Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
File: qERYOVOgK8amaZ3pJ89FcAfwVSg.mft (raw, json)
Hash identifier: mlxNuehu+qlUP8UT+opVXnQPJuiYPgOYju3bDXLpEZc=
Subject key identifier: 97:8B:F6:E2:37:82:B8:65:B0:84:F7:69:A4:EB:C3:C5:99:3A:9C:E0
Authority key identifier: A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
Certificate issuer: /CN=a844583953a02bc6a6699de927cf457007f05528
Certificate serial: 019EB656FDA988E0A1132F895F42ECB45DA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
Manifest number: 01EC
Signing time: Thu 11 Jun 2026 11:00:14 +0000
Manifest this update: Thu 11 Jun 2026 11:00:14 +0000
Manifest next update: Fri 12 Jun 2026 11:00:14 +0000
Files and hashes: 1: bzuHav72txau2Blj1JcbQR-3zHA.roa (hash: TCvNISq9G9+8+m7g0vleezt4nSYPh9D8kXCKj2MC7tQ=)
2: qERYOVOgK8amaZ3pJ89FcAfwVSg.crl (hash: R/COPBjkG15CCTm4MEbXXsgYKQK8QdHhcbMmxWtvYEQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 11:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:56:fd:a9:88:e0:a1:13:2f:89:5f:42:ec:b4:5d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a844583953a02bc6a6699de927cf457007f05528
Validity
Not Before: Jun 11 11:00:14 2026 GMT
Not After : Jun 12 11:00:14 2026 GMT
Subject: CN=978bf6e23782b865b084f769a4ebc3c5993a9ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:66:40:9a:4c:b4:f7:98:3b:54:0f:aa:0c:db:
dc:d2:37:78:42:93:f9:f2:b2:84:be:dc:2e:12:f0:
70:0a:6e:da:c8:33:49:39:d7:4a:46:11:67:b5:7f:
84:23:83:a9:ec:b8:26:78:94:b7:e3:88:3a:a9:16:
03:87:63:da:fd:95:90:c2:36:a4:8f:53:6c:86:8f:
16:a3:c5:12:22:cd:1d:71:cf:08:6d:e8:e3:61:2e:
83:ea:dc:4b:2c:cc:59:64:8a:9c:8a:3a:81:f8:2f:
69:9a:cf:57:44:7b:14:a4:53:2f:7f:60:ab:73:6f:
3f:cc:c7:5e:d5:3a:55:81:1c:fd:22:3b:e7:48:26:
5b:f3:56:4c:3e:69:93:af:53:10:9e:d4:f2:7c:f1:
f7:69:b0:42:73:c6:45:2b:8d:78:de:74:84:ad:c3:
78:0d:00:6d:43:de:33:b5:b7:d6:17:42:bf:97:37:
0b:e9:80:54:53:62:db:d3:04:69:c3:9b:7c:fc:13:
87:73:ce:b2:a5:34:41:fb:ed:18:57:e7:0a:03:03:
85:63:1d:f0:a1:32:5c:fd:00:ab:1e:99:eb:30:df:
69:15:16:e6:67:b1:f1:fd:88:47:83:d4:df:b4:0d:
71:a4:20:b9:b7:b5:99:0f:a8:dc:e3:bc:4a:b6:e6:
65:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8B:F6:E2:37:82:B8:65:B0:84:F7:69:A4:EB:C3:C5:99:3A:9C:E0
X509v3 Authority Key Identifier:
keyid:A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:c8:ab:9b:87:4e:a6:4c:a1:d5:0c:2f:49:43:9b:07:af:bb:
6b:4e:15:b7:0a:32:0b:88:e1:2d:df:85:e8:1a:2b:1d:12:4a:
42:12:0e:ab:67:c7:bc:b0:ea:22:cd:59:6e:8b:3c:ff:e9:9a:
95:5b:cb:2d:48:30:53:42:77:0a:93:8a:08:67:eb:6c:93:eb:
b2:00:ee:6c:b4:d7:fd:7b:aa:8a:a4:54:64:52:50:ac:d3:97:
1b:0c:3a:6c:fd:28:c9:c0:34:b9:fd:bc:35:9a:ee:1c:46:0e:
33:4b:34:79:d9:f7:04:cb:46:92:ac:93:ef:7e:f8:15:be:3b:
77:0c:70:db:d0:e9:bb:bb:58:35:11:69:4c:61:5f:42:da:2b:
c5:0c:90:52:21:50:cb:0f:01:7a:0f:dd:d2:04:05:a7:80:46:
0d:01:f7:14:6d:66:b3:3f:59:8d:4b:12:43:d0:1b:72:d4:7d:
e4:60:81:37:d8:a8:76:34:af:07:c2:c8:44:18:cd:5c:6c:53:
25:1b:40:d3:8a:a3:c6:88:81:6d:ac:c0:6a:72:cd:cb:0f:fc:
23:8d:94:7c:33:64:2c:e5:11:74:4c:00:8d:b9:99:fc:c6:a1:
e2:89:2a:cc:e2:43:1d:6a:82:c8:eb:05:75:93:cc:df:87:bc:
0c:cf:9e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 20:51:02 2026 by rpki-client