Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
File: q22oNLMssSxL2uM_Zy80jZg_MXY.mft (raw, json)
Hash identifier: 8ZpVKkA8rgQLGsQwQI3BDac5Eiv8sdDQCZCYWBZ7W7k=
Subject key identifier: 6C:A0:32:F9:E8:9E:2B:E9:48:97:C9:4F:45:25:D3:1D:F8:A8:1C:83
Authority key identifier: AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
Certificate issuer: /CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Certificate serial: 019D28BB8E2054633635B4ADF87504DBD3C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
Manifest number: 10EF
Signing time: Thu 26 Mar 2026 06:01:13 +0000
Manifest this update: Thu 26 Mar 2026 06:01:13 +0000
Manifest next update: Fri 27 Mar 2026 06:01:13 +0000
Files and hashes: 1: a8dxxiPCuafVW1pqgQGmv3vqh6s.roa (hash: rc0rV/NjxsPC/BhNPsXHclt7GZGOVjNNBw3HxehbP5Y=)
2: q22oNLMssSxL2uM_Zy80jZg_MXY.crl (hash: pCjfKmaCx+7LHnj14guF2ynDq4WuCY9LmeeuoWs5rgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:8e:20:54:63:36:35:b4:ad:f8:75:04:db:d3:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab6da834b32cb12c4bdae33f672f348d983f3176
Validity
Not Before: Mar 26 06:01:13 2026 GMT
Not After : Mar 27 06:01:13 2026 GMT
Subject: CN=6ca032f9e89e2be94897c94f4525d31df8a81c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9a:4b:fa:55:3a:83:84:e4:1f:56:d3:9f:84:
99:d6:1e:ed:8d:c8:a5:3d:bd:ae:b6:6d:bd:78:b1:
fb:d6:02:45:38:63:46:c3:f5:7f:3e:80:3d:3e:a0:
45:47:bd:13:b0:04:b5:3f:83:e2:93:5f:62:48:4a:
39:12:dd:26:ed:4c:23:1f:d6:e2:af:d6:95:6d:a2:
c7:53:77:18:2e:7d:73:34:89:75:64:a4:0d:50:f2:
4c:d9:16:f7:fb:01:ce:dd:cf:0e:a6:13:d9:1b:31:
61:e5:82:c2:28:1c:9b:2d:4d:f0:98:00:63:02:9b:
7d:a9:d3:a5:e0:6d:50:bf:b3:43:cc:3a:e5:db:c2:
52:14:3a:be:65:ba:71:59:c6:c7:80:71:9e:0a:2c:
75:34:60:00:4b:0a:76:f7:c3:2c:e3:f0:9d:9f:07:
27:ab:5e:d9:85:86:03:49:f8:10:a3:4f:35:b6:ae:
5c:fb:b2:10:80:49:f3:24:dc:de:5b:b4:09:8c:1f:
51:36:06:ae:c8:15:3e:a8:1d:b0:08:15:3b:06:3d:
60:60:87:65:88:81:0a:dd:ed:55:33:95:97:05:6c:
d7:1f:fd:b6:59:55:f4:48:dc:93:77:66:ad:96:b2:
b3:12:5e:a2:db:48:d4:7b:23:fe:7f:4e:72:be:90:
df:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A0:32:F9:E8:9E:2B:E9:48:97:C9:4F:45:25:D3:1D:F8:A8:1C:83
X509v3 Authority Key Identifier:
keyid:AB:6D:A8:34:B3:2C:B1:2C:4B:DA:E3:3F:67:2F:34:8D:98:3F:31:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q22oNLMssSxL2uM_Zy80jZg_MXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ec7a7-0abc-4ff9-9958-5867ca77897e/1/q22oNLMssSxL2uM_Zy80jZg_MXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:fa:56:69:44:72:4e:00:68:07:8f:7f:53:a8:92:a0:11:c9:
de:dd:6e:42:b5:f8:0f:73:9a:26:dc:82:eb:e7:cf:97:00:62:
a1:7e:a7:83:7c:a0:08:8e:1f:e3:cc:b3:51:e9:bf:e5:7c:73:
1d:d3:96:9c:00:e9:0f:7a:88:b9:c9:34:99:02:78:a4:de:63:
d8:41:92:d1:b4:aa:79:68:61:a6:7a:0b:50:71:15:25:69:b8:
82:40:9c:c6:00:40:31:b0:aa:14:f2:17:37:3c:bd:4e:40:d1:
c6:30:ca:1c:2d:15:ce:19:68:57:0e:64:bb:21:c2:51:37:ed:
9e:8d:33:50:64:a4:cd:0e:be:61:39:7a:ab:31:3f:02:7d:8a:
8b:a2:ce:27:03:88:94:31:58:da:df:e3:85:5f:37:85:d2:4e:
07:5b:39:a1:d2:35:b5:0c:f5:6b:c4:81:fa:06:e2:9d:77:7e:
b0:da:66:38:c7:38:fc:9e:fa:3f:20:38:30:ee:a2:73:a4:be:
bd:3c:15:35:ad:f0:10:9d:6d:b5:6d:e8:53:7b:dc:00:ad:77:
c3:a8:0f:eb:49:fa:f9:f4:5c:95:37:da:49:0a:47:67:74:6c:
bc:0e:84:9d:53:7d:d1:51:63:a6:93:c5:74:4d:1d:a0:d7:14:
1c:54:14:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:16:29 2026 by rpki-client