Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
File: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft (raw, json)
Hash identifier: 5+PACLBx+5+gAgPVJwjLt5QULdV+e0viQWKXDHI4lyc=
Subject key identifier: D6:A3:DA:1F:B6:A7:D8:24:FB:92:63:D7:FA:E6:30:CC:3D:51:95:C1
Authority key identifier: A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
Certificate issuer: /CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Certificate serial: 019D273B209AD9A4B31F7A021CDFABFB8CCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 23:01:19 +0000
Manifest this update: Wed 25 Mar 2026 23:01:19 +0000
Manifest next update: Thu 26 Mar 2026 23:01:19 +0000
Files and hashes: 1: TG-T28D3sM1IJX9-bR6zimuu3dQ.roa (hash: sKx/GRdEWeKSqR5AF1hTqJiMQ+ztWu0vS1aze4IWqmA=)
2: qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl (hash: 7NerUNuMbjLuRvG8D23M8VcrPZSm/Rtjt9GJgeCZcGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:20:9a:d9:a4:b3:1f:7a:02:1c:df:ab:fb:8c:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98e5943c355d48c004e6bf4a3b6cdb8c30adc4c
Validity
Not Before: Mar 25 23:01:19 2026 GMT
Not After : Mar 26 23:01:19 2026 GMT
Subject: CN=d6a3da1fb6a7d824fb9263d7fae630cc3d5195c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f2:84:92:aa:d7:f6:0f:56:d3:f4:49:17:5b:
6b:3b:7d:8b:de:1a:57:1c:29:f3:69:27:85:77:50:
b3:5b:25:9d:cf:82:66:47:48:38:b8:90:2c:4f:0f:
b6:81:82:d2:07:5c:aa:d7:52:66:d6:36:7f:33:8f:
80:07:88:a9:23:57:45:e6:2c:ac:9c:bb:05:ef:1d:
7f:a5:34:37:70:f1:90:9a:6f:69:c6:fc:ca:b4:72:
0d:af:9f:e5:50:f0:18:e2:a3:1c:97:4f:d3:2f:a8:
6d:80:84:68:79:d0:9a:12:24:81:51:80:42:3a:0b:
87:10:5b:ec:a9:7d:94:bd:fc:4f:81:c9:32:e6:d9:
ff:3c:14:60:c7:fd:ae:91:c7:54:98:f9:9e:78:ff:
e6:85:fe:1f:c0:25:93:f0:e4:d3:6d:a0:2b:ca:b4:
22:e9:90:fe:c8:29:00:11:72:fa:1c:07:ed:31:f8:
8b:71:d2:1a:b4:29:5e:26:75:e5:a6:44:66:30:36:
1f:35:36:f6:c9:92:f5:3b:16:5a:ca:90:9f:57:d0:
5a:b4:e3:84:88:45:bd:ec:25:9a:40:bf:d7:ad:9e:
9b:68:92:47:3c:b0:ba:7d:3f:f4:b5:e4:b8:73:e7:
c9:86:07:6c:b4:a9:6b:f0:e4:73:6b:40:7f:8a:67:
8e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A3:DA:1F:B6:A7:D8:24:FB:92:63:D7:FA:E6:30:CC:3D:51:95:C1
X509v3 Authority Key Identifier:
keyid:A9:8E:59:43:C3:55:D4:8C:00:4E:6B:F4:A3:B6:CD:B8:C3:0A:DC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd92cd-7fe3-4223-8350-3c773a6c42f9/1/qY5ZQ8NV1IwATmv0o7bNuMMK3Ew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:63:d8:a1:91:03:99:81:cf:50:ea:d5:9d:c1:79:f1:89:24:
