Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File: 02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier: NgYvaBDy5seTozwTUw57KrieetbFG2qJigwhgIfOZ+o=
Subject key identifier: B8:7C:D7:EF:ED:15:5C:09:CD:E4:A0:E4:1B:36:9C:6E:F0:FF:0A:A7
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer: /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial: 019E30A97A6713C35F0C4046F78D017198C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number: 0FDF
Signing time: Sat 16 May 2026 12:01:13 +0000
Manifest this update: Sat 16 May 2026 12:01:13 +0000
Manifest next update: Sun 17 May 2026 12:01:13 +0000
Files and hashes: 1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: 1uqCOeAZBjHpvgGerq6KFbWs9X+hRHpqYsqI+tPDtag=)
2: byVdI5-pp6NIJu3UrT-3MuGaeXY.roa (hash: l8DHq/5oUA3iWZHNp7UWg+LEjnOk5a1rdRkMplixMAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:7a:67:13:c3:5f:0c:40:46:f7:8d:01:71:98:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Validity
Not Before: May 16 12:01:13 2026 GMT
Not After : May 17 12:01:13 2026 GMT
Subject: CN=b87cd7efed155c09cde4a0e41b369c6ef0ff0aa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:07:7d:62:63:e1:3c:db:7d:46:e3:7a:e1:4d:
60:a1:9a:57:f2:53:7f:a9:a8:5c:7f:e5:c1:3a:3c:
66:ca:06:f1:a9:b6:23:2e:2a:ae:7f:92:ef:66:4d:
67:a8:9f:8c:c7:f7:6c:65:91:c1:df:6f:a4:e9:8d:
b6:0e:7d:86:91:e7:35:03:b1:9a:09:7c:08:e7:4d:
f5:67:38:b3:d6:92:7c:1a:6e:23:fe:67:6d:e8:9b:
1d:a8:79:e9:e3:f0:89:fe:13:d6:93:3b:46:d7:d9:
70:44:1b:7f:69:74:64:8c:7b:53:af:cd:21:2f:b0:
1f:58:11:d5:da:31:c3:be:7e:f5:6c:61:6b:54:e6:
db:d1:1e:6f:ac:b9:61:83:ec:23:05:69:9f:42:62:
83:c3:49:10:61:6b:90:7b:2e:63:64:fd:6a:6f:3f:
7c:6e:fe:26:5c:7f:87:b8:3a:99:f7:35:34:24:db:
72:75:45:3d:ee:ba:a7:61:39:2c:c7:a3:5c:8c:2e:
80:54:62:6d:84:3f:be:9e:31:f2:6b:35:07:19:5c:
8f:34:4b:de:a1:09:c8:83:f9:83:4c:4d:99:ce:cb:
83:d9:22:11:d9:7f:4a:88:9f:c8:31:1f:1a:b8:82:
da:eb:bc:8c:d1:d8:59:18:a9:ee:c7:e2:49:aa:20:
cc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7C:D7:EF:ED:15:5C:09:CD:E4:A0:E4:1B:36:9C:6E:F0:FF:0A:A7
X509v3 Authority Key Identifier:
keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:1b:44:3f:ae:0b:c5:07:69:a4:c0:93:53:71:9a:6d:f8:46:
f9:1b:e1:28:61:98:0a:df:37:6a:53:50:7e:85:e5:3e:f9:b7:
30:3f:d6:49:f4:5b:dc:c0:3c:30:fc:12:c7:c8:91:41:87:cd:
