Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
File: q3kW82CYNO1AFNqMaVs0CnsKWA4.mft (raw, json)
Hash identifier: SndsYDSMPccFfyLnii5kB6n9dytA+4qoZbQAHjG5b7I=
Subject key identifier: B7:09:6F:30:CB:F1:58:C5:FF:6F:6C:7B:54:DC:EC:CD:15:52:72:45
Authority key identifier: AB:79:16:F3:60:98:34:ED:40:14:DA:8C:69:5B:34:0A:7B:0A:58:0E
Certificate issuer: /CN=ab7916f3609834ed4014da8c695b340a7b0a580e
Certificate serial: 019E295D976FC806E230C7BD5CE877C3E02D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
Manifest number: 02B7
Signing time: Fri 15 May 2026 02:00:59 +0000
Manifest this update: Fri 15 May 2026 02:00:59 +0000
Manifest next update: Sat 16 May 2026 02:00:59 +0000
Files and hashes: 1: 0kO4HDhs-Z05CdJzgp5tseLyhSU.asa (hash: /YkuI+YVFPmtxpbrJU27qGqrMqF1Tro9Xx9l6QKKoAU=)
2: SZY6wsq_78e2nLvWAkeHk1piMW4.roa (hash: crCAmARzqXmw7E9/kb/thI4py7GtbXwH0Xp22Jp2Zrs=)
3: q3kW82CYNO1AFNqMaVs0CnsKWA4.crl (hash: 0Y8tM8uiJNBmdLIPn5DqO+EUrqJXBoOv1F2MpYfmjaE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:5d:97:6f:c8:06:e2:30:c7:bd:5c:e8:77:c3:e0:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7916f3609834ed4014da8c695b340a7b0a580e
Validity
Not Before: May 15 02:00:59 2026 GMT
Not After : May 16 02:00:59 2026 GMT
Subject: CN=b7096f30cbf158c5ff6f6c7b54dceccd15527245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:46:f7:f6:c1:1e:68:4f:f8:b5:99:90:34:82:
e6:be:6c:1a:6c:11:e3:1c:49:dd:fd:6d:80:b4:4e:
d0:5a:81:81:d4:a5:53:2a:23:26:d0:1f:a6:88:00:
27:34:ea:fd:3a:3b:eb:de:c8:b6:81:af:28:cc:42:
87:de:9c:45:18:11:25:34:7f:4e:a7:ec:09:f5:13:
80:50:d1:d0:82:e2:ac:1a:10:23:90:b7:4f:c6:64:
ba:54:06:f6:6e:7d:2c:22:4f:1d:de:ba:91:b0:27:
d2:54:e5:33:08:30:7f:ad:0f:2f:79:8b:08:d9:5c:
0d:99:e4:87:0d:d7:45:97:bd:e7:e3:ab:72:db:b9:
b7:60:62:74:d4:b9:41:86:71:2a:75:8d:d6:f7:1c:
80:e0:42:75:80:d6:5f:08:34:f9:6a:5d:13:a4:a3:
60:9b:51:35:21:fb:06:3e:f0:ec:6b:0a:90:78:d6:
e0:c8:ae:ff:c5:ee:fa:f2:2a:59:5a:82:d4:e1:0c:
24:47:29:52:e9:eb:bc:fc:6a:c2:46:23:a0:b4:66:
98:31:aa:66:79:9c:50:29:2f:b2:4f:7c:07:14:67:
87:bf:f6:54:be:48:cf:22:df:45:01:13:54:8e:f8:
e7:0b:2f:d8:6d:a0:12:16:82:76:27:4d:6a:04:52:
bc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:09:6F:30:CB:F1:58:C5:FF:6F:6C:7B:54:DC:EC:CD:15:52:72:45
X509v3 Authority Key Identifier:
keyid:AB:79:16:F3:60:98:34:ED:40:14:DA:8C:69:5B:34:0A:7B:0A:58:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:8f:cb:c2:bf:e8:0b:14:c0:19:27:d1:71:4e:26:2a:5e:2a:
6c:11:8a:16:9b:13:70:e9:7b:98:dd:66:de:50:09:18:a4:2f:
68:b4:6b:2f:9d:05:c1:3f:c3:5f:76:1d:6a:a5:14:ee:84:0d:
c9:99:1b:37:d3:02:27:08:6b:64:83:a6:af:01:b7:eb:4a:ed:
37:8e:ef:3a:a3:1e:04:29:68:a9:22:72:69:d6:2d:6b:d3:52:
f0:21:fc:51:59:2a:06:82:05:0e:2b:40:de:e6:bb:98:02:96:
f5:2e:6f:bb:ea:c8:e4:20:eb:92:74:1b:bd:de:e2:63:b6:00:
c9:b2:2a:fc:d1:9a:ef:eb:5c:2c:ae:4d:68:59:80:55:50:71:
be:f0:a0:45:b6:84:a5:3d:70:51:11:80:95:c8:13:c9:90:69:
86:f8:bd:b0:2d:d9:bc:48:3f:a7:55:d8:34:f1:f4:fb:f6:25:
38:ce:91:2a:22:ce:eb:d9:1c:1b:f7:74:e6:df:90:db:dd:37:
01:82:37:ed:82:95:b2:7b:42:a8:f7:92:5d:67:29:5e:3f:9c:
06:9e:1c:4e:16:4d:69:97:b2:9d:56:fb:de:0a:c3:33:f4:8b:
c1:7b:9a:87:00:6d:71:ec:4d:e1:be:0e:0a:e3:33:f1:b9:59:
0c:b9:ab:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:23:02 2026 by rpki-client