Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json)
Hash identifier: jNYQzaFDIkBSkcHrQkB0zPcZ8cb5ciLVlFYJPQkXIrI=
Subject key identifier: 43:4C:14:D5:20:14:70:54:40:7C:46:01:F6:37:55:02:AB:01:E6:32
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 019D26CD4194B570E4AB21A417AA4B58BD70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 21:01:18 +0000
Manifest this update: Wed 25 Mar 2026 21:01:18 +0000
Manifest next update: Thu 26 Mar 2026 21:01:18 +0000
Files and hashes: 1: 0jE3hZkv3e72FXBQNOB1Z87I7hE.roa (hash: ufiFlOn3uZQmY7BK2PstScG7xVreKj7F3Ayx+q4ondk=)
2: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: VkdJCjcStDBmHEJLqGRQu4I35gdLMrr59RMTdQI9u/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:41:94:b5:70:e4:ab:21:a4:17:aa:4b:58:bd:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: Mar 25 21:01:18 2026 GMT
Not After : Mar 26 21:01:18 2026 GMT
Subject: CN=434c14d520147054407c4601f6375502ab01e632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:59:7c:bc:a2:37:24:cd:04:a5:63:de:fa:5c:
ce:86:13:11:4c:75:08:ef:2c:17:53:52:f0:e0:f3:
18:32:76:8c:6e:b8:34:59:a7:9c:a5:17:88:62:4f:
28:ac:cc:73:c3:77:be:ed:86:cd:ba:ee:50:7c:79:
ca:98:dc:f5:93:61:5b:fa:ff:ee:62:e1:fe:19:5c:
c1:d5:7e:d6:45:f7:dd:aa:84:0a:61:25:0c:6d:a6:
39:9e:2e:e9:d0:c5:a0:5c:9a:4b:97:2d:56:c9:e6:
1e:07:9e:4c:39:b7:89:6f:92:50:b1:4c:15:ae:cc:
65:81:9f:68:6f:ba:8b:95:4b:3d:eb:92:8b:c4:91:
25:72:84:45:a2:96:37:a4:3d:38:a6:07:59:91:09:
c8:ac:74:c7:62:a5:f4:f6:22:94:6d:bc:d0:f1:6f:
be:7a:fb:aa:58:51:bd:d9:c6:71:28:8d:bb:61:5d:
b8:ed:9f:85:69:44:e1:48:07:40:e3:6e:24:af:cc:
11:61:ac:ae:99:68:ea:7e:4c:2f:55:26:dd:e9:e7:
5f:e5:a0:63:88:3a:47:91:d6:2d:30:ca:c4:1c:fe:
56:e0:29:c9:60:c4:59:0e:8f:56:96:c6:82:b0:37:
ce:d1:03:be:15:75:47:1a:06:b5:a7:2e:48:9a:7c:
1c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4C:14:D5:20:14:70:54:40:7C:46:01:F6:37:55:02:AB:01:E6:32
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:20:8f:23:2b:d4:79:df:e9:29:55:3a:b0:4c:c2:d4:c1:79:
c8:3e:36:33:13:b7:64:f1:59:7a:3b:f8:af:88:5a:38:95:7e:
30:77:d8:66:98:a5:fd:56:5b:e9:3b:f4:dc:fc:10:5d:0c:6e:
cf:6e:52:b5:90:9c:26:09:94:2d:ec:33:ca:05:60:02:e0:84:
34:7a:6e:c4:48:6c:0a:d1:6b:21:c3:0e:11:72:5d:9f:33:a1:
84:57:3a:c7:55:f8:df:b9:08:a9:33:85:06:84:3c:1a:e8:ff:
0d:6b:5a:04:f2:20:39:dd:30:82:4e:2d:9e:83:72:b3:51:c0:
41:40:f4:cc:03:a4:f0:df:87:fe:28:ff:a1:69:8c:7c:f4:7c:
8b:3b:a5:79:10:d0:4e:fa:99:74:80:03:ef:f2:af:fd:b6:54:
d7:24:3c:87:54:16:4e:fa:65:fe:dc:fc:3c:11:17:5e:98:46:
9d:5c:ae:e4:70:a8:05:2d:9c:f7:04:51:44:ae:75:e1:f0:94:
93:96:13:18:66:9c:09:2d:ba:2a:ef:60:ac:df:db:be:78:3a:
27:6f:51:66:81:f3:05:7f:bb:45:08:58:e9:13:c7:bd:41:6f:
e2:81:c2:7a:5b:12:78:5b:a0:ca:4a:eb:cf:b9:0c:e8:21:1b:
12:59:38:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:37:21 2026 by rpki-client