Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
File: q3kW82CYNO1AFNqMaVs0CnsKWA4.mft (raw, json)
Hash identifier: Q43lRzzXr4QS278LxvZt/3qo36a4jCHCyQHsc0VoaTM=
Subject key identifier: 23:1B:4E:35:B2:2B:32:07:C0:7B:A3:C0:10:BD:78:02:6E:84:8E:C4
Authority key identifier: AB:79:16:F3:60:98:34:ED:40:14:DA:8C:69:5B:34:0A:7B:0A:58:0E
Certificate issuer: /CN=ab7916f3609834ed4014da8c695b340a7b0a580e
Certificate serial: 019F111C19E63A2F7B912359A5D77483A1CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
Manifest number: 032F
Signing time: Mon 29 Jun 2026 02:01:21 +0000
Manifest this update: Mon 29 Jun 2026 02:01:21 +0000
Manifest next update: Tue 30 Jun 2026 02:01:21 +0000
Files and hashes: 1: 0kO4HDhs-Z05CdJzgp5tseLyhSU.asa (hash: /YkuI+YVFPmtxpbrJU27qGqrMqF1Tro9Xx9l6QKKoAU=)
2: SZY6wsq_78e2nLvWAkeHk1piMW4.roa (hash: crCAmARzqXmw7E9/kb/thI4py7GtbXwH0Xp22Jp2Zrs=)
3: q3kW82CYNO1AFNqMaVs0CnsKWA4.crl (hash: fLizD7kgQ+n9k1w22yFN/UZpuW+f7n3Lls/BEjjWSHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1c:19:e6:3a:2f:7b:91:23:59:a5:d7:74:83:a1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7916f3609834ed4014da8c695b340a7b0a580e
Validity
Not Before: Jun 29 02:01:21 2026 GMT
Not After : Jun 30 02:01:21 2026 GMT
Subject: CN=231b4e35b22b3207c07ba3c010bd78026e848ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4c:3f:f7:fa:53:58:28:bc:ff:2f:48:94:60:
f2:f4:66:b5:bb:d7:2f:3f:34:2a:97:70:ed:90:e6:
27:8c:21:3c:6e:a8:ec:c6:b7:7d:21:21:59:b4:f3:
fc:35:bc:1d:7a:b4:48:48:79:c5:f4:77:67:41:d4:
90:6c:72:a0:c1:ab:c1:78:6a:51:82:63:6f:93:a0:
c1:b1:7c:b0:6b:e1:15:5d:5e:f3:f4:2a:65:68:06:
bf:cb:0e:9f:bf:ac:12:64:dc:43:d8:a5:76:dc:d7:
42:5b:55:b0:2e:6e:66:c5:cf:a6:21:c9:1d:14:1e:
e3:e0:a9:e6:b0:f5:a3:98:7f:1f:8e:df:de:8f:1b:
11:48:ce:35:0f:77:12:3a:f9:c2:d0:d3:39:f7:5d:
d5:63:e7:70:8e:25:3e:32:06:04:d6:cd:76:5d:2b:
b8:83:42:27:bf:e2:dc:34:ab:5a:3c:d0:2f:40:11:
d1:15:7e:ec:49:0b:4c:34:ee:21:a8:8d:bb:19:4d:
57:b0:89:ed:9d:04:47:2a:0b:b7:b3:0a:a5:7c:5a:
9a:a5:63:95:81:af:62:01:3e:25:a8:04:dc:df:cc:
e4:c4:ae:e4:97:e9:8d:06:5e:95:24:be:98:82:ef:
ee:ab:9a:18:c4:6b:ee:bb:57:4d:bb:52:7e:69:d7:
2e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1B:4E:35:B2:2B:32:07:C0:7B:A3:C0:10:BD:78:02:6E:84:8E:C4
X509v3 Authority Key Identifier:
keyid:AB:79:16:F3:60:98:34:ED:40:14:DA:8C:69:5B:34:0A:7B:0A:58:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:da:fd:16:15:56:f8:71:34:75:48:d2:bd:40:91:e7:31:55:
