Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
File: qERYOVOgK8amaZ3pJ89FcAfwVSg.mft (raw, json)
Hash identifier: +ndEM5NhUJf1lk0XvlrZCj/wIaJ3NoJvZ3JkRwJPvbk=
Subject key identifier: 3B:46:D0:A4:B4:F6:9B:51:92:03:F3:38:BB:49:F1:6A:B6:8B:1B:92
Authority key identifier: A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
Certificate issuer: /CN=a844583953a02bc6a6699de927cf457007f05528
Certificate serial: 019CEE9489D82A543F5EBD73967EE188169B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
Manifest number: 0100
Signing time: Sat 14 Mar 2026 23:00:37 +0000
Manifest this update: Sat 14 Mar 2026 23:00:37 +0000
Manifest next update: Sun 15 Mar 2026 23:00:37 +0000
Files and hashes: 1: bzuHav72txau2Blj1JcbQR-3zHA.roa (hash: TCvNISq9G9+8+m7g0vleezt4nSYPh9D8kXCKj2MC7tQ=)
2: qERYOVOgK8amaZ3pJ89FcAfwVSg.crl (hash: MFPN8shWN7+r+cRRRxdarFgvkTtxgc+yeOgYW+xDw24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 23:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ee:94:89:d8:2a:54:3f:5e:bd:73:96:7e:e1:88:16:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a844583953a02bc6a6699de927cf457007f05528
Validity
Not Before: Mar 14 23:00:37 2026 GMT
Not After : Mar 15 23:00:37 2026 GMT
Subject: CN=3b46d0a4b4f69b519203f338bb49f16ab68b1b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:5b:8b:ac:c9:66:5f:e1:ec:0f:16:ee:c3:
76:88:0b:24:90:65:c8:46:d1:ae:fe:ba:0a:8c:47:
06:da:52:f1:0d:f2:e1:6a:08:b3:37:7d:dc:41:d5:
0e:53:1b:61:b5:31:7f:2d:bf:16:48:e9:9e:dc:cb:
21:ec:d1:76:77:61:ea:6a:13:50:a1:af:fc:7e:8d:
55:05:99:70:bb:2f:24:72:48:93:4c:64:68:bb:80:
48:c0:39:92:6d:06:d0:64:ec:a0:33:a2:be:3f:be:
8c:0d:9b:90:2b:0e:75:3e:bf:fa:65:84:2f:b5:b4:
94:ef:fe:fd:14:98:35:bb:8d:ba:5a:5c:91:80:47:
d3:dc:95:97:ee:8a:0d:4a:09:93:e7:30:ce:ed:da:
ac:8e:35:b4:8b:b8:0e:17:e7:6e:ca:79:08:5b:74:
06:bd:25:e2:af:c8:49:d7:c3:a6:df:40:d2:12:9d:
a0:a5:e4:ad:63:70:c2:dd:23:02:ad:8f:c6:92:a0:
9b:26:d9:bf:8f:8b:50:03:57:3d:e5:88:68:ac:aa:
33:47:4d:c8:76:29:3a:55:0f:1a:4d:43:9d:ec:54:
8f:95:1f:74:2a:3c:0e:ae:a4:33:98:26:ee:b4:aa:
d8:ae:bf:e2:e2:d0:32:d5:40:ec:0b:bc:d3:d8:dc:
aa:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:46:D0:A4:B4:F6:9B:51:92:03:F3:38:BB:49:F1:6A:B6:8B:1B:92
X509v3 Authority Key Identifier:
keyid:A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:27:f6:5b:8a:ae:83:95:72:49:bb:57:6d:77:4b:ce:81:85:
1f:d3:e1:67:b9:ac:bd:61:66:e5:50:b4:ce:de:70:14:ac:57:
7f:2a:58:72:f6:65:b9:fd:3f:a4:57:f0:49:ac:84:4d:8f:ce:
7e:ad:7c:15:e9:04:1d:40:5c:2e:2a:2a:f5:4e:83:9f:10:28:
ac:5c:c0:a8:b6:d6:0d:28:94:6d:a1:4e:97:df:83:8f:92:2e:
78:3e:78:4e:7a:94:85:00:af:24:aa:08:c9:58:da:6c:79:88:
f3:87:f5:44:9b:b3:19:9e:07:8b:1f:c2:78:d9:c4:32:a6:84:
ff:84:a9:af:0d:b3:49:d8:b3:e1:99:24:68:97:10:07:3e:39:
7c:ed:bf:c9:26:aa:6b:c8:16:9c:e6:8e:53:35:a8:d9:bc:f0:
4a:89:cf:45:87:7d:04:42:24:5c:8b:51:10:db:f9:24:00:cc:
c5:67:5a:0c:9c:a4:55:96:fd:3b:65:30:e8:3e:4f:05:9a:6c:
ab:f9:c7:ad:2a:3e:f2:5b:b5:65:f3:16:77:51:75:5b:01:28:
99:a7:8c:45:9b:3e:85:ec:7f:e7:f8:3b:70:3b:a0:76:20:77:
54:50:cc:da:60:b0:fb:b3:22:60:5b:12:34:9d:17:9c:aa:76:
70:fb:64:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 15 09:26:38 2026 by rpki-client