Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
File: qiEQS093IiTRGFaiTt-UZqhE0mw.mft (raw, json)
Hash identifier: LMlx5UF50xl0eJ9SE7lyF/LHrJncTkM+2ccsj+V+Zmk=
Subject key identifier: 67:BD:59:29:D1:3B:0E:73:D4:18:36:7F:3C:69:F5:64:F5:FE:BC:E8
Authority key identifier: AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
Certificate issuer: /CN=aa21104b4f772224d11856a24edf9466a844d26c
Certificate serial: 019D37899DE6490CBC5798920E063F8453B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
Manifest number: 0C89
Signing time: Sun 29 Mar 2026 03:00:58 +0000
Manifest this update: Sun 29 Mar 2026 03:00:58 +0000
Manifest next update: Mon 30 Mar 2026 03:00:58 +0000
Files and hashes: 1: qiEQS093IiTRGFaiTt-UZqhE0mw.crl (hash: 3mwdqiqrA/xOQ2iwvQ0xZRizeWRwwWGUp7FXeBTZlhg=)
2: xP2-PGjj2ZcXju3-gF6z2cy8Ry8.roa (hash: udxzAht7sjVAvqEdnFS9dvNnVG0rFxFaOfjA1MrLEX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:9d:e6:49:0c:bc:57:98:92:0e:06:3f:84:53:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa21104b4f772224d11856a24edf9466a844d26c
Validity
Not Before: Mar 29 03:00:58 2026 GMT
Not After : Mar 30 03:00:58 2026 GMT
Subject: CN=67bd5929d13b0e73d418367f3c69f564f5febce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6e:32:25:b4:d9:1d:87:6a:17:a2:50:7d:57:
d4:3d:12:83:29:06:a8:df:2d:cc:a4:69:2b:02:dc:
12:f9:95:e6:f3:67:d3:4a:85:0e:3d:2f:7f:d5:cf:
8c:31:b7:5a:c7:76:8b:f4:0d:2b:33:8c:71:72:7d:
9d:99:31:9c:fd:8c:84:45:3f:97:cc:6d:68:6d:97:
ff:7c:8d:b0:90:63:14:51:97:8c:4a:3a:d5:88:d5:
ba:47:2c:58:2d:2e:49:03:36:71:bd:73:31:a2:bc:
c5:0c:34:2f:79:74:3a:03:31:cc:3a:45:d4:69:2d:
5d:6a:5d:86:c1:30:65:d8:3e:95:a5:55:68:7c:31:
31:8e:f2:0c:c9:bf:32:49:60:62:46:05:7f:a1:19:
d0:7e:68:ba:1f:cb:bf:f0:06:7f:a2:31:6f:5b:05:
82:f9:fb:42:ac:ad:80:2b:7b:e6:19:75:6e:14:da:
10:e1:f9:4e:ee:10:e0:f2:4d:e9:30:cf:65:e5:2e:
b5:87:e7:4e:aa:ba:b5:bf:14:d0:62:ba:b6:66:b5:
a3:30:f0:33:9f:66:cc:a7:31:39:36:f3:b3:55:1e:
ae:5c:8a:f0:03:58:9d:ba:05:73:17:38:a2:07:9a:
74:4c:5f:ff:1e:d7:95:b7:f0:f9:0f:c7:c1:00:8a:
78:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:BD:59:29:D1:3B:0E:73:D4:18:36:7F:3C:69:F5:64:F5:FE:BC:E8
X509v3 Authority Key Identifier:
keyid:AA:21:10:4B:4F:77:22:24:D1:18:56:A2:4E:DF:94:66:A8:44:D2:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiEQS093IiTRGFaiTt-UZqhE0mw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/dabacb-e6f5-4065-86b6-8e0d83c5edfe/1/qiEQS093IiTRGFaiTt-UZqhE0mw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:96:ea:ba:5a:68:03:36:12:e0:a7:d5:f9:d0:d1:0f:10:67:
