Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
File: q3kW82CYNO1AFNqMaVs0CnsKWA4.mft (raw, json)
Hash identifier: snYhJOceyDjuJIOt3nETPLw8IarVPv0R8/w9IcjMoB4=
Subject key identifier: 11:69:29:A4:21:88:5B:26:EB:AD:88:AC:06:36:0A:47:0A:E0:8D:30
Authority key identifier: AB:79:16:F3:60:98:34:ED:40:14:DA:8C:69:5B:34:0A:7B:0A:58:0E
Certificate issuer: /CN=ab7916f3609834ed4014da8c695b340a7b0a580e
Certificate serial: 019D37F6F88A40190CBA3D279A519B4908EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
Manifest number: 023A
Signing time: Sun 29 Mar 2026 05:00:25 +0000
Manifest this update: Sun 29 Mar 2026 05:00:25 +0000
Manifest next update: Mon 30 Mar 2026 05:00:25 +0000
Files and hashes: 1: 0kO4HDhs-Z05CdJzgp5tseLyhSU.asa (hash: /YkuI+YVFPmtxpbrJU27qGqrMqF1Tro9Xx9l6QKKoAU=)
2: SZY6wsq_78e2nLvWAkeHk1piMW4.roa (hash: crCAmARzqXmw7E9/kb/thI4py7GtbXwH0Xp22Jp2Zrs=)
3: q3kW82CYNO1AFNqMaVs0CnsKWA4.crl (hash: ja/TQ1I6/PWZtkzOQ5VSUevBpJWDFsTzOrCb2+v+7iA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:f8:8a:40:19:0c:ba:3d:27:9a:51:9b:49:08:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7916f3609834ed4014da8c695b340a7b0a580e
Validity
Not Before: Mar 29 05:00:25 2026 GMT
Not After : Mar 30 05:00:25 2026 GMT
Subject: CN=116929a421885b26ebad88ac06360a470ae08d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4a:00:2e:56:5e:ec:97:db:24:28:09:31:37:
63:14:39:94:df:43:7e:f6:7f:2a:2e:be:b9:38:b0:
b2:4b:fb:f7:43:9d:85:8f:ad:a9:b7:bb:dd:19:03:
f9:63:29:3e:8d:99:9f:12:f0:04:21:8c:cc:ec:21:
36:2e:0f:13:ac:4b:ee:36:bd:c8:d0:30:ce:c4:02:
9c:6d:55:ce:21:51:e1:30:a8:8a:b1:97:9f:c9:2d:
eb:85:24:84:e7:d7:45:0b:df:ce:7b:a6:ca:c8:c3:
e6:74:9c:8f:dc:3c:75:27:c6:95:c5:6d:5f:e1:47:
35:b1:3d:11:1a:cc:24:f7:d5:6d:92:3d:e2:3b:a7:
2c:32:83:49:70:4a:e8:a5:16:80:bd:ba:c5:59:f9:
9a:96:7e:bf:9a:99:7c:8f:cd:81:59:a2:a3:64:4f:
9c:a7:2a:31:51:7d:4a:7b:8c:89:da:69:2a:f5:c0:
50:71:33:b2:75:4b:9f:26:24:ec:88:c8:5e:62:49:
e8:12:b1:59:e5:de:e4:a5:08:60:c0:94:ed:29:65:
b7:6a:fa:da:93:76:30:6f:be:32:4b:99:0c:be:c8:
63:e8:87:52:69:43:d8:3d:f2:67:8a:fa:df:1a:2f:
49:c3:5d:ae:b7:8e:8a:92:e7:aa:2a:c6:a5:29:2a:
17:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:69:29:A4:21:88:5B:26:EB:AD:88:AC:06:36:0A:47:0A:E0:8D:30
X509v3 Authority Key Identifier:
keyid:AB:79:16:F3:60:98:34:ED:40:14:DA:8C:69:5B:34:0A:7B:0A:58:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3kW82CYNO1AFNqMaVs0CnsKWA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/f26514-aef5-4a46-8851-b66300a7f9f1/1/q3kW82CYNO1AFNqMaVs0CnsKWA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:7a:28:70:1f:3f:e5:75:4b:59:71:19:38:ac:9d:99:63:5c:
