Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
File: qsV1yvoAvEHVfElKwfXbz-54My4.mft (raw, json)
Hash identifier: QX/R/k9tN5Ut6mvJjF283sqKMNLvgtGallBH5Abkar4=
Subject key identifier: 0A:22:A6:2F:A4:F9:9B:22:43:08:6A:16:C4:6A:F4:58:87:AF:51:0C
Authority key identifier: AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
Certificate issuer: /CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Certificate serial: 019D292901C83437990FEF6E705BC803AFCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 08:00:46 +0000
Manifest this update: Thu 26 Mar 2026 08:00:46 +0000
Manifest next update: Fri 27 Mar 2026 08:00:46 +0000
Files and hashes: 1: IPShWGUXlOQysmlHN59ggxp79no.roa (hash: h66cPY9mKXXd6y+2DIeK9BUX2MMAhCZtqkFLMLMhdLk=)
2: qsV1yvoAvEHVfElKwfXbz-54My4.crl (hash: Ppf3zcLZZEL2u+A6nmlAtwcXpbUZHPRDThRCs1I49tk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:01:c8:34:37:99:0f:ef:6e:70:5b:c8:03:af:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac575cafa00bc41d57c494ac1f5dbcfee78332e
Validity
Not Before: Mar 26 08:00:46 2026 GMT
Not After : Mar 27 08:00:46 2026 GMT
Subject: CN=0a22a62fa4f99b2243086a16c46af45887af510c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3f:8f:30:ce:b4:3b:96:9f:97:e5:f1:6e:e9:
9b:ae:dc:bc:62:8f:e5:db:7d:eb:6e:e8:2d:1f:b7:
a9:a9:2d:0a:55:41:a8:8e:b6:8e:22:df:35:2b:f9:
7b:b0:7b:7e:f9:03:3a:0c:e3:fc:74:67:ba:d9:ec:
d1:3b:b2:2e:e4:a5:47:f6:53:6c:83:03:6b:d2:3d:
c1:b6:97:87:37:90:fe:c1:5f:c2:f0:d9:b1:9d:ca:
54:de:9d:1d:6b:e5:0e:93:98:33:e0:bd:b9:cc:f6:
40:40:7d:4a:46:fc:87:3c:f8:7f:99:e6:34:32:93:
e7:26:cb:9a:c8:f4:bf:27:e8:62:f0:14:db:fa:f5:
40:ad:b7:9a:94:67:be:ea:2b:e9:68:50:b7:84:12:
75:86:5e:4d:64:41:06:84:fc:e2:20:76:14:59:3c:
0f:0c:b2:a3:f8:bf:a1:81:48:79:21:9b:9f:f9:56:
71:4a:dd:e9:fa:8d:32:32:bb:f8:77:34:7c:af:4b:
6a:e6:f8:63:7a:0c:54:c3:b2:b3:c5:28:41:f9:65:
3b:78:92:a2:5e:39:19:55:f8:17:92:25:84:6f:80:
70:a8:00:37:15:e1:e3:c6:1d:4c:7b:e5:1c:fa:24:
c3:92:58:1a:93:9d:58:5e:b6:b2:da:85:30:1a:14:
67:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:22:A6:2F:A4:F9:9B:22:43:08:6A:16:C4:6A:F4:58:87:AF:51:0C
X509v3 Authority Key Identifier:
keyid:AA:C5:75:CA:FA:00:BC:41:D5:7C:49:4A:C1:F5:DB:CF:EE:78:33:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsV1yvoAvEHVfElKwfXbz-54My4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/35d598-c32c-49a7-b1f6-8f913e2696e5/1/qsV1yvoAvEHVfElKwfXbz-54My4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:14:2b:97:55:4b:37:97:00:d2:4a:18:f7:b5:91:27:db:15:
cd:59:b3:9c:37:dc:9f:99:5f:33:d7:1b:4e:53:1c:3d:97:45:
db:4e:84:7b:8f:32:3e:f8:1b:e9:86:c9:99:9d:97:2a:03:b6:
4c:29:0a:a9:85:0e:6b:86:bd:1e:f7:c3:44:d3:d1:6b:69:49:
d9:5b:bc:e0:bf:63:b0:69:e2:85:d7:2b:0f:1a:3e:73:33:06:
c0:61:af:7b:7c:9c:77:fe:26:14:c0:7c:2f:0e:73:ee:18:18:
a7:ff:10:e4:02:9c:ac:c1:b3:28:1a:1e:0d:dc:a9:bf:ed:5f:
5d:e8:88:f9:28:3e:0a:6a:62:e2:2f:5f:ce:c8:70:66:65:90:
48:85:c1:c1:0e:33:59:70:66:3c:5a:64:45:11:42:29:ed:03:
3d:93:57:3b:bf:b1:b1:b5:0a:f8:9c:50:da:0e:5a:00:e0:ae:
f9:14:9d:71:79:46:0c:22:db:02:e3:f4:72:a3:ef:98:31:da:
d7:5b:3b:63:2a:e7:99:1a:9d:50:ac:c9:94:10:03:8b:ff:b9:
4a:b6:84:d3:c1:7e:b5:78:95:0e:eb:49:0e:19:70:56:3e:99:
2f:ff:69:02:d6:cb:81:a2:75:82:d6:51:07:1a:8e:dd:65:ac:
49:71:b3:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:31:39 2026 by rpki-client