Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
File: qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft (raw, json)
Hash identifier: tuyTw2PiQaVuc4Hn9CuLmuabT+LwQ3VwYNKHErBeDxQ=
Subject key identifier: FE:F6:4F:A3:4E:A2:99:35:76:F4:6C:A7:08:F1:01:16:E7:46:4E:9C
Authority key identifier: A8:AB:7D:68:D6:9A:52:AA:50:C7:99:99:0B:92:18:41:9C:14:79:35
Certificate issuer: /CN=a8ab7d68d69a52aa50c799990b9218419c147935
Certificate serial: 019D39AEC731A48C54B6ED513857ED86D9E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
Manifest number: 02BB
Signing time: Sun 29 Mar 2026 13:00:48 +0000
Manifest this update: Sun 29 Mar 2026 13:00:48 +0000
Manifest next update: Mon 30 Mar 2026 13:00:48 +0000
Files and hashes: 1: LD8OWpI1obkdnjkX8kmxb_IamiA.roa (hash: RMRCf8c6qT05wLKTTfxT0EUrLvsEv29MJgHXniMipJs=)
2: qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl (hash: 2AnDSgs27MjemOgurM5JpewB/bWvDDxMbj8InHFDtCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:c7:31:a4:8c:54:b6:ed:51:38:57:ed:86:d9:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8ab7d68d69a52aa50c799990b9218419c147935
Validity
Not Before: Mar 29 13:00:48 2026 GMT
Not After : Mar 30 13:00:48 2026 GMT
Subject: CN=fef64fa34ea2993576f46ca708f10116e7464e9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3b:54:fa:f9:a8:ce:c2:81:24:16:2f:fa:65:
c1:fb:88:a6:c9:24:a3:f6:e0:94:82:08:8c:06:31:
6e:08:d0:b9:db:18:86:3b:bc:d6:36:57:2f:bf:05:
a7:82:4d:ce:aa:9b:40:b8:76:c2:3d:c8:17:3f:8d:
ba:61:97:a6:af:2a:df:f0:a2:91:9c:be:0f:ea:bc:
a4:18:4b:1f:e7:f6:94:e5:4d:e8:7a:78:6d:bb:0a:
12:6b:f5:1d:9e:ad:44:db:87:39:f5:d3:e7:b5:8d:
4f:d7:3b:66:02:ae:1e:4b:80:b8:f9:d0:f4:e1:4a:
9d:8b:e1:d8:ce:1c:af:d2:da:dd:42:4a:22:49:47:
fa:47:97:e7:8d:de:d0:14:fa:75:69:9d:ed:3d:46:
d2:67:26:6c:aa:8d:29:e7:2a:bb:4b:1b:de:46:86:
e8:ba:d5:be:13:46:47:85:a5:19:11:cf:20:1e:50:
12:d0:90:32:24:92:f8:48:74:86:c7:0b:a8:2d:8e:
ab:f6:cd:d0:8a:28:fe:a5:06:89:09:96:94:ed:11:
89:38:20:90:ff:1a:e1:eb:4b:de:bc:16:81:19:fc:
46:37:e1:f3:49:c5:05:23:52:fa:5b:37:78:80:7e:
45:d0:0f:3c:3a:e2:11:9c:cb:73:f3:f6:65:0e:a8:
a2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F6:4F:A3:4E:A2:99:35:76:F4:6C:A7:08:F1:01:16:E7:46:4E:9C
X509v3 Authority Key Identifier:
keyid:A8:AB:7D:68:D6:9A:52:AA:50:C7:99:99:0B:92:18:41:9C:14:79:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qKt9aNaaUqpQx5mZC5IYQZwUeTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/4ec725-4d8d-4311-934f-3880552a5439/1/qKt9aNaaUqpQx5mZC5IYQZwUeTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:b6:18:b3:90:5b:8f:64:85:d9:a9:42:17:a1:24:11:b7:e0:
