Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
File: Q2TnsO7yBINcffKon2DAK-HYmt0.mft (raw, json)
Hash identifier: xTlmNfULWa8MO1yfdn2JuTHRqCPde8yukyd7AqsmPxM=
Subject key identifier: 77:CD:F4:80:A3:EF:3E:5F:6C:C5:4E:D4:65:02:35:19:A1:26:41:E8
Authority key identifier: 43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD
Certificate issuer: /CN=4364e7b0eef204835c7df2a89f60c02be1d89add
Certificate serial: 019D27729C733B0312E1F6CF873F8A8663F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
Manifest number: 02C5
Signing time: Thu 26 Mar 2026 00:01:55 +0000
Manifest this update: Thu 26 Mar 2026 00:01:55 +0000
Manifest next update: Fri 27 Mar 2026 00:01:55 +0000
Files and hashes: 1: FQ4np3Uu_U8HBc_wlmyGfaHB8_k.roa (hash: ZMkh1EkPj0lBhpV7GegP5F1AQLzZZxZ3YJL9c+bLr0k=)
2: Q2TnsO7yBINcffKon2DAK-HYmt0.crl (hash: l4DtFHlfMMH8q4LrHAXMgihdb+qvt3Oe8YYvEYm6Ke0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:9c:73:3b:03:12:e1:f6:cf:87:3f:8a:86:63:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4364e7b0eef204835c7df2a89f60c02be1d89add
Validity
Not Before: Mar 26 00:01:55 2026 GMT
Not After : Mar 27 00:01:55 2026 GMT
Subject: CN=77cdf480a3ef3e5f6cc54ed465023519a12641e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a2:ca:66:2d:2e:51:e6:7a:47:50:97:ae:7d:
c8:f1:15:7a:4a:76:f8:4c:a7:bb:bb:56:c7:21:ee:
f0:10:27:47:40:5d:07:59:96:32:fd:a0:06:36:1b:
aa:0d:af:96:f6:0d:e2:ca:7b:a1:d5:37:2a:50:c2:
20:ed:f3:fa:30:5e:53:a5:3f:ab:c7:d0:b8:ac:ec:
8a:4a:1a:c4:9a:34:e7:d1:76:47:92:c8:61:1e:c7:
37:9d:8f:c8:2a:e5:ad:f7:fe:73:2c:da:f8:41:b2:
63:9d:f9:35:ce:9a:13:fb:e4:d9:ec:74:2e:86:fc:
ba:2d:76:5f:20:29:56:3a:16:31:e1:af:b1:70:eb:
5f:bd:bc:18:44:94:74:f1:bf:2c:e6:ea:a3:e9:0b:
04:02:d7:bf:23:73:25:4b:f8:fa:4b:29:7f:55:d5:
66:e3:3b:7d:f9:fa:00:42:92:67:fc:71:85:bb:9a:
9d:04:7d:fa:13:27:88:ef:0c:4e:de:e8:8a:42:87:
3d:43:25:9f:94:1b:1e:a1:e1:2e:25:66:38:b7:4c:
c6:01:74:a3:30:d7:55:56:6f:98:06:65:1d:ff:5f:
4b:8c:17:7d:20:b7:6c:6b:a3:1d:70:df:1d:ac:e0:
31:84:73:6e:e5:4d:d3:aa:8f:c9:06:22:32:a9:f1:
fe:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:CD:F4:80:A3:EF:3E:5F:6C:C5:4E:D4:65:02:35:19:A1:26:41:E8
X509v3 Authority Key Identifier:
keyid:43:64:E7:B0:EE:F2:04:83:5C:7D:F2:A8:9F:60:C0:2B:E1:D8:9A:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2TnsO7yBINcffKon2DAK-HYmt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/a9a51a-e8e3-497a-aba2-e799c23aac20/1/Q2TnsO7yBINcffKon2DAK-HYmt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:25:47:65:c0:3f:bf:da:6a:ff:08:2f:fa:10:b2:49:93:e7:
