Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: lLREKcbpK5p86vNVtaHLhoJiC5KYx7cW+MA7hiB6PXQ=
Subject key identifier: 45:49:7F:BD:2C:7D:73:4C:C3:79:E7:92:77:88:B9:19:E8:28:38:59
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 019D3789A28F3CAB8D33498E5407EA9AFB50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 058A
Signing time: Sun 29 Mar 2026 03:01:00 +0000
Manifest this update: Sun 29 Mar 2026 03:01:00 +0000
Manifest next update: Mon 30 Mar 2026 03:01:00 +0000
Files and hashes: 1: 9AVYlnVDy_5NTBGvlnnPZPWKT8U.roa (hash: N+NhjHfDEfFXjTSJhobVC2Q1bhjazURhKTdBJKZj/zM=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: nvDEA56SESIILf+8D4qKQ8cqd+FX2cceWVx/e2XrLCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:a2:8f:3c:ab:8d:33:49:8e:54:07:ea:9a:fb:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Mar 29 03:01:00 2026 GMT
Not After : Mar 30 03:01:00 2026 GMT
Subject: CN=45497fbd2c7d734cc379e7927788b919e8283859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:95:84:22:b3:47:cc:56:12:fa:64:0f:39:b3:
f6:3e:80:46:ee:3f:67:1b:97:71:75:16:52:a3:65:
be:47:77:43:f6:53:3d:54:a3:cb:1b:69:0e:e2:29:
42:a5:b7:f0:64:ea:dd:49:17:34:82:21:ec:92:5a:
e5:7d:82:df:1d:5e:2d:a9:41:57:36:c5:f3:31:b7:
32:af:5b:60:87:b1:00:6f:4f:20:8f:75:e2:1a:bb:
5a:26:cb:fa:52:09:d1:43:46:ad:12:98:bb:aa:00:
16:37:e3:5b:ee:f8:ef:f0:a1:dd:0d:a6:d9:16:21:
b9:63:c4:21:3a:a8:b3:2a:5e:de:ec:8e:e8:94:63:
32:34:17:88:1a:ef:42:db:23:2d:5a:ff:1c:98:03:
a9:07:48:79:93:ff:f4:df:50:95:d5:bd:ff:d9:16:
4e:3c:8a:98:42:fc:20:1f:1e:a0:e5:bf:ef:77:b7:
dc:ce:ab:d1:45:6a:05:45:03:80:c8:42:b4:7b:67:
31:ac:d2:85:3d:56:a4:0f:19:28:2a:c9:d6:b6:3a:
14:b9:1a:4a:69:e9:b9:2f:d8:bd:31:ab:91:27:93:
47:f1:83:b4:03:de:59:9a:28:b6:42:05:8b:25:bc:
b0:10:80:bf:2e:58:9d:97:76:aa:8f:3a:1f:b3:f9:
2c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:49:7F:BD:2C:7D:73:4C:C3:79:E7:92:77:88:B9:19:E8:28:38:59
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:b0:c2:88:d4:53:4f:0d:35:90:b7:7b:86:c3:af:e8:c7:21:
85:1e:41:e6:61:6e:0d:d8:ff:ee:6f:28:a9:1c:39:54:0e:fb:
b4:39:29:96:dd:dd:74:f3:46:ab:73:1a:90:42:1f:bb:a6:a5:
46:38:dc:1d:77:e0:2a:2d:89:be:e3:11:ba:b4:be:5b:2a:28:
85:5e:b8:18:d7:50:a9:f1:e7:98:1a:da:5d:18:89:d1:af:dd:
e4:5d:5f:2b:59:4c:7b:ba:b1:c4:9c:15:ed:c8:da:19:ad:e6:
88:00:21:88:cd:3c:7e:a5:14:68:a9:31:00:85:5f:48:01:59:
56:95:26:ac:a5:2c:78:dc:8e:2c:a7:49:80:e7:e8:bd:97:8f:
54:93:ec:be:3b:f2:13:b9:d2:5b:8f:a4:c2:3b:ef:95:97:6e:
d4:38:97:7a:a8:ff:69:9e:12:59:b6:d3:2e:ad:d6:76:16:d7:
fd:03:1c:b4:0b:78:23:c1:fb:b2:b3:36:41:52:5c:28:d4:24:
b9:8d:22:e4:09:ac:4d:fd:32:89:e4:f7:cf:fa:ed:3a:62:01:
21:25:e0:d8:c5:32:f3:cd:09:2e:af:36:ff:60:09:01:30:80:
12:c1:60:b3:8e:4c:5e:4a:d8:11:dc:2a:6d:bc:17:97:d9:27:
46:70:e8:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03iaKPPKuNM0mOVAfqmvtQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhMjIyZjU2NzNiODI4YTdhZTUyZjk5YmEwYzYyYWNkNzA5
NzRhMzgwHhcNMjYwMzI5MDMwMTAwWhcNMjYwMzMwMDMwMTAwWjAzMTEwLwYDVQQD
Eyg0NTQ5N2ZiZDJjN2Q3MzRjYzM3OWU3OTI3Nzg4YjkxOWU4MjgzODU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5WEIrNHzFYS+mQPObP2PoBG7j9n
G5dxdRZSo2W+R3dD9lM9VKPLG2kO4ilCpbfwZOrdSRc0giHsklrlfYLfHV4tqUFX
NsXzMbcyr1tgh7EAb08gj3XiGrtaJsv6UgnRQ0atEpi7qgAWN+Nb7vjv8KHdDabZ
FiG5Y8QhOqizKl7e7I7olGMyNBeIGu9C2yMtWv8cmAOpB0h5k//031CV1b3/2RZO
PIqYQvwgHx6g5b/vd7fczqvRRWoFRQOAyEK0e2cxrNKFPVakDxkoKsnWtjoUuRpK
aem5L9i9MauRJ5NH8YO0A95Zmii2QgWLJbywEIC/Llidl3aqjzofs/ksbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEVJf70sfXNMw3nnkneIuRnoKDhZMB8GA1UdIwQY
MBaAFKoiL1ZzuCinrlL5m6DGKs1wl0o4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lNTQ2MzYtYzk5OC00MDlhLTg5YmIt
MmI3YjgyN2U3MThjLzEvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lNTQ2MzYtYzk5OC00MDlhLTg5YmItMmI3YjgyN2U3MThj
LzEvcWlJdlZuTzRLS2V1VXZtYm9NWXF6WENYU2pnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt7DCiNRT
Tw01kLd7hsOv6MchhR5B5mFuDdj/7m8oqRw5VA77tDkplt3ddPNGq3MakEIfu6al
RjjcHXfgKi2JvuMRurS+WyoohV64GNdQqfHnmBraXRiJ0a/d5F1fK1lMe7qxxJwV
7cjaGa3miAAhiM08fqUUaKkxAIVfSAFZVpUmrKUseNyOLKdJgOfovZePVJPsvjvy
E7nSW4+kwjvvlZdu1DiXeqj/aZ4SWbbTLq3WdhbX/QMctAt4I8H7srM2QVJcKNQk
uY0i5AmsTf0yieT3z/rtOmIBISXg2MUy880JLq82/2AJATCAEsFgs45MXkrYEdwq
bbwXl9knRnDobQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:21 2026 by rpki-client