c9:21:55:24:1c:68:98:3f:27:be:a7:c2:33:f6:31:20:41:12:
dc:fd:64:86:e2:45:ec:76:f5:0c:5b:29:33:ea:9e:ef:6f:03:
7d:92:04:9b:86:76:5f:57:16:07:ea:83:bf:50:cf:50:e0:2a:
44:9c:3c:5c:f2:50:3e:ad:4b:5c:7b:3e:f7:a9:8d:55:83:d9:
2b:a6:c4:af:8b:0d:93:a9:a6:55:0a:4d:6a:12:fb:b4:97:45:
23:f3:96:c2:f8:68:cd:8d:89:12:ea:d8:25:36:d2:5d:7a:23:
f9:54:51:ae:3f:6f:1a:a7:11:b5:c3:e0:3d:05:b6:ba:e9:89:
72:84:36:ac:8d:57:c0:dd:7b:1f:fe:49:34:8f:23:c4:46:96:
dc:82:89:24:85:43:2f:bf:ef:dd:dc:f1:be:7e:28:50:87:a8:
ba:a9:05:57:6d:5d:f9:36:35:53:85:f1:0e:af:91:65:d3:08:
82:73:87:fb:28:b0:77:70:17:87:dd:2f:3c:4e:50:c1:3a:dc:
3c:b8:96:4b:31:63:97:27:8b:5c:37:90:3a:b0:45:5b:9c:56:
c0:a1:6d:3d:b4:5e:77:f5:d9:df:d3:38:ba:37:95:10:b2:b9:
76:02:09:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03iZ3mSQy8V5iSDgY/hFO0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhMjExMDRiNGY3NzIyMjRkMTE4NTZhMjRlZGY5NDY2YTg0
NGQyNmMwHhcNMjYwMzI5MDMwMDU4WhcNMjYwMzMwMDMwMDU4WjAzMTEwLwYDVQQD
Eyg2N2JkNTkyOWQxM2IwZTczZDQxODM2N2YzYzY5ZjU2NGY1ZmViY2U4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqG4yJbTZHYdqF6JQfVfUPRKDKQao
3y3MpGkrAtwS+ZXm82fTSoUOPS9/1c+MMbdax3aL9A0rM4xxcn2dmTGc/YyERT+X
zG1obZf/fI2wkGMUUZeMSjrViNW6RyxYLS5JAzZxvXMxorzFDDQveXQ6AzHMOkXU
aS1dal2GwTBl2D6VpVVofDExjvIMyb8ySWBiRgV/oRnQfmi6H8u/8AZ/ojFvWwWC
+ftCrK2AK3vmGXVuFNoQ4flO7hDg8k3pMM9l5S61h+dOqrq1vxTQYrq2ZrWjMPAz
n2bMpzE5NvOzVR6uXIrwA1idugVzFziiB5p0TF//HteVt/D5D8fBAIp4GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGe9WSnROw5z1Bg2fzxp9WT1/rzoMB8GA1UdIwQY
MBaAFKohEEtPdyIk0RhWok7flGaoRNJsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWlFUVMwOTNJaVRSR0ZhaVR0LVVacWhFMG13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9kYWJhY2ItZTZmNS00MDY1LTg2YjYt
OGUwZDgzYzVlZGZlLzEvcWlFUVMwOTNJaVRSR0ZhaVR0LVVacWhFMG13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9kYWJhY2ItZTZmNS00MDY1LTg2YjYtOGUwZDgzYzVlZGZl
LzEvcWlFUVMwOTNJaVRSR0ZhaVR0LVVacWhFMG13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZZbqulpo
AzYS4KfV+dDRDxBnySFVJBxomD8nvqfCM/YxIEES3P1khuJF7Hb1DFspM+qe728D
fZIEm4Z2X1cWB+qDv1DPUOAqRJw8XPJQPq1LXHs+96mNVYPZK6bEr4sNk6mmVQpN
ahL7tJdFI/OWwvhozY2JEurYJTbSXXoj+VRRrj9vGqcRtcPgPQW2uumJcoQ2rI1X
wN17H/5JNI8jxEaW3IKJJIVDL7/v3dzxvn4oUIeouqkFV21d+TY1U4XxDq+RZdMI
gnOH+yiwd3AXh90vPE5QwTrcPLiWSzFjlyeLXDeQOrBFW5xWwKFtPbRed/XZ39M4
ujeVELK5dgIJVA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:00 2026 by rpki-client