18:6e:e6:fc:ba:13:ad:d3:74:44:ea:cf:69:79:a9:6c:e7:a5:
1f:5b:63:46:b5:96:6e:7d:23:90:c4:cd:ff:45:79:b8:99:8a:
de:56:af:90:23:30:b1:e1:6a:9f:de:26:8e:8f:2e:6c:a6:6b:
c6:69:53:d1:a7:96:d6:ff:d1:c0:39:09:3e:f8:6d:d5:4e:90:
bc:b7:2e:53:4b:1e:67:f5:35:b6:78:d0:8c:c7:dc:62:85:67:
20:1f:60:ca:0c:5e:df:f2:b7:ed:1d:b1:6f:f6:56:6c:71:bd:
2d:55:74:b3:a0:59:af:b6:7a:80:4f:a2:74:b8:a5:6b:6e:ba:
f5:d7:dc:97:64:71:aa:cd:53:9d:bf:6b:c3:e7:6e:f4:92:5a:
cc:32:4c:7a:46:47:20:4f:40:48:71:e5:7d:0e:e3:d6:d0:88:
d8:5d:a3:f5:06:20:a3:80:06:6d:dd:3c:a0:fe:9d:b8:8c:dd:
b3:8b:4d:df:15:ed:91:10:ef:b6:eb:fc:6d:eb:e6:4b:39:00:
da:ea:3e:7f:2f:31:76:8d:cf:3f:89:fd:88:eb:d4:dd:15:bc:
5e:0e:71:e4:55:3e:22:59:97:a0:39:9f:d4:54:4f:fd:f1:87:
38:7d:cf:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039viKQBkMuj0nmlGbSQjsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNzkxNmYzNjA5ODM0ZWQ0MDE0ZGE4YzY5NWIzNDBhN2Iw
YTU4MGUwHhcNMjYwMzI5MDUwMDI1WhcNMjYwMzMwMDUwMDI1WjAzMTEwLwYDVQQD
EygxMTY5MjlhNDIxODg1YjI2ZWJhZDg4YWMwNjM2MGE0NzBhZTA4ZDMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEoALlZe7JfbJCgJMTdjFDmU30N+
9n8qLr65OLCyS/v3Q52Fj62pt7vdGQP5Yyk+jZmfEvAEIYzM7CE2Lg8TrEvuNr3I
0DDOxAKcbVXOIVHhMKiKsZefyS3rhSSE59dFC9/Oe6bKyMPmdJyP3Dx1J8aVxW1f
4Uc1sT0RGswk99Vtkj3iO6csMoNJcEropRaAvbrFWfmaln6/mpl8j82BWaKjZE+c
pyoxUX1Ke4yJ2mkq9cBQcTOydUufJiTsiMheYknoErFZ5d7kpQhgwJTtKWW3avra
k3Ywb74yS5kMvshj6IdSaUPYPfJnivrfGi9Jw12ut46KkueqKsalKSoXsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBFpKaQhiFsm662IrAY2CkcK4I0wMB8GA1UdIwQY
MBaAFKt5FvNgmDTtQBTajGlbNAp7ClgOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTNrVzgyQ1lOTzFBRk5xTWFWczBDbnNLV0E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9mMjY1MTQtYWVmNS00YTQ2LTg4NTEt
YjY2MzAwYTdmOWYxLzEvcTNrVzgyQ1lOTzFBRk5xTWFWczBDbnNLV0E0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9mMjY1MTQtYWVmNS00YTQ2LTg4NTEtYjY2MzAwYTdmOWYx
LzEvcTNrVzgyQ1lOTzFBRk5xTWFWczBDbnNLV0E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1XoocB8/
5XVLWXEZOKydmWNcGG7m/LoTrdN0ROrPaXmpbOelH1tjRrWWbn0jkMTN/0V5uJmK
3lavkCMwseFqn94mjo8ubKZrxmlT0aeW1v/RwDkJPvht1U6QvLcuU0seZ/U1tnjQ
jMfcYoVnIB9gygxe3/K37R2xb/ZWbHG9LVV0s6BZr7Z6gE+idLila2669dfcl2Rx
qs1Tnb9rw+du9JJazDJMekZHIE9ASHHlfQ7j1tCI2F2j9QYgo4AGbd08oP6duIzd
s4tN3xXtkRDvtuv8bevmSzkA2uo+fy8xdo3PP4n9iOvU3RW8Xg5x5FU+IlmXoDmf
1FRP/fGHOH3P8g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:47:39 2026 by rpki-client