Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: FtAtgVYW06IyCf2ay4eOLKBMMILtIaranLOeKMCiWgM=
Subject key identifier: 79:66:A5:B9:3D:AE:B9:C4:76:E4:D2:35:1D:17:93:CB:A7:0E:85:A7
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 019D2A04A7D09DB7B00A1CE25E176438F7E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 1250
Signing time: Thu 26 Mar 2026 12:00:41 +0000
Manifest this update: Thu 26 Mar 2026 12:00:41 +0000
Manifest next update: Fri 27 Mar 2026 12:00:41 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: s6rZJCDbeSgGq4aNuZ50cBQOY1PIplXNg/DtAMYArBI=)
2: OgtLPNJMhUcc3a3Q9gVgb_uUcTU.roa (hash: W+gl2jZGWcmgxMC+cnSTgyo7gRfrRZB5RZkp77uUONU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:a7:d0:9d:b7:b0:0a:1c:e2:5e:17:64:38:f7:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Mar 26 12:00:41 2026 GMT
Not After : Mar 27 12:00:41 2026 GMT
Subject: CN=7966a5b93daeb9c476e4d2351d1793cba70e85a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:26:83:ee:9d:e4:da:87:d2:3f:4a:cd:4d:35:
51:1e:84:89:1e:0f:77:9a:a6:42:47:72:4f:5e:b0:
21:ad:6c:99:a2:7a:77:8b:39:17:d7:78:a1:66:a1:
1a:5f:53:f1:b5:6a:7d:5b:ae:54:c4:80:6f:ce:30:
7b:62:f5:e2:2c:4b:d2:90:60:f9:b5:b2:26:87:b2:
4c:8e:ba:9a:18:de:48:ef:4d:c1:15:d4:00:d3:56:
9c:f2:5f:2e:7d:b8:2b:73:b6:69:00:a7:2b:0a:38:
44:d6:b0:7b:d4:df:ac:99:31:45:64:21:18:5a:80:
b8:74:22:e6:4b:11:74:e4:a8:35:e8:f1:5f:5e:cd:
72:a0:a2:0d:10:29:3a:37:8d:2e:a1:0e:fe:de:64:
41:27:b8:4d:13:ca:7b:7b:a2:63:a2:48:bb:49:f5:
fe:b0:ad:4d:9f:d8:8b:d0:29:5f:f7:2d:ce:dd:65:
37:b4:67:af:18:9c:52:e7:61:a1:95:ac:5a:44:20:
54:5f:2d:68:25:75:01:e3:da:3a:50:67:b3:f8:ef:
68:df:f6:55:78:d6:25:a9:9b:99:11:f3:40:de:2b:
d5:4c:c6:20:db:37:2e:ce:17:2f:8d:f7:5a:d1:0b:
42:43:bb:19:fd:c9:f6:ab:17:8b:39:e2:f4:f0:2d:
8d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:66:A5:B9:3D:AE:B9:C4:76:E4:D2:35:1D:17:93:CB:A7:0E:85:A7
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:06:42:0e:b7:64:03:04:c2:3b:d9:be:a3:1d:62:2a:0b:dd:
b6:81:7f:6d:02:b1:1c:20:cc:7f:1e:0c:a9:a1:42:06:91:6f:
6d:4d:20:70:1f:00:e9:24:e5:fa:da:92:7e:d8:3f:15:8b:86:
52:08:b2:b2:a3:fe:e7:9c:e3:36:01:82:33:5e:6c:87:6b:d8:
75:12:33:cf:2e:1c:c1:7b:a9:8a:34:62:37:89:e4:e7:cc:60:
56:7c:71:84:d7:83:f7:bf:6a:8d:76:e4:40:46:3c:40:c4:84:
53:eb:c8:4a:a5:e7:96:25:b6:8c:26:b4:33:6b:50:ae:62:80:
d8:c8:a8:c8:af:9f:40:6d:59:ee:33:56:45:57:6e:7d:c9:60:
d8:13:d4:b3:5d:07:66:ae:f9:76:d3:86:4d:04:39:93:70:aa:
e9:c1:9f:90:de:43:0c:06:f0:f8:64:f3:38:7c:7f:74:79:63:
d5:77:39:bc:aa:7e:cf:f2:bd:e6:80:53:b9:d0:a0:7b:48:05:
52:1e:b8:d4:d4:3c:a5:94:92:fe:21:70:53:a5:47:7a:24:11:
ba:8c:1f:6d:ba:6f:a9:e1:db:b1:30:0e:92:79:ff:a2:d9:0e:
7a:e5:bb:fc:50:86:cf:8a:a6:4d:81:cc:7e:86:1c:60:da:af:
f6:49:2e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:21:39 2026 by rpki-client