Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft
File: qDOwgB1A0FhJBy4vyBITsCXSorw.mft (raw, json)
Hash identifier: pHgMAKEIu2QlLXxWlHY0qEAz7J8JLWpKJBlyAbdGSM0=
Subject key identifier: 2D:F5:16:B0:E0:AD:9D:F0:F4:14:99:71:23:65:41:AF:3B:74:62:F5
Authority key identifier: A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC
Certificate issuer: /CN=a833b0801d40d05849072e2fc81213b025d2a2bc
Certificate serial: 019E1EA38103A3F87893A34D9FBDF7BBE0D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft
Manifest number: 02BA
Signing time: Wed 13 May 2026 00:01:32 +0000
Manifest this update: Wed 13 May 2026 00:01:32 +0000
Manifest next update: Thu 14 May 2026 00:01:32 +0000
Files and hashes: 1: 8dx6CDeeDv1yQZPzxZW_CCsiWuI.roa (hash: d7H5FvAS5k9Xu18WJ58VOwYw00U/ixBu9RyNPrcPus0=)
2: qDOwgB1A0FhJBy4vyBITsCXSorw.crl (hash: eeiogFA06OpZPJDm1Ohvu6LqMHr7vXBSbS+lEOXq2Aw=)
3: vZtaog6rpuNltteEkdUJlHMVrcw.roa (hash: 7RtaWZDq5AUONnDyPCbjKsuXwOlICNTJNhflkjZkwLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft
rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:81:03:a3:f8:78:93:a3:4d:9f:bd:f7:bb:e0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a833b0801d40d05849072e2fc81213b025d2a2bc
Validity
Not Before: May 13 00:01:32 2026 GMT
Not After : May 14 00:01:32 2026 GMT
Subject: CN=2df516b0e0ad9df0f4149971236541af3b7462f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7c:0a:c5:76:50:1a:33:60:74:43:f2:36:03:
e0:04:f5:f8:33:14:c1:ac:b5:12:22:5c:69:7c:e6:
2d:31:b8:2b:b2:5b:ba:f1:46:f6:13:a9:25:3d:5c:
c4:8e:89:63:e2:54:94:4e:67:ab:2f:cb:e7:7a:bd:
fb:78:f8:81:85:d4:dd:c3:40:3a:d2:a4:1a:38:d3:
bd:16:00:96:9f:46:d2:24:dc:28:11:69:8f:ee:d2:
4c:43:d3:38:df:c5:22:2c:b9:55:63:9e:fa:ce:b8:
86:90:8b:fa:a2:71:2a:aa:a6:5e:b8:5e:ae:ba:66:
07:ed:c2:ef:f4:b2:fa:d5:83:dd:23:1d:69:52:30:
81:53:93:f6:e6:5c:ce:10:ee:d9:a9:a7:bb:7d:10:
ed:51:30:dc:a5:8c:71:2a:fc:db:f2:4e:e7:88:64:
fd:cc:89:ac:1c:0c:ae:0a:91:4a:58:e3:81:d3:0a:
93:fc:58:af:35:4e:c7:fb:cd:96:39:63:70:a5:aa:
eb:39:a0:d0:3f:49:7a:25:01:12:25:70:22:97:e8:
01:1e:1f:19:98:06:c6:bd:2d:d0:23:1a:35:21:ad:
36:e9:1e:a9:43:9f:fb:08:4d:c6:a3:fa:69:5d:a3:
c6:81:98:4d:eb:a3:ec:92:c9:4b:15:b5:fc:e2:a8:
1b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F5:16:B0:E0:AD:9D:F0:F4:14:99:71:23:65:41:AF:3B:74:62:F5
X509v3 Authority Key Identifier:
keyid:A8:33:B0:80:1D:40:D0:58:49:07:2E:2F:C8:12:13:B0:25:D2:A2:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qDOwgB1A0FhJBy4vyBITsCXSorw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f42ab1-1089-4b14-b2f9-17bf066da4c5/1/qDOwgB1A0FhJBy4vyBITsCXSorw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:2c:ad:51:9f:4e:ab:c0:e4:b5:6b:43:2f:7d:19:36:a2:97:
dc:31:9b:67:2d:6e:25:0b:1f:14:d0:69:02:b5:36:8f:b0:2e:
1f:a4:e4:24:5a:df:7e:41:6a:d9:0f:33:85:ab:51:88:f2:3d:
95:2e:ca:d0:b1:c3:02:6b:78:74:58:19:96:2a:a1:06:c3:e6:
6f:f1:9d:35:3f:26:7c:08:09:c8:38:05:0f:92:12:ef:12:2e:
e8:25:35:d7:4a:05:ad:15:d8:37:c3:03:8c:84:b8:d5:9c:51:
ee:26:c5:d2:86:22:92:31:75:c7:95:b4:1a:e1:ca:08:1c:db:
41:3d:2e:bb:38:67:b9:ca:d6:67:f6:26:2a:5e:b9:d0:e7:6c:
a7:74:f6:a0:65:e4:7d:4b:47:e1:97:b0:c6:ef:94:86:7e:d8:
c3:0b:e1:0a:62:d0:59:ad:fb:26:49:19:04:6b:8e:6b:8f:4e:
7c:14:83:ca:50:68:22:db:4e:87:91:1b:44:a0:ed:ac:66:e1:
20:0e:d7:86:d0:57:ab:24:82:45:2f:3c:49:07:74:69:87:11:
05:3f:86:bb:71:0c:67:d3:cf:79:a5:c4:2c:d0:b2:d2:f3:2e:
76:21:03:a0:d1:d9:7b:8f:68:87:5a:d1:5c:9f:52:12:3b:34:
a1:99:ff:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:12:58 2026 by rpki-client