Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
File: qERYOVOgK8amaZ3pJ89FcAfwVSg.mft (raw, json)
Hash identifier: I3+bq41NKHvxvDog9oFssWkncbHJfUcZJgCOfUmkajE=
Subject key identifier: A5:5F:23:FA:AE:4D:0B:B3:F0:5B:3B:F0:2E:4F:B5:2D:C5:9C:FA:98
Authority key identifier: A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
Certificate issuer: /CN=a844583953a02bc6a6699de927cf457007f05528
Certificate serial: 019EB8458F9894D060BAC3B01EC3D10BCF3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
Manifest number: 01ED
Signing time: Thu 11 Jun 2026 20:00:26 +0000
Manifest this update: Thu 11 Jun 2026 20:00:26 +0000
Manifest next update: Fri 12 Jun 2026 20:00:26 +0000
Files and hashes: 1: bzuHav72txau2Blj1JcbQR-3zHA.roa (hash: TCvNISq9G9+8+m7g0vleezt4nSYPh9D8kXCKj2MC7tQ=)
2: qERYOVOgK8amaZ3pJ89FcAfwVSg.crl (hash: DGrp18s8egPUfjsxR+dBVOr+5sL/lNV6GIl5FOC+FHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:45:8f:98:94:d0:60:ba:c3:b0:1e:c3:d1:0b:cf:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a844583953a02bc6a6699de927cf457007f05528
Validity
Not Before: Jun 11 20:00:26 2026 GMT
Not After : Jun 12 20:00:26 2026 GMT
Subject: CN=a55f23faae4d0bb3f05b3bf02e4fb52dc59cfa98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1a:68:db:0a:26:f5:ff:3a:fe:11:83:3e:6e:
e7:51:13:f1:52:5b:df:65:14:14:e6:e5:e0:28:da:
b6:ac:43:10:99:c0:05:ef:79:a1:4c:c3:73:cb:ba:
08:b1:33:ce:50:64:aa:f3:fc:ab:26:11:f9:27:38:
54:96:a9:21:c3:96:30:b0:ce:7c:e5:72:ab:eb:1d:
0f:72:0a:45:86:5b:ab:17:13:14:18:41:3e:33:e4:
21:28:30:72:e0:f2:f2:e2:22:c4:71:75:7a:60:07:
1b:37:b7:9f:57:d4:08:fa:f7:11:12:9e:f7:6b:a0:
92:7c:00:05:9f:ce:02:37:24:7e:f1:52:47:ff:f3:
bb:81:50:e8:f0:b3:d3:6f:66:16:ed:37:e3:f5:7f:
f6:73:70:11:e7:42:7b:0b:45:2c:cf:b1:57:4f:a6:
39:19:24:70:d2:5a:f8:de:98:5a:aa:3d:78:3d:d7:
f1:d2:14:64:8f:fa:a6:c6:cb:ab:07:32:45:72:17:
ab:4a:d7:70:83:d7:a6:a6:f0:d3:94:f4:fd:24:c9:
1a:ac:1f:f6:36:d1:29:10:73:78:17:d2:a2:e9:71:
18:5f:51:ba:c9:0f:2a:b4:07:af:b8:0c:af:5d:c0:
81:2f:76:ce:5a:61:70:f4:b0:ec:42:b7:80:37:f0:
ce:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5F:23:FA:AE:4D:0B:B3:F0:5B:3B:F0:2E:4F:B5:2D:C5:9C:FA:98
X509v3 Authority Key Identifier:
keyid:A8:44:58:39:53:A0:2B:C6:A6:69:9D:E9:27:CF:45:70:07:F0:55:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qERYOVOgK8amaZ3pJ89FcAfwVSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/3031cc-a705-42c8-8003-113810a9fcae/1/qERYOVOgK8amaZ3pJ89FcAfwVSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:c0:5b:35:8a:24:28:ee:03:1d:f3:9f:a7:83:a9:73:aa:5c:
fd:ad:3b:30:8a:2d:a3:ad:28:f2:ac:68:3b:ad:3d:13:0a:68:
29:3a:fe:95:a9:86:86:ec:e4:f1:35:d4:a8:5e:9a:ef:0b:28:
95:af:67:b4:96:97:db:a0:f5:79:ee:1a:76:87:f4:06:8c:fa:
2f:f4:79:67:80:ac:3a:13:a7:49:11:08:b4:e0:8f:1d:9a:59:
79:95:ae:92:de:8e:6d:0b:a1:05:5a:90:7b:14:b8:00:cd:72:
45:e7:83:7f:bf:13:36:5b:8b:04:53:86:10:33:65:f4:de:91:
eb:ab:b4:58:b0:3b:72:c9:24:59:53:18:f0:bf:3a:66:7e:4f:
10:1f:6d:b0:43:bc:fa:81:21:06:70:f2:29:d7:2a:77:f0:94:
cb:2b:d9:9f:24:5b:70:e1:76:e6:85:09:03:b8:7e:a2:21:0f:
54:9f:f0:fd:0b:40:c3:2d:a3:82:6d:fc:8d:c0:50:8e:b9:a9:
f6:a3:03:14:ff:4d:59:64:87:63:51:ae:91:34:35:48:fd:09:
83:03:de:87:00:6e:0c:16:a1:40:5f:d4:bb:3f:4c:2b:d9:1e:
72:c6:4f:f4:91:dd:48:ac:89:56:63:b9:22:5d:fd:c4:ad:6b:
a3:20:c5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 21:58:09 2026 by rpki-client