Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
File: q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft (raw, json)
Hash identifier: c/CVH+POTXIm445aBKailu17bbDM+HrMWUuIIEWHtyU=
Subject key identifier: B4:D8:27:51:34:35:71:CE:4E:37:3A:36:DD:50:6D:50:2A:5B:08:5C
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 019D2F2B9F9D2A8310402F41987E686F2333
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
Manifest number: 18CF
Signing time: Fri 27 Mar 2026 12:01:21 +0000
Manifest this update: Fri 27 Mar 2026 12:01:21 +0000
Manifest next update: Sat 28 Mar 2026 12:01:21 +0000
Files and hashes: 1: 7QXSQMVR5e3PA33Tbe1jUFBiBtU.roa (hash: Fu/x5ydAHbzxjRuQ9kPsYtD1frLQkvc1el/MBrSoppE=)
2: D_nN_vPhKORNTjWjIas_aeL_fw4.roa (hash: 2kCeAo6j8PDX4i6BTYf7QZybuVQ19wHuoI+CXgfbp/g=)
3: NIWJ9b544URGWTLtmkZjvf2kxIA.roa (hash: DSfziWB0uqzODbT1D3jvb0WNAfepSpfXbax16O29J9U=)
4: e7dlLb1mQuulDFLIJIubZnzn92Y.roa (hash: pjhxvegNUc0jD9hr5mE16h6OsbQxuTM2Z8MfFLGcvIk=)
5: q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl (hash: 5wlx/LGYHPqfuve9NSuSk2fDl3fhq8OSZH0YqaKhVbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 12:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2f:2b:9f:9d:2a:83:10:40:2f:41:98:7e:68:6f:23:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Mar 27 12:01:21 2026 GMT
Not After : Mar 28 12:01:21 2026 GMT
Subject: CN=b4d82751343571ce4e373a36dd506d502a5b085c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:36:1f:f2:0b:e7:ee:db:dd:6d:4c:f7:78:1d:
43:4a:78:a5:c7:8e:aa:3b:94:e2:be:e9:d4:9d:43:
46:a4:77:01:9b:dd:b7:f0:ff:70:73:1a:12:e7:a8:
2b:a2:8b:64:67:19:69:74:e9:27:33:c3:2a:fd:7f:
be:a4:2d:6d:f1:30:05:b2:9b:22:59:75:10:9e:4f:
db:fe:1f:df:60:ce:dd:ed:c6:12:32:0d:a8:a3:2d:
41:4c:b8:04:22:c4:06:ce:40:2e:7f:a3:f7:35:47:
8a:2b:81:c0:c3:7c:34:7e:a2:e5:e6:8c:c5:91:2d:
a8:bf:19:09:5d:9b:ad:7c:0f:5a:cd:c6:ee:f7:36:
5e:7a:b4:4e:d2:ea:7f:69:a2:7f:c5:6c:a0:0a:73:
17:ba:85:f3:06:a2:42:87:0e:db:9e:3b:b3:b0:f7:
c7:0f:20:48:c4:b5:67:ca:4a:6e:f9:17:10:af:2e:
47:22:7a:50:ef:c7:68:8d:07:f4:31:7b:70:78:a0:
58:2c:0e:85:3f:c5:50:23:50:ef:28:bf:2a:00:ef:
0b:b5:2f:ab:fd:6f:4d:a1:41:ed:46:c4:1f:9d:48:
e7:5f:e1:65:f3:c2:ed:b3:44:22:5c:45:af:37:5c:
ab:10:24:08:2a:77:36:5f:12:6d:40:1b:e1:82:04:
25:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D8:27:51:34:35:71:CE:4E:37:3A:36:DD:50:6D:50:2A:5B:08:5C
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:dd:b1:6c:a0:c6:a5:0b:be:e8:d7:fc:67:10:1d:6f:71:0c:
05:6c:f5:ca:ad:66:eb:4f:94:c8:90:78:99:50:39:39:8b:89:
f3:b7:c3:69:1d:9f:c7:a5:a6:20:50:ed:d0:1a:a7:6d:5d:b5:
dd:1e:07:77:f4:28:0e:17:d3:50:a2:86:8a:71:b5:52:e5:f0:
55:c8:dd:17:26:d2:1e:d1:73:a5:98:b1:4e:15:b7:4e:8e:75:
a8:ea:ba:7a:10:f5:21:c1:43:f5:41:b2:62:86:be:a1:3a:95:
b6:6d:3f:72:dc:47:ae:64:15:e4:fb:1c:7a:b1:92:b7:ce:a6:
ec:25:c2:26:6f:13:de:11:dc:32:46:9f:9f:c4:47:20:4c:75:
d6:95:91:a0:69:84:93:8b:58:2a:aa:9b:12:1d:7a:5b:76:61:
3e:ff:dd:52:6e:9c:bd:a4:79:e6:1a:66:51:dc:aa:09:cd:d5:
70:8b:c0:0e:88:4b:6c:9f:24:56:38:ef:4d:58:09:29:57:01:
4b:e8:64:53:8c:03:fb:62:5a:f9:06:2c:cf:b3:eb:60:c8:f4:
08:f2:8d:86:c8:e5:e5:9f:f4:98:0c:5a:85:4c:1a:b3:0c:e6:
80:92:15:1f:9b:e3:39:31:57:9e:16:e3:51:2e:f3:a4:7c:4c:
95:92:61:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 22:25:48 2026 by rpki-client