Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
File: qHxnPzWntwWmtCTTORT6OS07li4.mft (raw, json)
Hash identifier: a/nvnvU1y4LGGafaieZriBY9xlGC2oJX0bOmsSUFN7o=
Subject key identifier: 61:96:A5:9D:3D:87:06:7C:CD:CD:00:43:34:BD:12:5F:67:82:2F:A6
Authority key identifier: A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
Certificate issuer: /CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Certificate serial: 019D386655748A956B2BAC9F192B3D02D1A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
Manifest number: 0B0A
Signing time: Sun 29 Mar 2026 07:02:03 +0000
Manifest this update: Sun 29 Mar 2026 07:02:03 +0000
Manifest next update: Mon 30 Mar 2026 07:02:03 +0000
Files and hashes: 1: MdQ19d3eFkD78fJxuXq5iy-2rpM.roa (hash: rp9j2xxR/tRXFv1++j74kJ2PghVMO1/nSR5xC0/6LuE=)
2: qHxnPzWntwWmtCTTORT6OS07li4.crl (hash: LSAz+stMjnZ1aPBt3Z9Jbm/pYgiHTw62DFzETCcZYIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:55:74:8a:95:6b:2b:ac:9f:19:2b:3d:02:d1:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a87c673f35a7b705a6b424d33914fa392d3b962e
Validity
Not Before: Mar 29 07:02:03 2026 GMT
Not After : Mar 30 07:02:03 2026 GMT
Subject: CN=6196a59d3d87067ccdcd004334bd125f67822fa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:58:60:c1:6e:e8:95:36:d0:80:d6:9f:d3:f0:
33:5f:2d:d4:3b:5f:8d:ea:de:f2:aa:72:90:f1:f7:
97:ae:72:4b:19:66:c3:fb:b8:ef:98:8e:ac:9d:13:
c3:5b:49:7b:a8:bd:d6:67:2d:cb:ac:56:0c:37:d4:
db:e3:e8:2e:e9:fa:a6:fe:03:b8:c7:0f:47:25:50:
13:1c:95:3d:91:72:85:bc:0e:a9:30:de:7b:24:0d:
de:fa:e8:4b:44:a9:da:8c:22:d1:63:2a:16:13:e5:
55:48:82:45:61:f0:27:ac:77:0d:af:6a:bf:fe:e6:
33:47:0b:ce:60:66:aa:35:9c:61:e8:5b:47:d3:a4:
2e:ba:e5:fe:a4:bd:f9:ed:b8:45:e8:ed:b4:3b:e3:
02:2c:c9:a6:e0:65:6c:be:4d:9f:1a:c6:bb:ea:ad:
d9:08:93:a9:df:df:1d:26:1b:56:f8:18:5a:9c:43:
fa:35:88:96:c3:47:15:e8:1a:91:b6:9c:90:a8:c1:
3c:bd:73:13:c9:08:15:eb:02:8a:8e:95:f8:51:a3:
25:61:f2:43:9c:63:2f:6a:aa:0b:fa:95:19:52:dc:
e5:e5:44:4d:4e:b8:12:42:c1:7d:bb:7d:d1:9b:6f:
8f:ed:67:d1:71:6a:74:07:a7:ea:50:2d:9f:b3:98:
22:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:96:A5:9D:3D:87:06:7C:CD:CD:00:43:34:BD:12:5F:67:82:2F:A6
X509v3 Authority Key Identifier:
keyid:A8:7C:67:3F:35:A7:B7:05:A6:B4:24:D3:39:14:FA:39:2D:3B:96:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHxnPzWntwWmtCTTORT6OS07li4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/aa1af4-9256-46c8-ab02-94e647262160/1/qHxnPzWntwWmtCTTORT6OS07li4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:2e:48:a1:66:e8:e5:2c:aa:20:4d:ef:08:ab:de:47:6f:af:
f6:ca:0e:9c:9c:5a:d2:d4:90:21:23:41:5e:94:21:45:96:92:
6d:40:c3:ee:63:14:b3:26:6d:c0:73:2d:8d:a4:aa:3d:7b:08:
7c:6b:37:ad:85:df:e3:40:ef:4c:48:51:91:e5:9b:c9:df:91:
9f:8d:80:ed:42:cb:28:3c:67:e0:f6:ad:62:57:26:91:19:ab:
72:08:7c:4d:ba:5f:b1:5f:34:0c:8a:61:30:a9:5c:4d:fd:59:
b6:0d:fe:72:68:de:be:40:9f:f5:bc:74:db:ea:bc:52:95:11:
85:24:77:e9:86:08:40:19:56:3e:87:01:d3:c6:31:f1:d9:3e:
3e:f5:e4:4c:43:59:1b:96:04:e9:dc:15:9c:de:f7:df:a0:f8:
16:2b:bd:f8:ba:7c:30:d7:d8:7b:e2:95:82:c5:d0:8d:a1:84:
30:e7:9e:4a:ff:78:5f:5e:05:b2:72:29:77:9b:75:54:1c:ab:
13:2a:a3:be:bf:a8:b2:10:d7:94:ec:51:9a:3b:66:61:dc:6f:
50:a0:1b:73:0a:1c:db:56:83:dc:ab:ee:8d:00:7d:38:12:c3:
76:8e:5c:e9:ea:90:e4:aa:da:f4:3c:b3:ac:73:71:57:8c:0d:
81:eb:c5:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:54 2026 by rpki-client