97:dd:9e:e9:71:6d:f7:f8:b7:86:7c:73:3e:5a:01:ec:af:3a:
d2:c5:63:8c:25:0b:28:ec:71:af:be:61:75:9e:db:9c:97:a6:
ae:47:12:d8:76:f1:53:c1:00:58:4b:46:ec:bb:37:ac:b5:50:
83:c9:03:db:10:78:99:b8:cc:10:93:6a:0e:26:8c:0d:64:17:
c3:20:72:2f:c7:ea:2e:c8:7d:d9:7f:9c:18:a8:2f:3c:96:83:
5e:89:3c:a0:e5:00:1b:c0:54:6e:19:49:7a:64:44:12:9c:6e:
0a:3a:a1:20:32:3f:43:34:3b:18:fb:03:fc:eb:81:20:37:fb:
6c:68:bb:ee:d3:16:7d:c2:62:06:07:9b:49:fe:fd:6a:85:b5:
b9:df:f5:09:22:61:02:91:8a:20:13:79:d8:6a:2d:8e:75:ab:
be:31:7e:ad:e9:74:43:62:f6:c8:a6:30:24:34:ad:ab:2c:ec:
f7:be:75:9e:6f:8c:5a:f0:3f:84:22:dc:63:23:85:11:58:31:
17:47:cf:a7:5f:dd:10:4d:86:1f:3a:67:1b:f1:0b:9c:24:93:
6e:b2:61:17:35:18:26:3e:a4:9a:b9:92:07:1a:58:52:6c:21:
0a:1f:7a:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rscxpIxUtu1ROFfthtnlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4YWI3ZDY4ZDY5YTUyYWE1MGM3OTk5OTBiOTIxODQxOWMx
NDc5MzUwHhcNMjYwMzI5MTMwMDQ4WhcNMjYwMzMwMTMwMDQ4WjAzMTEwLwYDVQQD
EyhmZWY2NGZhMzRlYTI5OTM1NzZmNDZjYTcwOGYxMDExNmU3NDY0ZTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDtU+vmozsKBJBYv+mXB+4imySSj
9uCUggiMBjFuCNC52xiGO7zWNlcvvwWngk3OqptAuHbCPcgXP426YZemryrf8KKR
nL4P6rykGEsf5/aU5U3oenhtuwoSa/Udnq1E24c59dPntY1P1ztmAq4eS4C4+dD0
4Uqdi+HYzhyv0trdQkoiSUf6R5fnjd7QFPp1aZ3tPUbSZyZsqo0p5yq7SxveRobo
utW+E0ZHhaUZEc8gHlAS0JAyJJL4SHSGxwuoLY6r9s3Qiij+pQaJCZaU7RGJOCCQ
/xrh60vevBaBGfxGN+HzScUFI1L6Wzd4gH5F0A88OuIRnMtz8/ZlDqiifwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP72T6NOopk1dvRspwjxARbnRk6cMB8GA1UdIwQY
MBaAFKirfWjWmlKqUMeZmQuSGEGcFHk1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUt0OWFOYWFVcXBReDVtWkM1SVlRWndVZVRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi80ZWM3MjUtNGQ4ZC00MzExLTkzNGYt
Mzg4MDU1MmE1NDM5LzEvcUt0OWFOYWFVcXBReDVtWkM1SVlRWndVZVRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi80ZWM3MjUtNGQ4ZC00MzExLTkzNGYtMzg4MDU1MmE1NDM5
LzEvcUt0OWFOYWFVcXBReDVtWkM1SVlRWndVZVRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOrYYs5Bb
j2SF2alCF6EkEbfgl92e6XFt9/i3hnxzPloB7K860sVjjCULKOxxr75hdZ7bnJem
rkcS2HbxU8EAWEtG7Ls3rLVQg8kD2xB4mbjMEJNqDiaMDWQXwyByL8fqLsh92X+c
GKgvPJaDXok8oOUAG8BUbhlJemREEpxuCjqhIDI/QzQ7GPsD/OuBIDf7bGi77tMW
fcJiBgebSf79aoW1ud/1CSJhApGKIBN52GotjnWrvjF+rel0Q2L2yKYwJDStqyzs
9751nm+MWvA/hCLcYyOFEVgxF0fPp1/dEE2GHzpnG/ELnCSTbrJhFzUYJj6kmrmS
BxpYUmwhCh962Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:02:02 2026 by rpki-client