b4:5e:1c:6e:2e:9b:78:61:75:05:d4:ab:b8:b3:22:4e:f8:51:
c7:c8:ea:50:09:0f:ec:f5:43:9b:63:c4:98:b6:89:2e:f3:82:
85:91:2e:39:ba:98:e2:87:6a:a1:23:f0:63:7b:24:87:52:d8:
31:f5:56:9f:ca:94:85:ed:02:56:d1:7e:17:70:d6:64:d0:40:
3c:3b:ab:6f:45:59:17:e9:33:38:37:3c:5d:f7:c9:09:61:45:
46:70:ef:d2:47:b4:6d:77:b7:0c:ca:d3:64:04:01:ab:86:b0:
88:23:03:ac:e9:f3:ba:ac:31:af:04:97:27:a0:ca:56:52:e8:
24:06:ea:15:70:f2:aa:eb:80:e5:c7:a1:d9:e9:df:95:93:35:
23:f3:c8:72:b2:b4:f1:88:36:99:70:23:f4:f3:78:d8:c2:db:
25:68:99:ec:c1:d3:bd:24:56:b1:2f:1b:70:79:03:ec:77:40:
93:1e:36:c0:97:e6:20:f1:38:4e:a6:17:8f:11:d7:01:0f:52:
eb:ad:97:05:b2:6c:61:cc:12:14:2d:2a:8b:ac:59:e2:2f:3a:
f2:2e:21:11:13:22:b9:f9:51:43:06:2d:f0:93:0d:28:ae:83:
96:41:37:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncpxzOwMS4fbPhz+KhmP5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzNjRlN2IwZWVmMjA0ODM1YzdkZjJhODlmNjBjMDJiZTFk
ODlhZGQwHhcNMjYwMzI2MDAwMTU1WhcNMjYwMzI3MDAwMTU1WjAzMTEwLwYDVQQD
Eyg3N2NkZjQ4MGEzZWYzZTVmNmNjNTRlZDQ2NTAyMzUxOWExMjY0MWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqLKZi0uUeZ6R1CXrn3I8RV6Snb4
TKe7u1bHIe7wECdHQF0HWZYy/aAGNhuqDa+W9g3iynuh1TcqUMIg7fP6MF5TpT+r
x9C4rOyKShrEmjTn0XZHkshhHsc3nY/IKuWt9/5zLNr4QbJjnfk1zpoT++TZ7HQu
hvy6LXZfIClWOhYx4a+xcOtfvbwYRJR08b8s5uqj6QsEAte/I3MlS/j6Syl/VdVm
4zt9+foAQpJn/HGFu5qdBH36EyeI7wxO3uiKQoc9QyWflBseoeEuJWY4t0zGAXSj
MNdVVm+YBmUd/19LjBd9ILdsa6MdcN8drOAxhHNu5U3Tqo/JBiIyqfH+9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHfN9ICj7z5fbMVO1GUCNRmhJkHoMB8GA1UdIwQY
MBaAFENk57Du8gSDXH3yqJ9gwCvh2JrdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9hOWE1MWEtZThlMy00OTdhLWFiYTIt
ZTc5OWMyM2FhYzIwLzEvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9hOWE1MWEtZThlMy00OTdhLWFiYTItZTc5OWMyM2FhYzIw
LzEvUTJUbnNPN3lCSU5jZmZLb24yREFLLUhZbXQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYyVHZcA/
v9pq/wgv+hCySZPntF4cbi6beGF1BdSruLMiTvhRx8jqUAkP7PVDm2PEmLaJLvOC
hZEuObqY4odqoSPwY3skh1LYMfVWn8qUhe0CVtF+F3DWZNBAPDurb0VZF+kzODc8
XffJCWFFRnDv0ke0bXe3DMrTZAQBq4awiCMDrOnzuqwxrwSXJ6DKVlLoJAbqFXDy
quuA5ceh2enflZM1I/PIcrK08Yg2mXAj9PN42MLbJWiZ7MHTvSRWsS8bcHkD7HdA
kx42wJfmIPE4TqYXjxHXAQ9S662XBbJsYcwSFC0qi6xZ4i868i4hERMiuflRQwYt
8JMNKK6DlkE3iQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 04:51:00 2026 by rpki-client