Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
File: DQMTeXANNd0Akr0GHGA-bLJWGnU.mft (raw, json)
Hash identifier: mdZjMGZUmKkNG5UOnHWORRXxKUJhUpXQfxWYInoIkGs=
Subject key identifier: 87:8F:0B:C3:C2:2D:46:B6:C4:55:1E:05:03:2F:CB:74:36:1C:A8:EF
Authority key identifier: 0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
Certificate issuer: /CN=0d031379700d35dd0092bd061c603e6cb2561a75
Certificate serial: 019E522297A5CA084ECF786987F2E12F9BA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
Manifest number: 03AF
Signing time: Sat 23 May 2026 00:00:58 +0000
Manifest this update: Sat 23 May 2026 00:00:58 +0000
Manifest next update: Sun 24 May 2026 00:00:58 +0000
Files and hashes: 1: 0pkuqzvhduSck3Ha7xOc7WG-8JA.roa (hash: o9t9fokSPRDcMcuSn/HePatJg9nqZBhL9E5qotJE2cw=)
2: DQMTeXANNd0Akr0GHGA-bLJWGnU.crl (hash: BRZzI31mUxw6nETOGflOs6wyr4JFT+UBX/fpPWqIzE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:52:22:97:a5:ca:08:4e:cf:78:69:87:f2:e1:2f:9b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d031379700d35dd0092bd061c603e6cb2561a75
Validity
Not Before: May 23 00:00:58 2026 GMT
Not After : May 24 00:00:58 2026 GMT
Subject: CN=878f0bc3c22d46b6c4551e05032fcb74361ca8ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e3:45:ff:57:30:ee:48:3c:e5:da:84:05:e5:
0e:f3:b9:14:09:8c:2f:6f:8a:e6:71:a9:c8:9b:b0:
bb:24:01:c7:5b:ac:0e:b4:01:9d:79:3e:60:5e:46:
e6:ba:9e:3a:ee:f5:34:ef:d4:0f:83:46:29:09:fc:
cf:8e:42:5b:80:a8:34:81:f0:24:8b:3a:fc:a4:03:
52:d0:95:7a:0b:1a:f4:7b:27:b5:ae:c9:98:8a:f8:
82:6a:c0:fd:fc:11:b8:36:59:e4:0b:80:27:f9:23:
9b:50:0a:0c:2c:3a:14:4e:d3:25:1b:69:75:89:36:
82:42:31:db:de:f4:e1:da:5f:bc:5a:bc:e0:93:b2:
e3:71:11:ed:dd:4b:f3:a9:51:3c:63:1f:75:33:5c:
77:f8:db:8e:52:fd:40:80:f4:03:90:88:4c:f7:1f:
81:e0:5d:1f:7e:cf:73:1d:82:ff:fb:8a:2d:2e:49:
e6:c8:52:1a:08:c6:78:a8:3f:68:40:a3:c2:a6:6d:
5a:7d:35:5c:42:fa:ec:ba:3c:30:cd:67:da:05:e8:
15:fc:1f:4f:a2:e5:02:f7:7e:33:0a:57:42:1d:10:
19:28:cf:4c:f4:5c:9a:ef:81:21:96:08:8c:25:77:
8c:3f:a6:9d:53:a7:38:93:eb:f1:44:42:bd:2b:89:
ed:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8F:0B:C3:C2:2D:46:B6:C4:55:1E:05:03:2F:CB:74:36:1C:A8:EF
X509v3 Authority Key Identifier:
keyid:0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:34:41:ac:43:ea:ca:e8:13:d1:e6:7e:ce:c0:fe:c8:2e:e6:
ed:c5:bc:79:a5:90:dc:76:68:6a:7e:76:bf:b4:d4:06:2b:5f:
c7:f6:1b:5f:81:4a:1d:55:f4:25:06:55:e0:c9:fd:43:16:08:
37:3d:a5:42:ab:24:2b:33:b9:d3:78:ca:16:a8:38:3f:21:6a:
91:05:33:0e:c8:7e:5a:76:05:19:6f:c1:01:0d:f8:fe:dc:e8:
1a:50:65:80:c4:2e:db:5e:59:19:4b:8a:37:88:b8:1e:e3:37:
7b:b2:fc:8d:a5:93:a1:d2:6b:c5:30:48:6d:32:42:36:c1:2c:
d0:b9:00:2a:f1:aa:78:29:de:e5:a9:1f:ea:05:ae:a6:e4:7f:
c2:47:ab:9b:1b:cf:78:cb:5b:93:7b:57:09:3c:6d:50:82:7d:
1f:eb:74:08:0d:96:75:c1:29:8a:26:13:1d:4b:ef:e0:44:b1:
af:3b:3e:25:03:cf:54:0b:a1:da:ce:7b:d8:d9:ec:fb:29:9b:
67:b3:4a:0a:58:46:e3:92:db:b7:45:38:a6:20:85:55:0b:e4:
c2:01:6d:25:de:b0:86:d3:27:bd:11:96:05:66:95:a4:05:3b:
ff:35:9a:cf:23:29:1c:75:12:0f:57:a2:2b:52:10:30:d3:29:
2f:b4:66:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 23 03:47:34 2026 by rpki-client