46:74:45:ef:5a:fb:69:96:7e:c3:3d:81:e6:b4:e8:ed:18:c0:
53:2b:a0:6d:41:df:3b:54:6a:eb:79:9a:dc:06:c2:ac:65:bf:
58:08:e0:ab:0f:9b:d8:79:82:6f:9d:bc:9a:af:7e:e3:1f:67:
e1:88:cf:3b:bd:70:5a:4c:88:9d:3f:da:9a:00:c3:8e:02:1e:
dc:71:f4:8f:4f:de:6c:b5:5b:e6:18:1c:80:bc:18:ca:0a:c3:
1e:07:ef:20:6f:01:e8:c7:78:4d:3a:28:c1:76:f9:d4:43:61:
0d:a7:d1:ec:ea:6b:ba:a4:35:24:13:54:1d:d4:14:42:1f:6c:
b1:ab:d4:6b:2e:dd:b9:54:85:2c:ed:dd:9f:78:00:3c:50:d4:
a2:87:dc:c4:a6:10:7b:d9:de:9b:25:1d:91:24:e4:ba:9a:f7:
1c:55:54:4c:5c:63:5a:db:53:91:bd:e2:2d:81:69:83:a6:85:
02:a7:f3:25:49:fa:85:b8:72:89:6e:54:71:53:c0:d6:2c:02:
81:a7:6c:fa:5c:e4:3b:4d:36:19:f5:6f:cc:f3:a4:68:6c:e3:
e2:b4:a1:53:74:03:29:43:e6:b1:5d:d9:63:12:94:dd:bb:89:
ec:2e:00:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8RHBnmOi97kSNZpdd0g6HPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNzkxNmYzNjA5ODM0ZWQ0MDE0ZGE4YzY5NWIzNDBhN2Iw
YTU4MGUwHhcNMjYwNjI5MDIwMTIxWhcNMjYwNjMwMDIwMTIxWjAzMTEwLwYDVQQD
EygyMzFiNGUzNWIyMmIzMjA3YzA3YmEzYzAxMGJkNzgwMjZlODQ4ZWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEw/9/pTWCi8/y9IlGDy9Ga1u9cv
PzQql3DtkOYnjCE8bqjsxrd9ISFZtPP8NbwderRISHnF9HdnQdSQbHKgwavBeGpR
gmNvk6DBsXywa+EVXV7z9CplaAa/yw6fv6wSZNxD2KV23NdCW1WwLm5mxc+mIckd
FB7j4KnmsPWjmH8fjt/ejxsRSM41D3cSOvnC0NM5913VY+dwjiU+MgYE1s12XSu4
g0Inv+LcNKtaPNAvQBHRFX7sSQtMNO4hqI27GU1XsIntnQRHKgu3swqlfFqapWOV
ga9iAT4lqATc38zkxK7kl+mNBl6VJL6Ygu/uq5oYxGvuu1dNu1J+adcu/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCMbTjWyKzIHwHujwBC9eAJuhI7EMB8GA1UdIwQY
MBaAFKt5FvNgmDTtQBTajGlbNAp7ClgOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTNrVzgyQ1lOTzFBRk5xTWFWczBDbnNLV0E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9mMjY1MTQtYWVmNS00YTQ2LTg4NTEt
YjY2MzAwYTdmOWYxLzEvcTNrVzgyQ1lOTzFBRk5xTWFWczBDbnNLV0E0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9mMjY1MTQtYWVmNS00YTQ2LTg4NTEtYjY2MzAwYTdmOWYx
LzEvcTNrVzgyQ1lOTzFBRk5xTWFWczBDbnNLV0E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr9r9FhVW
+HE0dUjSvUCR5zFVRnRF71r7aZZ+wz2B5rTo7RjAUyugbUHfO1Rq63ma3AbCrGW/
WAjgqw+b2HmCb528mq9+4x9n4YjPO71wWkyInT/amgDDjgIe3HH0j0/ebLVb5hgc
gLwYygrDHgfvIG8B6Md4TToowXb51ENhDafR7OpruqQ1JBNUHdQUQh9ssavUay7d
uVSFLO3dn3gAPFDUoofcxKYQe9nemyUdkSTkupr3HFVUTFxjWttTkb3iLYFpg6aF
AqfzJUn6hbhyiW5UcVPA1iwCgads+lzkO002GfVvzPOkaGzj4rShU3QDKUPmsV3Z
YxKU3buJ7C4ATw==
-----END CERTIFICATE-----
Generated at Mon Jun 29 10:43:07 2026 by rpki-client