Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
File: Q9JznRqU2rlXbiF80N-FdyBLIwA.mft (raw, json)
Hash identifier: omQAa+PX5kMs3JRYtAgZ2XGm1kXwATz8I6k0IOI4O8c=
Subject key identifier: E7:04:EB:0D:BB:87:72:E8:B3:61:EB:20:63:74:E0:6C:67:11:31:33
Authority key identifier: 43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
Certificate issuer: /CN=43d2739d1a94dab9576e217cd0df8577204b2300
Certificate serial: 019D386583511CA488B6A05B0411A83FD686
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
Manifest number: 05E6
Signing time: Sun 29 Mar 2026 07:01:09 +0000
Manifest this update: Sun 29 Mar 2026 07:01:09 +0000
Manifest next update: Mon 30 Mar 2026 07:01:09 +0000
Files and hashes: 1: Q9JznRqU2rlXbiF80N-FdyBLIwA.crl (hash: RqNIdg80rglBtB0+n+jaOWqkJFSnAneZGEnTSTN4RY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:83:51:1c:a4:88:b6:a0:5b:04:11:a8:3f:d6:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d2739d1a94dab9576e217cd0df8577204b2300
Validity
Not Before: Mar 29 07:01:09 2026 GMT
Not After : Mar 30 07:01:09 2026 GMT
Subject: CN=e704eb0dbb8772e8b361eb206374e06c67113133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:85:85:78:fb:86:fc:00:6a:3e:b2:1b:09:c3:
16:cc:4f:3e:5d:9d:d2:c8:a1:b4:8a:a4:06:3f:57:
55:a1:eb:3f:ec:d3:32:79:8d:25:1e:10:3e:e1:04:
72:51:a7:f4:8b:aa:b9:b5:bb:13:e6:04:fa:c9:c5:
49:c8:8a:45:99:1a:99:18:c8:64:9b:79:a8:9e:77:
27:eb:dd:80:eb:fb:75:2d:a4:19:31:0c:14:54:49:
d4:2e:b0:20:19:bf:49:57:61:c0:9a:fc:18:7e:cc:
c0:23:2e:c4:99:46:fe:37:0e:02:63:e8:cb:dd:39:
e5:57:e6:9a:e9:9e:7d:e8:78:72:8e:a6:a7:06:ee:
d6:7a:86:3c:99:e3:f3:fa:67:43:5e:47:89:08:2b:
dc:59:79:f0:06:e2:2a:47:63:79:5f:fd:78:29:35:
ee:cb:47:37:3b:e3:0d:fc:fd:6f:12:ea:3f:3a:05:
87:32:9b:81:c1:4a:0f:20:cb:c7:3d:68:18:02:9a:
a8:1f:5b:0e:fc:8e:50:03:ad:b3:fd:9c:3e:1a:10:
80:53:b1:bf:75:1d:95:77:18:f7:95:fd:f9:38:8f:
21:5f:d8:8b:99:85:b5:10:56:f6:7e:24:00:81:85:
51:46:06:96:a4:55:3d:a5:e6:aa:74:23:8b:e5:80:
4f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:04:EB:0D:BB:87:72:E8:B3:61:EB:20:63:74:E0:6C:67:11:31:33
X509v3 Authority Key Identifier:
keyid:43:D2:73:9D:1A:94:DA:B9:57:6E:21:7C:D0:DF:85:77:20:4B:23:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9JznRqU2rlXbiF80N-FdyBLIwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7fe5c5-9ba2-4e66-ba2e-a44326a39f97/1/Q9JznRqU2rlXbiF80N-FdyBLIwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:f5:e8:67:7c:5a:5d:3c:46:3e:98:46:59:12:5b:85:62:37:
e3:35:26:e9:95:f3:0e:a7:7d:23:15:35:ae:28:4c:1c:fd:f1:
e5:dc:e6:39:28:03:8c:9d:4d:d0:d2:66:bd:f4:ca:93:90:68:
0b:db:8b:b8:c9:ef:3f:92:7f:dc:0d:13:d6:20:dd:d3:07:a0:
14:3d:1b:5e:a2:2e:d2:53:d7:35:14:79:81:05:06:9d:c7:73:
ca:4d:79:fb:6b:45:c4:e6:ed:ef:1b:8c:d3:4a:41:3f:52:f3:
fa:c8:80:67:10:1a:ad:b8:8e:6c:7f:16:a8:5e:18:dc:98:7c:
e8:51:66:7d:b5:3d:42:8f:37:a0:b4:66:99:33:16:7d:e6:55:
31:cd:d7:54:c7:7a:37:01:ac:f2:82:4b:33:0e:97:7b:7c:38:
18:ca:a2:ec:36:cd:a8:56:0c:8c:3d:e0:a6:e4:ea:2a:d5:69:
5d:52:61:13:a8:be:56:28:fa:e3:db:22:5e:eb:a0:3b:8a:60:
62:33:bd:e5:d8:70:36:a1:03:1c:c3:4c:55:b1:b6:ed:13:f8:
3f:c3:64:bb:2c:94:66:d9:af:8c:22:fa:1e:29:44:01:95:bc:
d2:3d:68:02:43:cd:01:a3:bc:18:c0:43:69:89:76:ab:60:0d:
89:7d:c5:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:44 2026 by rpki-client