Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File: 02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier: OLMLKxOHeEsVeDxDKoL1PrQKy3Kb3xNq+X5u/7/gJdo=
Subject key identifier: A2:11:71:75:C6:87:0F:F1:5B:6C:DD:54:4D:43:E3:AC:74:71:92:11
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer: /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial: 019F1867862ACA2522F807B8C25AA2B3DCCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number: 1057
Signing time: Tue 30 Jun 2026 12:01:05 +0000
Manifest this update: Tue 30 Jun 2026 12:01:05 +0000
Manifest next update: Wed 01 Jul 2026 12:01:05 +0000
Files and hashes: 1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: OoEKLw7wcev/i4khh+NRT8rhDOfJqPBV2v6WzAiEK44=)
2: byVdI5-pp6NIJu3UrT-3MuGaeXY.roa (hash: l8DHq/5oUA3iWZHNp7UWg+LEjnOk5a1rdRkMplixMAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:86:2a:ca:25:22:f8:07:b8:c2:5a:a2:b3:dc:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Validity
Not Before: Jun 30 12:01:05 2026 GMT
Not After : Jul 1 12:01:05 2026 GMT
Subject: CN=a2117175c6870ff15b6cdd544d43e3ac74719211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:77:7b:ff:a8:d0:b8:8b:86:a6:48:50:2f:19:
1f:7e:9c:c6:fe:df:53:4d:8d:89:a7:2a:70:0a:af:
65:11:05:14:7e:7f:7e:5d:6a:5e:71:cf:44:e2:d1:
f4:c6:83:de:40:e9:12:73:dc:48:5e:d9:d3:cf:fb:
c3:2a:4c:2f:3d:45:da:66:43:d4:a8:ed:10:55:11:
b1:1b:8e:1d:e6:0e:4d:b8:52:b2:cf:a1:5d:8e:75:
f5:7f:04:f0:cb:ba:b3:f2:03:1c:17:de:da:19:5d:
34:9d:65:41:a7:94:bf:d7:a4:cd:d3:10:0f:d0:e9:
9c:07:82:dc:37:15:76:e7:8c:48:fc:c5:fd:f6:56:
6b:0c:4a:fb:b6:a6:30:3b:f6:5c:ee:bf:f3:e8:33:
ab:ba:d6:5d:35:f8:3e:d6:59:80:4e:85:a4:52:4f:
2f:37:67:3e:df:75:a6:63:27:40:42:f0:ed:64:44:
4d:0a:28:8d:cc:9d:c4:14:00:c1:da:6a:64:d7:6b:
f8:45:b8:08:16:22:79:39:b1:8f:94:22:9d:f1:db:
d4:99:5d:2c:fe:a2:35:ba:2b:be:b7:f2:e8:5f:c6:
0b:52:56:b5:4d:df:65:b5:fd:c4:d7:d2:c4:a8:f6:
23:03:e1:2e:c1:f5:67:95:5f:a5:5c:54:7d:60:6a:
af:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:11:71:75:C6:87:0F:F1:5B:6C:DD:54:4D:43:E3:AC:74:71:92:11
X509v3 Authority Key Identifier:
keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:0c:94:1a:9b:61:bd:7f:a7:6d:51:51:78:c7:5e:97:8d:7a:
4b:3b:d2:f2:4a:37:63:8a:c9:3d:d2:97:66:00:28:a7:7b:62:
f5:c1:f2:5b:04:fb:93:1c:e9:7b:72:49:b7:da:33:b0:4d:7b:
01:4c:1e:26:59:b9:02:d7:03:48:31:da:96:41:b1:c7:ce:cd:
80:c6:e9:7a:38:a3:2f:fe:be:48:a1:67:f6:04:8c:f1:1e:5a:
d0:ca:f5:d5:db:e5:f3:c2:60:d7:e8:b0:d3:fa:71:09:16:64:
81:28:01:f9:a4:5b:64:96:ae:b3:29:e4:b1:d0:a9:c9:41:0d:
d8:eb:83:10:12:a0:32:60:55:a2:d2:d3:20:f1:80:bf:85:20:
c3:b5:36:2f:d8:5c:4e:41:06:76:b1:57:6b:fe:76:fe:2c:f6:
7f:cc:15:eb:79:28:f4:54:3c:b9:31:ac:cd:2b:1e:df:49:d1:
31:5d:0c:ad:0d:46:fb:68:de:83:9b:f2:2d:88:e8:8d:17:30:
bd:09:79:a9:f8:2f:2c:8f:37:f0:a7:d2:26:49:51:55:e8:f2:
5f:0d:1f:2c:d7:c5:85:60:03:4c:11:31:d8:f9:e2:0a:cf:e7:
83:84:0d:76:b9:3c:9c:19:c2:8d:88:64:fe:9c:15:a8:cb:b6:
a4:47:c8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:19:49 2026 by rpki-client