Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft
File: 0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft (raw, json)
Hash identifier: BCEmZnlhJRwbR0DJYmn1a1CfT1pnHHWoGtbZTCZROa8=
Subject key identifier: 63:3D:20:6F:DC:D9:8A:E5:C4:C5:D4:07:BE:2F:7D:27:A2:BF:B9:72
Authority key identifier: D2:A4:01:D1:FC:11:D2:2C:83:D5:D3:F5:6E:DD:48:E9:49:89:CC:17
Certificate issuer: /CN=d2a401d1fc11d22c83d5d3f56edd48e94989cc17
Certificate serial: 019E1FEC422158643CEE21A349F790468A00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qQB0fwR0iyD1dP1bt1I6UmJzBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft
Manifest number: 0240
Signing time: Wed 13 May 2026 06:00:37 +0000
Manifest this update: Wed 13 May 2026 06:00:37 +0000
Manifest next update: Thu 14 May 2026 06:00:37 +0000
Files and hashes: 1: 0qQB0fwR0iyD1dP1bt1I6UmJzBc.crl (hash: WVUR0G+jnMdiSLwHdZSB9BdflvSAgWnmmnbDbJGDv5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qQB0fwR0iyD1dP1bt1I6UmJzBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:42:21:58:64:3c:ee:21:a3:49:f7:90:46:8a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a401d1fc11d22c83d5d3f56edd48e94989cc17
Validity
Not Before: May 13 06:00:37 2026 GMT
Not After : May 14 06:00:37 2026 GMT
Subject: CN=633d206fdcd98ae5c4c5d407be2f7d27a2bfb972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:20:ad:e0:5d:b6:9b:f8:1b:64:ae:53:31:99:
bf:ed:40:1f:83:42:09:ba:43:be:8a:23:42:01:99:
a6:78:33:62:9b:f8:d1:09:0e:b3:11:df:9a:c3:f9:
b0:8c:d7:93:0a:8d:c5:93:3d:02:f5:08:57:42:44:
bd:c8:1c:29:07:d8:50:e2:34:02:5f:24:43:81:12:
ae:8a:16:b9:59:a5:05:db:9f:e2:df:e1:24:b9:82:
55:eb:02:34:c6:a9:79:90:08:5e:f2:93:70:3c:b3:
93:f2:b9:1f:2f:b8:fc:6d:17:61:c0:c8:f4:b4:1c:
5b:db:23:9d:bb:93:fb:b4:99:37:82:3d:9a:ad:72:
40:b2:2e:f6:b3:4d:8f:fd:cd:62:eb:83:4b:69:aa:
8c:8e:db:eb:74:11:93:3e:6a:1b:1d:7c:46:fa:18:
98:a6:7a:ae:22:02:58:e2:89:5a:7e:7b:d6:d2:7b:
2b:59:af:79:72:32:1f:69:4b:d1:7c:d0:54:5a:61:
6d:0d:b6:66:2e:f0:71:a3:28:d1:46:ed:fe:47:16:
d3:e7:96:5a:23:0a:84:30:f9:c5:03:75:88:81:56:
72:b8:75:38:27:b3:13:26:95:73:3e:99:de:3d:f5:
3b:0b:8a:79:13:e2:d3:fe:bf:f0:b9:e6:b7:cd:91:
74:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3D:20:6F:DC:D9:8A:E5:C4:C5:D4:07:BE:2F:7D:27:A2:BF:B9:72
X509v3 Authority Key Identifier:
keyid:D2:A4:01:D1:FC:11:D2:2C:83:D5:D3:F5:6E:DD:48:E9:49:89:CC:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qQB0fwR0iyD1dP1bt1I6UmJzBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:1c:7d:86:73:a1:c9:92:4e:cb:b5:3c:bb:28:fd:76:ff:4d:
8a:bd:10:df:f8:ec:b8:d0:b0:27:76:c5:7e:54:09:e9:8e:08:
d2:f8:4a:06:0e:1f:6f:df:67:fe:19:6a:d1:67:8c:e9:2a:65:
83:66:a9:6c:f0:83:eb:82:30:75:c7:b3:7b:b3:f0:7a:4b:ab:
be:5c:93:39:ea:28:b6:b2:93:81:3b:d1:97:3f:1b:3f:6e:59:
0b:ec:46:42:57:4e:92:56:c8:db:32:73:5d:30:d4:ca:fe:e6:
1d:23:cd:92:ca:df:7c:6f:09:79:78:81:5d:d7:26:c7:38:63:
34:59:16:6b:ad:0d:5e:ff:2a:73:0b:70:9e:8c:be:ff:77:fb:
20:b7:82:15:a6:9f:9a:54:ef:50:54:78:ca:07:f1:f0:d8:6e:
ad:b8:4d:26:b0:37:8a:13:27:67:e7:6d:d3:31:b8:0b:43:c4:
ae:38:40:76:06:bc:d0:62:eb:84:01:ab:89:74:ec:f8:6e:4d:
fe:12:63:7c:7f:e4:fa:83:65:10:19:97:a7:99:a4:a5:08:d0:
10:3b:7d:db:c2:a2:2c:c9:9c:85:c2:09:4c:c9:ae:6c:07:e6:
57:21:28:da:73:fc:5a:99:cb:66:a2:df:7b:82:d2:fc:e7:38:
19:df:ea:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:01:52 2026 by rpki-client