Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
File: q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft (raw, json)
Hash identifier: guPgy/gQkdd1XVFOEF0xKcnlELRL4ilRlYJhet2Phg8=
Subject key identifier: B0:51:F3:2B:A2:3D:23:F1:4C:D0:94:1E:CE:0A:8B:FE:3F:04:49:EC
Authority key identifier: AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
Certificate issuer: /CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Certificate serial: 019EB921B4F96D961813A0E355A34F8F59BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
Manifest number: 114A
Signing time: Fri 12 Jun 2026 00:00:54 +0000
Manifest this update: Fri 12 Jun 2026 00:00:54 +0000
Manifest next update: Sat 13 Jun 2026 00:00:54 +0000
Files and hashes: 1: eutBwstQCFRzhm35XTnNphMWByQ.roa (hash: RdOW4ekiWsJoF7BZmUsggiXem+HWt5D8Hbfh8/B+px8=)
2: q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl (hash: NvOkxh7ABriw4RjlLXrNUm+FQEIReiq9YVMRtTVWxNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:21:b4:f9:6d:96:18:13:a0:e3:55:a3:4f:8f:59:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab684e50e33f3a0015c8f899c88bcb137bcfb5f9
Validity
Not Before: Jun 12 00:00:54 2026 GMT
Not After : Jun 13 00:00:54 2026 GMT
Subject: CN=b051f32ba23d23f14cd0941ece0a8bfe3f0449ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d2:8a:4e:4c:86:fd:c1:fe:7f:9d:ee:03:52:
a3:53:ac:09:b3:b0:00:93:fd:87:6d:70:26:f3:ce:
dd:31:14:64:0e:8d:94:55:5f:b5:ea:ae:74:06:61:
56:2c:50:80:84:38:f8:33:b4:25:11:08:12:99:45:
ff:e6:f0:05:98:02:e3:47:76:6d:8b:d3:24:37:9c:
9e:53:c7:79:7e:90:f0:67:df:d2:7a:b0:a3:70:34:
df:f8:3a:96:4b:19:42:1f:29:25:23:2f:8b:57:df:
f2:6c:b9:b8:36:e8:07:75:e6:2e:e1:d8:9d:16:28:
67:36:63:95:85:58:c5:96:31:2e:92:02:c6:10:00:
5a:d6:e5:9f:a5:25:f2:88:d4:4c:66:90:25:74:4a:
b3:74:c4:c4:58:a8:4d:60:a1:b7:82:14:7f:d9:81:
bf:b7:32:37:10:22:9b:29:a4:05:4f:a2:11:55:fa:
2c:7b:8c:27:25:0f:d8:b4:5f:6f:25:61:c4:a4:a0:
bf:84:6a:93:f0:cc:3d:82:fa:9f:df:4d:7b:98:1a:
d0:4d:c9:5e:37:69:f7:87:8c:5b:63:a6:87:29:3e:
8b:41:c4:f0:ac:80:e9:87:ec:9e:6a:41:af:be:45:
cb:f2:09:61:ae:bb:43:1c:5b:42:3c:26:a8:65:ce:
7c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:51:F3:2B:A2:3D:23:F1:4C:D0:94:1E:CE:0A:8B:FE:3F:04:49:EC
X509v3 Authority Key Identifier:
keyid:AB:68:4E:50:E3:3F:3A:00:15:C8:F8:99:C8:8B:CB:13:7B:CF:B5:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q2hOUOM_OgAVyPiZyIvLE3vPtfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9472a6-d022-43ce-b362-80e5d53edb41/1/q2hOUOM_OgAVyPiZyIvLE3vPtfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:15:72:0c:16:43:53:f5:66:05:6d:d9:f7:ef:cc:5d:4a:81:
8c:1e:a7:d4:f3:bb:8b:dc:11:c1:b7:41:24:00:1e:c3:34:aa:
88:96:10:77:1d:7c:92:90:31:87:e4:b3:3b:56:96:8d:d4:64:
4c:fc:55:5a:eb:7b:ba:53:df:0b:2b:27:81:eb:75:fe:0f:0f:
9b:4e:2b:5c:51:8b:52:7d:ac:1f:e0:d9:e0:33:a7:ce:15:ae:
5e:17:a5:20:08:65:db:ec:c9:0e:8a:90:6c:fc:83:5e:36:74:
81:98:49:1c:a8:0c:4c:84:1d:47:e7:09:3f:76:60:b8:31:10:
bf:d9:d2:81:e5:f7:8f:a9:cf:2a:70:01:56:be:8f:a8:ce:b5:
e8:0b:d9:68:e6:3b:f9:65:d0:b2:ae:03:5f:e1:7e:1a:5e:67:
e7:ec:e9:fe:46:b2:9b:b1:14:01:6b:3a:9a:d2:6f:7e:1c:df:
f0:9f:a2:f4:d8:45:45:c7:f9:a3:8d:f0:37:8f:69:8e:9b:47:
77:a4:70:bd:13:fc:7f:44:c4:e9:05:08:ec:89:2e:89:62:9b:
f2:ac:da:21:20:74:a6:56:de:25:0a:09:05:e7:9c:58:b0:94:
71:87:2c:29:29:80:35:93:89:ef:9a:b7:4b:7e:25:e3:2b:32:
41:89:e7:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:52:06 2026 by rpki-client