Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
File: q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft (raw, json)
Hash identifier: GzF9oypeTPqAdSMLbkxkbnJrNJ4WdFiizAMk73Sah6s=
Subject key identifier: 4E:00:6A:71:4B:0B:DA:A7:F8:09:C9:E5:90:77:A9:41:9C:C9:73:A0
Authority key identifier: AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
Certificate issuer: /CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Certificate serial: 019D27DF804F2D70D428C711F923053FF3C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
Manifest number: 0E7A
Signing time: Thu 26 Mar 2026 02:00:51 +0000
Manifest this update: Thu 26 Mar 2026 02:00:51 +0000
Manifest next update: Fri 27 Mar 2026 02:00:51 +0000
Files and hashes: 1: AlG308eUrdACgBL2wLNqtHFgCfE.roa (hash: ln/5TqimsvosBxc2NaYRg6677es5mps+ZXNF6/n2oDg=)
2: q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl (hash: RinxJSvGuBTuIG75WpF6YMr4667P+S0SYjhm4wqcqPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:80:4f:2d:70:d4:28:c7:11:f9:23:05:3f:f3:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8520ec83e30eb7938b8002f470f0d1c505c451
Validity
Not Before: Mar 26 02:00:51 2026 GMT
Not After : Mar 27 02:00:51 2026 GMT
Subject: CN=4e006a714b0bdaa7f809c9e59077a9419cc973a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d3:6f:e6:47:9f:e8:8d:9b:1c:fd:6e:8c:28:
99:77:b0:34:07:69:fd:16:3d:83:9c:38:8d:6d:b9:
3d:dd:88:c0:96:c1:4c:92:67:2c:cb:17:f8:75:2f:
c2:f3:68:79:17:6a:62:d4:06:e6:d1:29:27:f1:08:
5c:be:b2:1b:f9:c7:10:14:8e:02:86:3f:d2:01:6d:
1f:a6:2f:53:ee:45:a6:7d:02:8d:35:09:a3:44:9e:
80:b1:26:bd:86:48:e0:b1:66:f6:46:70:47:83:07:
d2:03:bf:2b:bf:79:df:03:e2:0c:7b:cd:8a:ec:7a:
61:b7:b2:0f:00:ff:9a:7b:13:3f:21:26:0c:f9:4f:
30:31:54:e9:56:c1:df:d0:86:3c:f1:10:37:94:74:
3d:b4:75:57:9b:75:87:b6:2f:06:c7:85:0a:43:27:
1f:43:61:f3:9f:13:bc:45:27:f0:44:33:b0:0b:7c:
47:4c:5e:7e:dc:1e:f7:96:5d:b5:15:58:0d:0f:66:
a9:36:71:a1:29:ef:b7:f8:66:9f:74:c0:55:c4:e3:
20:c6:53:dd:b6:88:75:87:63:ad:fb:b2:d4:b9:da:
82:9b:5a:e6:49:3f:96:68:67:7a:2c:bb:79:89:41:
fd:b2:74:32:3b:70:64:e6:a7:45:7a:1e:17:eb:c3:
06:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:00:6A:71:4B:0B:DA:A7:F8:09:C9:E5:90:77:A9:41:9C:C9:73:A0
X509v3 Authority Key Identifier:
keyid:AB:85:20:EC:83:E3:0E:B7:93:8B:80:02:F4:70:F0:D1:C5:05:C4:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4Ug7IPjDreTi4AC9HDw0cUFxFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/faea65-90b4-46db-beef-84b473b9ebcd/1/q4Ug7IPjDreTi4AC9HDw0cUFxFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:08:fe:59:81:3c:59:2e:d1:c5:44:c7:b7:c6:91:17:c0:30:
89:97:53:80:29:0a:4b:3b:fd:26:96:f1:a2:db:f9:fc:1d:89:
fc:f6:08:9d:e9:67:7d:0f:2a:2f:54:31:bf:50:d5:ce:13:2a:
bc:7b:20:29:47:4d:cb:61:87:01:b7:67:3b:0f:d6:d8:05:e4:
d1:a6:89:4c:b2:d2:9a:72:dc:c2:97:37:fb:98:2d:fe:8d:9a:
2d:93:76:4c:ec:7e:4a:3d:ee:4d:c5:e2:5f:f2:3c:ff:0f:20:
c9:52:43:dd:21:e7:39:49:76:e8:5f:b8:45:a3:59:6d:88:db:
44:c9:8f:20:b5:bb:8a:d1:e8:f4:3d:9f:e6:25:da:1a:8f:f9:
2e:01:8a:9b:bd:b7:91:48:c7:96:23:59:ea:f9:45:33:05:ac:
6f:5b:a8:8f:9f:f7:29:99:5f:0d:70:d2:93:24:2c:e8:25:2e:
6c:c0:36:3e:63:d4:4f:8e:4e:99:0b:6c:30:9f:fc:fc:02:2a:
59:bd:6a:85:27:4c:71:e6:a9:d6:a2:c7:e0:40:8e:65:18:4c:
1f:92:02:38:94:10:6e:e4:60:88:6f:6b:e4:71:16:8f:d7:f3:
37:31:dd:aa:a2:b4:5e:3f:c1:c9:68:63:7f:4d:92:92:be:54:
d2:78:68:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:10:28 2026 by rpki-client