLGg7NQtLfnVBxYWG9bdZu9G75j6sXyEK2HajL6qSUWoyZNb/UqEbjmUv9D
8EtuDAKqytShtQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 07:39:08 2026 by rpki-client