Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
File: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft (raw, json)
Hash identifier: IKbbaY8Pu0C7WbEc93pnrfG2iM1px1WhuXp323eqlsI=
Subject key identifier: C6:23:A1:A0:01:C1:94:79:5D:4A:A7:ED:92:82:00:6F:04:81:5F:EA
Authority key identifier: 43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
Certificate issuer: /CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Certificate serial: 019D3865DA87BC7D50E1F02D17C6AA5031DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
Manifest number: 15BB
Signing time: Sun 29 Mar 2026 07:01:32 +0000
Manifest this update: Sun 29 Mar 2026 07:01:32 +0000
Manifest next update: Mon 30 Mar 2026 07:01:32 +0000
Files and hashes: 1: Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl (hash: /Xq8AM83LO71MVrFpTROtRKgPOvyZsikecaBXK0YtOc=)
2: TQWvkAi8bonEzYNgt0Kx7jD-EqQ.roa (hash: 4l9r6gsisRPOUrwiMnNC/ZEB32QweKRJ3pss8gUXvAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:da:87:bc:7d:50:e1:f0:2d:17:c6:aa:50:31:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4368330bea2dfe880ffa62f67b566aeae2d287fd
Validity
Not Before: Mar 29 07:01:32 2026 GMT
Not After : Mar 30 07:01:32 2026 GMT
Subject: CN=c623a1a001c194795d4aa7ed9282006f04815fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:20:01:71:50:9d:e9:4c:65:08:00:12:9e:ee:
15:7c:63:5b:48:8b:45:b4:50:71:23:7f:89:09:80:
b8:76:32:57:c4:ea:ca:8e:6e:bb:02:2a:92:38:5e:
67:76:38:1d:18:9e:f7:67:00:65:12:31:a4:68:19:
34:91:69:79:93:f0:21:93:eb:19:72:43:e8:23:36:
1d:44:17:7b:e7:9d:5f:64:ff:6b:ba:aa:4f:e2:f2:
71:05:04:46:07:a7:b5:b9:11:c1:4b:2e:e1:0f:28:
a0:35:0d:28:6e:00:4e:00:ac:e9:d2:cd:07:78:c7:
e0:77:21:05:ee:61:98:5d:44:5a:59:73:6a:95:bc:
26:c0:c7:e4:99:19:48:9c:47:49:9a:14:52:7b:f1:
7a:eb:38:86:8a:97:49:5f:84:65:3a:f3:de:73:0d:
9b:e4:4a:7c:9c:9d:05:5f:e9:82:62:9f:d8:eb:13:
0f:82:00:dc:58:62:d3:c9:63:1a:fd:db:18:b4:0b:
d6:8f:c3:3e:f7:5f:11:f0:23:e7:7d:7e:84:5a:ed:
65:76:a8:cf:39:9e:d5:a1:e0:d5:df:0c:8f:dd:ab:
95:df:81:e1:e3:4e:d0:8c:3b:24:ac:6e:6b:94:c4:
d6:00:30:d0:30:88:b2:90:b1:ea:d9:b0:11:56:c3:
1b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:23:A1:A0:01:C1:94:79:5D:4A:A7:ED:92:82:00:6F:04:81:5F:EA
X509v3 Authority Key Identifier:
keyid:43:68:33:0B:EA:2D:FE:88:0F:FA:62:F6:7B:56:6A:EA:E2:D2:87:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8fc3b0-9704-4751-b149-5a37f6a1bca9/1/Q2gzC-ot_ogP-mL2e1Zq6uLSh_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:c6:dd:47:ac:23:f8:28:bc:39:73:d5:44:60:7b:b9:81:c1:
7b:f8:43:3d:26:3d:31:18:8e:13:48:20:4f:03:ed:fc:a2:ce:
d8:ac:42:7d:96:17:be:48:43:75:ef:1b:9d:4c:ef:ca:67:dc:
f3:6f:78:3b:6e:90:02:0a:61:fb:0d:91:2b:8c:01:c7:37:92:
9b:b3:c5:17:45:03:af:ac:d9:60:a5:62:7b:7c:20:45:68:f6:
f7:03:da:0a:4f:7d:f1:65:72:6e:8e:fb:a1:b2:ae:89:0e:4e:
15:57:da:a1:4b:a2:8b:91:6c:8b:9e:75:11:ce:c2:21:ab:12:
8e:f5:60:ea:04:c6:f1:75:3a:2c:b0:e9:7f:c3:5d:27:d3:65:
ae:f8:9e:d1:80:70:82:33:58:ba:42:a2:ea:eb:96:bd:bb:54:
d5:6a:d4:97:b3:c9:8d:00:39:14:24:66:a5:de:df:dc:18:75:
73:ab:37:ed:e3:c3:92:a4:b8:d6:db:54:f1:b3:18:f0:7c:ec:
b1:14:0d:0c:21:b5:02:9e:2b:b4:cc:bb:4b:0a:30:6d:43:bc:
f5:14:f6:94:d2:6a:ca:6c:7a:b2:83:69:1a:72:06:da:6c:51:
e8:e8:a1:39:e5:21:4f:6a:be:2e:c5:65:a5:69:53:74:41:d3:
86:9e:8a:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:26:03 2026 by rpki-client