Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
File: qYW1Uh0gkBiCR48PCUGWLD6clPo.mft (raw, json)
Hash identifier: P0yjIXyhRsU0wdwoSs496uL/GgW2q7yBgmMjo8XDFY0=
Subject key identifier: 42:26:BB:FF:FE:10:2A:B0:3B:67:39:1D:6E:25:DE:C2:5B:00:1A:4B
Authority key identifier: A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
Certificate issuer: /CN=a985b5521d20901882478f0f0941962c3e9c94fa
Certificate serial: 019D3A53FA9E287D09ED0480C3F0CA6B00EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
Manifest number: 0517
Signing time: Sun 29 Mar 2026 16:01:15 +0000
Manifest this update: Sun 29 Mar 2026 16:01:15 +0000
Manifest next update: Mon 30 Mar 2026 16:01:15 +0000
Files and hashes: 1: R9ObVa6lHs_yNBiXEeUkNwPvfjY.roa (hash: 1wYwYXDyakrLIYM8b4nBqcfhKSxazLcyqbUdGxKpMqk=)
2: qYW1Uh0gkBiCR48PCUGWLD6clPo.crl (hash: 0MsCsPbbZNFiZsdWnDNoWD2r4LggoYMWf+twSaXt8z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:fa:9e:28:7d:09:ed:04:80:c3:f0:ca:6b:00:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a985b5521d20901882478f0f0941962c3e9c94fa
Validity
Not Before: Mar 29 16:01:15 2026 GMT
Not After : Mar 30 16:01:15 2026 GMT
Subject: CN=4226bbfffe102ab03b67391d6e25dec25b001a4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fd:fb:c6:73:68:7a:1c:bb:af:46:08:3f:d9:
dc:85:da:f6:a3:4e:81:29:e6:8f:50:5a:40:7e:a3:
45:42:86:c4:db:70:42:1e:aa:16:3b:53:e8:3e:61:
05:5d:35:79:b9:54:fb:da:75:b8:6d:eb:3a:41:2d:
52:2c:bb:d8:1e:53:7b:ec:df:a9:2c:31:1b:e1:2c:
37:57:9b:7e:98:ec:1a:d6:c8:36:2a:e6:d5:26:5f:
84:97:e1:ed:cc:3c:29:f8:95:0d:ac:dd:45:97:57:
96:12:78:dd:40:d7:3a:88:06:08:b3:5b:c9:ab:a4:
02:b5:54:31:50:e2:46:ea:14:32:a5:59:71:98:0a:
c5:f9:61:48:8e:e2:a9:47:dc:88:b0:c1:be:67:0e:
81:11:24:7f:28:c4:22:aa:89:ab:f1:51:ef:44:6b:
98:40:18:2f:4e:06:00:9c:fa:36:c0:d7:22:a4:87:
e4:e3:bd:bb:86:5d:6a:bc:44:9d:47:c3:0a:9e:c1:
a6:ad:18:51:43:56:1d:3b:73:5c:43:4d:b0:f9:0e:
62:38:31:cb:ff:17:27:74:c1:8b:22:34:43:de:e6:
18:f5:47:72:e8:41:ae:db:25:3e:b7:64:85:48:ad:
2a:69:36:04:a7:96:99:8d:98:aa:41:f3:30:59:05:
0d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:26:BB:FF:FE:10:2A:B0:3B:67:39:1D:6E:25:DE:C2:5B:00:1A:4B
X509v3 Authority Key Identifier:
keyid:A9:85:B5:52:1D:20:90:18:82:47:8F:0F:09:41:96:2C:3E:9C:94:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYW1Uh0gkBiCR48PCUGWLD6clPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/7ffb3e-8a4c-40b7-876e-6003d5aeed1f/1/qYW1Uh0gkBiCR48PCUGWLD6clPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:d3:09:bb:04:54:43:0c:32:d9:4c:55:10:7f:30:73:95:97:
ab:16:c5:a2:52:00:4c:7e:7e:b2:de:c1:5f:09:ce:50:11:ed:
0e:f6:19:38:bf:0c:96:d4:b5:c0:d1:94:07:8f:5b:7e:28:dc:
9a:66:9b:78:37:f4:40:14:df:af:a1:06:f0:5a:63:d8:40:c2:
c2:d8:54:39:8f:62:d1:fe:e3:5a:64:6a:f0:e3:03:4d:b7:22:
4a:cf:a4:76:9e:92:d7:a6:25:52:1c:3b:94:0b:e4:91:f9:32:
69:cd:44:77:d6:60:4b:b6:81:5c:73:46:e0:8a:4c:13:75:a9:
9f:0b:7b:d3:11:8b:a3:55:21:7d:f2:9d:a0:5e:b9:1e:3a:8f:
f7:a9:e3:3b:5d:de:9e:3f:55:86:9e:bc:ca:c5:79:53:3b:7d:
78:17:3f:bb:55:31:a5:9c:f2:20:a2:b6:6c:46:81:d5:5f:0f:
65:a7:93:60:16:f6:2f:10:bf:c3:ad:2a:6d:6b:55:a9:02:3e:
3f:25:4b:bc:c7:06:99:5f:fd:ee:b0:1f:81:22:ed:e3:00:66:
20:a2:e4:55:f8:32:da:10:65:f2:d7:26:4c:98:5c:c7:6e:f9:
ec:6c:81:04:17:cf:be:fd:33:e4:51:c4:d5:0f:61:7c:15:cb:
04:a5:80:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:23:22 2026 by rpki-client