4d:97:cf:09:35:13:94:91:d1:73:ea:e1:2d:ad:9d:29:05:5d:
56:83:bd:79:fb:e4:34:b9:aa:4d:61:35:e8:2a:60:b0:f7:a1:
b4:f0:aa:92:5e:d0:7d:3c:0e:94:6d:e7:39:e9:fe:8b:bf:4b:
95:98:2b:98:13:6a:dc:b6:72:f1:4b:a6:41:4b:31:1b:d2:c0:
90:ba:f6:31:6c:86:a9:37:84:60:cc:03:26:ec:1d:d6:5c:70:
a8:e1:a5:06:37:bd:ef:5f:97:45:0c:b6:6c:28:6a:8a:b7:9c:
75:dc:e3:ce:45:74:66:03:6e:39:4e:64:36:44:30:10:3c:91:
6b:d8:26:1b:70:e2:0c:92:64:fb:66:3a:54:16:b8:5f:47:cc:
3e:25:fe:d9:b0:3e:2f:ef:5c:0f:ea:8e:c5:f2:94:27:53:2b:
e7:ea:e6:fe:ba:45:d6:09:f0:e2:b1:b0:1c:cc:77:dc:46:e0:
b7:ab:61:0b:7c:ed:29:c2:9a:07:54:bb:f0:37:83:f2:96:ce:
48:b4:58:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wqXpnE8NfDEBG940BcZjGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNjQxZmE4ZWQxY2ZjM2RhYTIzYWFhZjhjM2E3NmZlODdl
ZDViYWIwHhcNMjYwNTE2MTIwMTEzWhcNMjYwNTE3MTIwMTEzWjAzMTEwLwYDVQQD
EyhiODdjZDdlZmVkMTU1YzA5Y2RlNGEwZTQxYjM2OWM2ZWYwZmYwYWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Ad9YmPhPNt9RuN64U1goZpX8lN/
qahcf+XBOjxmygbxqbYjLiquf5LvZk1nqJ+Mx/dsZZHB32+k6Y22Dn2Gkec1A7Ga
CXwI5031Zziz1pJ8Gm4j/mdt6JsdqHnp4/CJ/hPWkztG19lwRBt/aXRkjHtTr80h
L7AfWBHV2jHDvn71bGFrVObb0R5vrLlhg+wjBWmfQmKDw0kQYWuQey5jZP1qbz98
bv4mXH+HuDqZ9zU0JNtydUU97rqnYTksx6NcjC6AVGJthD++njHyazUHGVyPNEve
oQnIg/mDTE2ZzsuD2SIR2X9KiJ/IMR8auILa67yM0dhZGKnux+JJqiDM/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLh81+/tFVwJzeSg5Bs2nG7w/wqnMB8GA1UdIwQY
MBaAFNNkH6jtHPw9qiOqr4w6dv6H7VurMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDJRZnFPMGNfRDJxSTZxdmpEcDJfb2Z0VzZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81OWQxMDktOGIwNi00ZGRkLWJjMjAt
OTk0MTk5MmM5YzI0LzEvMDJRZnFPMGNfRDJxSTZxdmpEcDJfb2Z0VzZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81OWQxMDktOGIwNi00ZGRkLWJjMjAtOTk0MTk5MmM5YzI0
LzEvMDJRZnFPMGNfRDJxSTZxdmpEcDJfb2Z0VzZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbBtEP64L
xQdppMCTU3GabfhG+RvhKGGYCt83alNQfoXlPvm3MD/WSfRb3MA8MPwSx8iRQYfN
TZfPCTUTlJHRc+rhLa2dKQVdVoO9efvkNLmqTWE16CpgsPehtPCqkl7QfTwOlG3n
Oen+i79LlZgrmBNq3LZy8UumQUsxG9LAkLr2MWyGqTeEYMwDJuwd1lxwqOGlBje9
71+XRQy2bChqirecddzjzkV0ZgNuOU5kNkQwEDyRa9gmG3DiDJJk+2Y6VBa4X0fM
PiX+2bA+L+9cD+qOxfKUJ1Mr5+rm/rpF1gnw4rGwHMx33Ebgt6thC3ztKcKaB1S7
8DeD8pbOSLRYmA==
-----END CERTIFICATE-----
Generated at Sat May 16 15:40:04 2026 by rpki-client