Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft
File: 0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft (raw, json)
Hash identifier: znum7rwEukXsNLI2ZkjzkT6Tv1bkSxH4e4DXjBd9wZk=
Subject key identifier: E1:1D:82:6E:69:E2:3B:38:E3:69:C6:D5:60:06:87:4F:EA:26:96:C3
Authority key identifier: D2:A4:01:D1:FC:11:D2:2C:83:D5:D3:F5:6E:DD:48:E9:49:89:CC:17
Certificate issuer: /CN=d2a401d1fc11d22c83d5d3f56edd48e94989cc17
Certificate serial: 019D26CCE291F5A49967130EFEBA664A8F91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qQB0fwR0iyD1dP1bt1I6UmJzBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft
Manifest number: 01BF
Signing time: Wed 25 Mar 2026 21:00:54 +0000
Manifest this update: Wed 25 Mar 2026 21:00:54 +0000
Manifest next update: Thu 26 Mar 2026 21:00:54 +0000
Files and hashes: 1: 0qQB0fwR0iyD1dP1bt1I6UmJzBc.crl (hash: E8Pj/wGm4QyIcmXD02QQP233jcXT0X8LvrJ0927UkM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qQB0fwR0iyD1dP1bt1I6UmJzBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:e2:91:f5:a4:99:67:13:0e:fe:ba:66:4a:8f:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a401d1fc11d22c83d5d3f56edd48e94989cc17
Validity
Not Before: Mar 25 21:00:54 2026 GMT
Not After : Mar 26 21:00:54 2026 GMT
Subject: CN=e11d826e69e23b38e369c6d56006874fea2696c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:72:61:52:7a:ca:4f:13:f3:02:1a:c8:cd:99:
20:98:3a:33:74:41:4f:e8:a1:25:bf:71:a2:e2:af:
0d:47:81:d1:5b:22:4a:f0:2f:08:3b:06:96:4c:0a:
ef:f4:bd:32:e9:80:be:11:e8:c2:a0:05:3b:ba:74:
d8:ae:63:83:ca:1d:fe:bc:d1:f7:a4:95:a1:e3:13:
4c:d2:c5:78:56:98:05:dd:51:aa:b2:28:f9:e7:f7:
d7:9f:e7:4b:c3:8a:d0:92:7d:5b:97:f8:dc:a5:76:
83:70:19:06:27:74:a4:b8:69:89:ef:57:0b:ef:e0:
99:81:24:6a:de:63:b7:67:f2:e5:0a:25:e5:75:1e:
4a:c7:6c:8f:8f:c8:fe:04:1b:c2:46:bd:3e:d5:5c:
86:87:53:a9:93:42:b0:10:2e:ad:3c:4b:d2:12:a8:
47:4c:7e:88:c9:09:d5:f7:a0:43:3a:91:13:4a:f8:
32:b9:d3:8b:47:99:57:cd:81:56:9c:49:b8:40:f0:
4e:a6:d9:b9:d1:2e:b6:a9:b2:18:3c:ff:40:da:c1:
99:f0:e8:e0:eb:bb:01:17:ba:78:16:29:26:65:70:
e0:56:a1:1e:7e:77:3c:d5:07:d0:f5:19:4c:8f:f5:
c6:c2:44:5e:d1:1f:70:df:08:01:46:d0:e0:56:f8:
21:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:1D:82:6E:69:E2:3B:38:E3:69:C6:D5:60:06:87:4F:EA:26:96:C3
X509v3 Authority Key Identifier:
keyid:D2:A4:01:D1:FC:11:D2:2C:83:D5:D3:F5:6E:DD:48:E9:49:89:CC:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qQB0fwR0iyD1dP1bt1I6UmJzBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9ed3e2-90e5-422b-8f35-4482415c626d/1/0qQB0fwR0iyD1dP1bt1I6UmJzBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:7e:47:a0:55:e4:b8:20:2a:21:21:4e:23:e5:1e:ff:bd:ac:
84:7f:16:d2:c9:39:fb:3d:ec:82:81:0e:86:5b:94:d0:75:c6:
e0:ba:a9:a5:57:33:23:54:91:99:24:83:ea:68:4b:01:d0:b4:
5c:8c:64:06:9e:c3:36:bb:3f:9e:c8:d4:bc:31:00:69:d5:17:
78:07:11:d8:57:4a:f9:8c:00:23:77:57:36:18:da:ee:0e:48:
e8:de:b8:4a:ea:d6:59:bd:98:dc:32:e7:77:14:d4:42:9a:d4:
3a:3e:d5:9c:dc:0a:b3:76:12:4c:a9:d7:c5:04:b1:d3:2c:9e:
ca:6f:b0:28:7c:f4:cc:21:ec:79:00:18:65:54:26:18:c8:a0:
21:4f:13:f8:3f:29:b9:e6:37:b4:15:f5:62:b3:4d:df:eb:51:
76:f6:01:08:49:76:6d:b5:d4:06:8a:a1:68:c1:da:5c:fb:84:
8f:91:25:e8:ef:9c:c8:00:4b:15:1e:4d:1d:1b:b9:f7:a3:70:
22:2c:9b:bd:08:34:5b:6f:bd:d3:ce:1b:e4:ae:59:c1:bb:6a:
4e:6e:91:31:8a:a4:a7:29:e1:e8:8a:eb:f7:3a:b6:63:5b:fc:
a4:2b:92:33:d7:18:99:90:65:b5:bb:20:95:9e:78:da:20:ae:
40:a0:c4:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:36:02 2026 by rpki-client