Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
File: Q_2TYug7hS8_0zEbCQlvYommoPg.mft (raw, json)
Hash identifier: Z046AVD2m11mnW4ogrj7MSQGG6/uwzJWYLApNnrP3+M=
Subject key identifier: FC:C1:9D:A9:2A:B6:87:7A:5B:B1:1F:DF:A2:39:3B:32:7E:3A:16:40
Authority key identifier: 43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8
Certificate issuer: /CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8
Certificate serial: 019D3909A29BD96DD2EDE3038C0E8970604C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
Manifest number: 1164
Signing time: Sun 29 Mar 2026 10:00:25 +0000
Manifest this update: Sun 29 Mar 2026 10:00:25 +0000
Manifest next update: Mon 30 Mar 2026 10:00:25 +0000
Files and hashes: 1: DDoVbi1hwK810Q3__yAihbTnUzQ.roa (hash: hkNUL3Jk8I6ohEW5lxLRCD9KCBglyppacl/pVvgBeSk=)
2: Q_2TYug7hS8_0zEbCQlvYommoPg.crl (hash: mdqfRh2Ba9HrIDmeTAJsKxc43jy8TyWaY7mrmEOIdAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:a2:9b:d9:6d:d2:ed:e3:03:8c:0e:89:70:60:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43fd9362e83b852f3fd3311b09096f6289a6a0f8
Validity
Not Before: Mar 29 10:00:25 2026 GMT
Not After : Mar 30 10:00:25 2026 GMT
Subject: CN=fcc19da92ab6877a5bb11fdfa2393b327e3a1640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e8:e0:6e:f6:6f:52:bf:15:ba:61:69:e6:b3:
c4:cd:d2:be:c9:36:e6:11:f1:4e:7e:1e:cb:6a:7e:
dd:aa:84:22:88:31:3d:49:1f:83:60:c0:83:f6:54:
c8:4e:a8:a3:b8:e7:1b:53:e7:2b:c3:f5:e7:e6:89:
23:03:8a:10:07:ab:0d:28:3b:80:d7:ba:61:13:8a:
fb:61:33:40:aa:17:e2:fb:5f:f0:65:1f:33:48:0d:
d5:46:3e:38:96:c5:8f:a3:58:82:e2:59:2b:a9:bd:
1e:b9:70:ae:17:9f:da:52:8b:5a:b3:c5:5a:67:1f:
24:14:83:c0:fd:e4:3d:e3:6d:fd:8c:03:94:5d:8e:
2f:7d:5e:36:ce:35:e4:2a:90:91:fa:0c:92:b7:86:
17:9f:9c:bc:d9:e0:a3:ac:89:52:f7:17:a4:54:5a:
e6:2e:ba:26:8e:ca:f8:84:54:6a:de:67:f6:0a:9e:
58:27:7a:6e:6e:8d:00:56:f5:a7:7c:37:7e:44:b3:
0c:c2:40:92:76:59:f0:ef:4f:75:06:63:59:8a:ff:
b9:30:2a:80:c0:28:3c:45:12:9c:11:c9:cc:9f:56:
e3:44:15:12:91:7a:e5:80:37:f4:ed:1c:57:1a:4e:
a8:10:8b:e7:35:b1:8b:78:38:6c:06:81:c8:32:2c:
05:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C1:9D:A9:2A:B6:87:7A:5B:B1:1F:DF:A2:39:3B:32:7E:3A:16:40
X509v3 Authority Key Identifier:
keyid:43:FD:93:62:E8:3B:85:2F:3F:D3:31:1B:09:09:6F:62:89:A6:A0:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_2TYug7hS8_0zEbCQlvYommoPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1d3c15-3416-44ad-9a89-6547bb1b80c2/1/Q_2TYug7hS8_0zEbCQlvYommoPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c2:e4:f9:db:13:f8:07:a2:01:53:10:cb:c4:d3:43:d8:54:
5b:6b:47:96:0b:ae:e7:4a:a0:ff:3e:1d:8a:9b:ff:ed:76:24:
5e:4f:e2:6c:5f:c5:42:b1:83:35:41:62:2e:f4:61:0d:22:b4:
03:53:70:a1:4a:b6:87:ae:75:3c:ed:0c:21:e3:24:d3:c2:a7:
ec:9d:92:52:98:40:22:93:00:b7:9c:f2:50:cb:18:df:34:cb:
88:bc:19:c6:e8:2a:70:ef:76:c7:81:8f:05:93:59:8a:45:24:
95:73:2a:29:8c:a0:e4:5e:64:97:ac:c9:1b:a0:9f:b2:59:19:
50:14:ce:54:83:4d:40:21:37:2a:8b:d6:a6:52:64:4d:a5:2c:
c7:c6:af:cb:d0:d6:72:be:ce:87:65:3a:31:57:ba:14:b1:c0:
cb:cf:c8:92:93:e9:28:4a:78:de:8a:34:08:ea:12:94:26:d2:
61:d7:04:3e:c4:f6:84:23:e0:59:16:80:08:1c:82:55:98:e1:
50:19:b7:7a:19:87:9b:fb:19:c7:99:23:61:03:d8:ac:b0:0f:
e3:92:3e:8b:a5:eb:6f:a6:d3:0f:79:3a:15:b1:3b:4f:b4:76:
b6:27:c9:96:61:f6:b1:9a:35:3b:9e:d6:1c:46:d8:ec:55:b0:
96:ca:e4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:46:30 2026 by rpki-client