Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
File: q0U2TkncOhW-_yacOjKzwFQci2Y.mft (raw, json)
Hash identifier: Lzx9ZKbc2XgDVj6Ggdj+7CONaXR+rqnfwNPtRw/d18k=
Subject key identifier: 5D:41:9E:08:F6:98:B8:86:E6:80:5B:42:8F:30:D6:CB:A3:C4:FC:87
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 019F0D75C4B074F1D1A106CADC84782AC2A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
Manifest number: 1984
Signing time: Sun 28 Jun 2026 09:00:49 +0000
Manifest this update: Sun 28 Jun 2026 09:00:49 +0000
Manifest next update: Mon 29 Jun 2026 09:00:49 +0000
Files and hashes: 1: q0U2TkncOhW-_yacOjKzwFQci2Y.crl (hash: xnQXDd5lj+0DPD3ddFCP30zTR454KRQWE2PP485VdFg=)
2: y-ScFLanDsjVsM3wGQyWrMPavCs.roa (hash: EfxOZrUcMelgWorEhLZGI65x8ngLIwOn6wnoqi8/fyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Jun 2026 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0d:75:c4:b0:74:f1:d1:a1:06:ca:dc:84:78:2a:c2:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Jun 28 09:00:49 2026 GMT
Not After : Jun 29 09:00:49 2026 GMT
Subject: CN=5d419e08f698b886e6805b428f30d6cba3c4fc87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:97:bf:cd:c3:0d:3a:d3:ee:d3:bc:6d:b4:4d:
7e:41:f7:5b:1a:f5:24:24:7c:13:66:05:22:21:23:
12:85:94:24:0a:a4:30:67:52:9f:d1:1c:04:ab:38:
29:3d:e2:a7:6e:8b:25:30:05:e6:f3:9e:fe:a0:3b:
de:46:c5:ce:f7:37:94:7a:15:b0:eb:14:a7:ec:02:
b4:c3:79:f0:24:26:99:01:39:11:71:40:a1:d9:e9:
55:d9:e7:15:2b:1f:2c:31:13:ed:75:03:4f:75:b3:
15:da:4a:b2:d6:4f:c1:09:d6:17:b8:8e:f9:c2:50:
8d:84:16:22:95:be:c4:d6:96:f2:f6:51:6a:e3:d4:
73:88:8c:fb:8d:91:77:f5:6e:55:6c:28:fe:bb:b9:
a0:b7:b2:9e:e4:30:bd:2e:4e:68:e9:dd:6a:a0:99:
38:46:ef:b7:df:2a:98:4c:52:c5:43:70:7f:96:36:
de:03:6c:b4:a6:28:3b:d7:68:d3:6a:e3:05:74:ae:
38:99:d0:31:f7:58:54:d2:4e:ab:c1:aa:26:55:30:
24:fa:e8:b2:35:32:bc:64:c2:b8:22:aa:e6:16:cf:
24:0a:3d:79:b4:2c:d5:f9:8f:62:aa:c7:20:e3:ee:
8b:d1:38:9d:3c:24:55:66:67:83:57:fd:58:05:c7:
53:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:41:9E:08:F6:98:B8:86:E6:80:5B:42:8F:30:D6:CB:A3:C4:FC:87
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:b7:05:65:c6:ba:4b:58:e7:30:16:de:67:51:e4:98:6e:91:
18:f0:fc:e0:55:bf:96:30:9d:c2:a5:e9:f3:03:28:61:49:7d:
23:b1:31:01:3d:77:98:a2:5c:00:95:b6:54:ef:bf:9a:48:18:
45:36:76:28:be:28:f6:77:ae:69:56:a9:36:b1:4d:38:c2:43:
2b:51:6b:72:54:67:34:97:77:b3:8d:04:6b:d0:be:3f:cd:85:
31:25:9e:13:a0:86:15:db:eb:ed:df:00:15:da:7f:e1:82:c0:
0c:e9:bc:c0:04:c3:0a:23:d5:79:99:ad:1b:86:a4:43:8c:aa:
08:7f:46:f0:f5:b8:9b:b8:e5:6f:d3:da:ec:5a:be:1c:7a:5b:
a5:b8:ac:a3:ad:96:c6:a2:7f:27:e3:4e:54:55:f1:f6:3a:ae:
99:7d:b8:f9:c7:9e:9d:81:f9:c8:45:b1:2c:5c:2d:a1:24:09:
1f:01:e4:8d:57:67:03:10:eb:e9:15:c5:8b:3e:31:59:20:16:
3f:81:2c:1e:60:a5:88:75:08:2b:54:0a:2b:ee:26:5b:a4:7d:
d6:2e:53:56:19:1b:09:94:85:65:af:6c:09:29:39:e6:4e:74:
1b:c8:cf:71:90:b8:24:1a:8a:ce:b7:b9:01:9e:d7:5f:78:0b:
de:d8:a5:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8NdcSwdPHRoQbK3IR4KsKgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNDUzNjRlNDlkYzNhMTViZWZmMjY5YzNhMzJiM2MwNTQx
YzhiNjYwHhcNMjYwNjI4MDkwMDQ5WhcNMjYwNjI5MDkwMDQ5WjAzMTEwLwYDVQQD
Eyg1ZDQxOWUwOGY2OThiODg2ZTY4MDViNDI4ZjMwZDZjYmEzYzRmYzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJe/zcMNOtPu07xttE1+QfdbGvUk
JHwTZgUiISMShZQkCqQwZ1Kf0RwEqzgpPeKnboslMAXm857+oDveRsXO9zeUehWw
6xSn7AK0w3nwJCaZATkRcUCh2elV2ecVKx8sMRPtdQNPdbMV2kqy1k/BCdYXuI75
wlCNhBYilb7E1pby9lFq49RziIz7jZF39W5VbCj+u7mgt7Ke5DC9Lk5o6d1qoJk4
Ru+33yqYTFLFQ3B/ljbeA2y0pig712jTauMFdK44mdAx91hU0k6rwaomVTAk+uiy
NTK8ZMK4IqrmFs8kCj15tCzV+Y9iqscg4+6L0TidPCRVZmeDV/1YBcdTVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF1Bngj2mLiG5oBbQo8w1sujxPyHMB8GA1UdIwQY
MBaAFKtFNk5J3DoVvv8mnDoys8BUHItmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTct
ZjhiZDI1MDQ1NGViLzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTctZjhiZDI1MDQ1NGVi
LzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU7cFZca6
S1jnMBbeZ1HkmG6RGPD84FW/ljCdwqXp8wMoYUl9I7ExAT13mKJcAJW2VO+/mkgY
RTZ2KL4o9neuaVapNrFNOMJDK1FrclRnNJd3s40Ea9C+P82FMSWeE6CGFdvr7d8A
Fdp/4YLADOm8wATDCiPVeZmtG4akQ4yqCH9G8PW4m7jlb9Pa7Fq+HHpbpbiso62W
xqJ/J+NOVFXx9jqumX24+ceenYH5yEWxLFwtoSQJHwHkjVdnAxDr6RXFiz4xWSAW
P4EsHmCliHUIK1QKK+4mW6R91i5TVhkbCZSFZa9sCSk55k50G8jPcZC4JBqKzre5
AZ7XX3gL3tilpg==
-----END CERTIFICATE-----
Generated at Sun Jun 28 19:59:53 2026 by rpki-client