f9:37:dd:c6:d9:02:e9:04:82:3f:0f:bf:7e:52:f9:06:d2:9d:
69:52:df:74:ac:6d:f2:84:75:86:ec:5f:fc:63:18:6d:59:f5:
8a:a7:b3:b7:5c:61:2a:40:b3:f6:15:f6:a4:88:7d:10:f8:82:
62:00:1d:43:00:21:0f:3e:a9:bb:77:c2:1f:1b:1c:4a:74:09:
5d:e3:62:19:7e:12:d6:fb:0d:d8:dd:5d:7b:bd:3e:54:d7:b9:
98:e1:d3:5d:0f:26:9f:09:a2:96:21:1e:62:c3:09:63:14:f3:
39:da:ca:30:37:2f:9d:8f:22:6a:79:be:e7:19:b0:15:ba:be:
76:f2:c5:75:f2:01:0a:18:c3:de:af:6f:41:bb:bd:29:e4:97:
e0:22:d5:1f:fb:a3:be:74:03:b6:8e:7b:8c:7c:01:6e:48:04:
7b:0d:b1:f2:94:d1:e2:92:ce:01:4b:39:58:67:f0:c9:c5:eb:
a8:41:a6:1d:28:62:3c:42:38:ef:c0:0c:2b:30:d4:fe:b5:81:
1f:b3:04:99:d6:88:8f:54:d6:35:56:46:7e:3e:f5:9f:27:16:
6c:1a:63:01:81:97:19:9c:4f:19:04:b2:51:00:25:cd:85:d7:
ba:da:10:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOyCa2aSzH3oCHN+r+4zPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5OGU1OTQzYzM1NWQ0OGMwMDRlNmJmNGEzYjZjZGI4YzMw
YWRjNGMwHhcNMjYwMzI1MjMwMTE5WhcNMjYwMzI2MjMwMTE5WjAzMTEwLwYDVQQD
EyhkNmEzZGExZmI2YTdkODI0ZmI5MjYzZDdmYWU2MzBjYzNkNTE5NWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vKEkqrX9g9W0/RJF1trO32L3hpX
HCnzaSeFd1CzWyWdz4JmR0g4uJAsTw+2gYLSB1yq11Jm1jZ/M4+AB4ipI1dF5iys
nLsF7x1/pTQ3cPGQmm9pxvzKtHINr5/lUPAY4qMcl0/TL6htgIRoedCaEiSBUYBC
OguHEFvsqX2UvfxPgcky5tn/PBRgx/2ukcdUmPmeeP/mhf4fwCWT8OTTbaAryrQi
6ZD+yCkAEXL6HAftMfiLcdIatCleJnXlpkRmMDYfNTb2yZL1OxZaypCfV9BatOOE
iEW97CWaQL/XrZ6baJJHPLC6fT/0teS4c+fJhgdstKlr8ORza0B/imeOmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNaj2h+2p9gk+5Jj1/rmMMw9UZXBMB8GA1UdIwQY
MBaAFKmOWUPDVdSMAE5r9KO2zbjDCtxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9jZDkyY2QtN2ZlMy00MjIzLTgzNTAt
M2M3NzNhNmM0MmY5LzEvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9jZDkyY2QtN2ZlMy00MjIzLTgzNTAtM2M3NzNhNmM0MmY5
LzEvcVk1WlE4TlYxSXdBVG12MG83Yk51TU1LM0V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfmPYoZED
mYHPUOrVncF58Ykk+TfdxtkC6QSCPw+/flL5BtKdaVLfdKxt8oR1huxf/GMYbVn1
iqezt1xhKkCz9hX2pIh9EPiCYgAdQwAhDz6pu3fCHxscSnQJXeNiGX4S1vsN2N1d
e70+VNe5mOHTXQ8mnwmiliEeYsMJYxTzOdrKMDcvnY8ianm+5xmwFbq+dvLFdfIB
ChjD3q9vQbu9KeSX4CLVH/ujvnQDto57jHwBbkgEew2x8pTR4pLOAUs5WGfwycXr
qEGmHShiPEI478AMKzDU/rWBH7MEmdaIj1TWNVZGfj71nycWbBpjAYGXGZxPGQSy
UQAlzYXXutoQgg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:22 2026 by rpki-client