Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
File: 0QZfT7a2eefxy92ANflnRnAQ6pk.mft (raw, json)
Hash identifier: eaSWQ6bNrBS1VkFcfrNAkzBaaZT6dccnIMtd+QKizeQ=
Subject key identifier: 04:1E:85:43:32:52:C5:0E:10:A7:06:E3:F2:74:A2:05:F6:4D:8F:7B
Authority key identifier: D1:06:5F:4F:B6:B6:79:E7:F1:CB:DD:80:35:F9:67:46:70:10:EA:99
Certificate issuer: /CN=d1065f4fb6b679e7f1cbdd8035f967467010ea99
Certificate serial: 019D386684D0D6F75BE662F6712056FFCAEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
Manifest number: 0F09
Signing time: Sun 29 Mar 2026 07:02:15 +0000
Manifest this update: Sun 29 Mar 2026 07:02:15 +0000
Manifest next update: Mon 30 Mar 2026 07:02:15 +0000
Files and hashes: 1: 0QZfT7a2eefxy92ANflnRnAQ6pk.crl (hash: nwGzC5LAXdmhJvDh4xExxVQiuhLB0Detbfx7EwutTig=)
2: 1-i4S5deTfU5Sh15fYqf5Jhusm2U.roa (hash: I950vcuKR1BNQlR6pb4t14q2i1wr101AxNTWsanHl/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:84:d0:d6:f7:5b:e6:62:f6:71:20:56:ff:ca:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1065f4fb6b679e7f1cbdd8035f967467010ea99
Validity
Not Before: Mar 29 07:02:15 2026 GMT
Not After : Mar 30 07:02:15 2026 GMT
Subject: CN=041e85433252c50e10a706e3f274a205f64d8f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:0e:14:6f:48:32:c3:7e:dd:d1:98:29:49:4e:
00:f2:c1:dc:3c:30:d4:1e:b2:fc:2c:90:75:67:2e:
ad:2e:d9:a1:98:ba:c0:2e:5e:5d:d8:b1:ed:fb:bd:
2c:f1:cf:26:6c:6c:58:c8:4e:a8:39:8a:68:c0:07:
e9:07:2f:d9:56:e6:76:80:00:cd:9c:2c:3c:cd:94:
f8:16:9c:2e:1e:ee:38:4c:94:08:4b:34:18:eb:85:
aa:91:17:7f:5c:ed:f8:13:d5:ee:57:33:b0:fb:78:
c7:a2:64:59:e5:b2:ba:c8:e5:23:f2:cf:0c:1d:81:
a2:3c:16:16:da:ba:9e:bc:35:5b:32:ec:ca:f1:20:
33:c6:b7:e7:08:20:d7:5e:df:d8:d1:a8:a4:80:43:
68:21:e5:7d:92:17:5c:f1:c8:ca:f2:dc:e2:8a:c8:
57:39:f3:98:56:d4:c7:02:3c:8b:b3:f4:da:57:a0:
cc:63:90:2d:6b:83:39:b1:03:49:45:2b:04:87:69:
32:fc:b6:14:3d:99:9a:ef:af:66:4f:30:fb:54:26:
91:9c:93:f9:8e:61:76:ff:2a:6c:38:f7:fb:e1:a0:
b8:7f:96:9d:0d:fa:dd:2f:0f:ac:73:03:a4:aa:27:
29:24:cb:ab:75:36:19:68:4d:07:ea:46:36:7c:46:
69:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:1E:85:43:32:52:C5:0E:10:A7:06:E3:F2:74:A2:05:F6:4D:8F:7B
X509v3 Authority Key Identifier:
keyid:D1:06:5F:4F:B6:B6:79:E7:F1:CB:DD:80:35:F9:67:46:70:10:EA:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:49:9c:40:3a:62:08:56:ef:ac:2d:72:04:10:a6:6b:41:d8:
6d:7d:aa:ca:50:db:3b:6c:be:40:cf:68:ef:c8:0e:e0:ef:26:
30:af:3f:5c:8d:51:bb:70:b0:f7:d2:9e:4e:9f:0d:90:bc:e2:
52:3e:ea:72:16:b5:c6:ba:13:56:56:ff:73:ad:57:b9:43:02:
55:76:e4:36:0c:58:02:d3:75:9d:c1:0e:d1:cf:7d:22:d5:5e:
5d:69:82:a2:ec:d4:08:0e:63:04:92:17:54:39:08:39:5d:33:
22:f4:63:7c:44:ea:36:0b:b4:b4:1b:76:f7:43:76:ef:d3:8c:
c5:a1:b4:b0:d1:4a:85:72:78:9f:17:f2:5a:e2:23:cf:f5:ea:
21:74:5a:ef:0c:5c:ed:ea:54:85:5f:06:34:54:3f:46:96:17:
ab:80:82:6c:16:3e:d5:b5:47:02:97:a3:38:0b:20:1d:fe:b9:
33:7b:07:b9:4d:15:f9:40:21:ab:03:b8:2a:6e:69:9f:f8:c8:
e0:78:50:1e:77:d1:dc:0b:c3:5c:49:5d:30:71:b9:61:a6:58:
6e:0b:96:f0:b7:a1:1c:2b:ad:65:46:39:62:4f:aa:69:db:0b:
19:6e:e7:10:60:d7:be:6a:02:75:94:33:33:db:4d:3b:b0:7f:
d0:b6:e2:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:34 2026 by rpki-client