Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File: 02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier: KkZ1IThgoEzOGukL33fweV3xETikIxwmdXwrWXgTN3Y=
Subject key identifier: AE:7B:49:DD:3A:29:1F:CF:4D:D7:45:E1:70:3D:C9:F8:06:6B:56:2D
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer: /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial: 019D3977A130DDE47816C92A146F268C974D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number: 0F5F
Signing time: Sun 29 Mar 2026 12:00:34 +0000
Manifest this update: Sun 29 Mar 2026 12:00:34 +0000
Manifest next update: Mon 30 Mar 2026 12:00:34 +0000
Files and hashes: 1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: c9p1XE/Y3eOwjKw3lUD80EivJzadbBx6wv8gyv7kMdw=)
2: byVdI5-pp6NIJu3UrT-3MuGaeXY.roa (hash: l8DHq/5oUA3iWZHNp7UWg+LEjnOk5a1rdRkMplixMAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:a1:30:dd:e4:78:16:c9:2a:14:6f:26:8c:97:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Validity
Not Before: Mar 29 12:00:34 2026 GMT
Not After : Mar 30 12:00:34 2026 GMT
Subject: CN=ae7b49dd3a291fcf4dd745e1703dc9f8066b562d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:80:92:0d:e6:72:2f:19:be:9a:8a:b9:46:a7:
42:89:04:83:27:bc:65:ad:73:ba:99:c9:2e:89:03:
4b:a6:33:22:19:81:73:12:c5:f8:3b:97:31:e7:2e:
56:2e:18:e6:63:93:65:ae:83:23:64:ab:d9:af:b9:
1e:05:13:3e:8d:02:60:07:dd:50:d1:a1:27:90:28:
cc:04:a4:0f:e8:16:b5:f5:9a:69:de:bb:da:f6:41:
a4:8e:39:59:9f:f9:db:3a:a1:d2:1c:d9:56:64:23:
7f:89:5d:e2:ab:53:f5:31:55:ee:f9:f2:0f:4d:98:
2a:98:fd:b9:e8:d9:09:ee:a6:09:6c:5b:6a:cd:19:
85:25:4c:6a:b4:23:67:b9:3a:36:1b:05:ae:0f:f8:
19:56:ef:98:ca:30:41:02:22:2b:8a:71:c3:a4:dd:
2f:fe:e0:31:2d:54:78:fb:6b:ae:36:6d:42:5d:91:
e1:47:ed:6c:e1:38:d2:36:b1:a7:f6:7d:d8:dc:3d:
7b:a1:36:32:3e:3b:8a:08:21:9b:e2:bc:5b:03:3d:
60:c6:5a:3b:5c:66:e0:ae:cd:d8:44:fd:9e:97:6b:
73:be:51:03:27:6e:cc:b6:0b:ac:03:e2:31:2f:0d:
c6:c3:e5:5c:b0:5d:0f:ab:28:0b:f7:1b:41:ea:ae:
f0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7B:49:DD:3A:29:1F:CF:4D:D7:45:E1:70:3D:C9:F8:06:6B:56:2D
X509v3 Authority Key Identifier:
keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:a4:c4:05:b4:a0:21:20:37:1f:b3:05:0b:3e:59:da:64:e9:
1f:4b:fc:71:bd:17:4c:70:27:41:f4:02:c3:86:5f:31:82:48:
8c:87:3d:65:f6:e2:fd:40:a5:2b:a3:12:29:d2:2f:51:51:cd:
af:52:f2:34:27:4d:27:0f:b2:9b:0c:db:88:98:5b:8d:a3:ad:
cd:f5:fc:20:cc:bc:c5:b0:4e:ea:86:47:36:73:4b:98:d9:2d:
b8:fa:ba:d5:50:9e:bc:80:a2:58:95:18:51:20:19:5c:27:a6:
eb:87:39:48:42:3b:05:fe:84:29:4d:2e:df:5a:e3:25:a5:40:
48:fe:4e:40:e6:02:98:52:41:a3:57:0e:75:00:70:fe:f8:97:
7f:29:50:7b:09:ba:b8:2e:30:23:80:aa:1e:b9:c1:4c:a2:28:
7a:d1:0d:e9:25:d9:d3:86:ac:6e:5d:37:72:27:92:f9:d5:30:
c4:5b:89:87:58:51:19:8e:95:7b:fd:54:ac:eb:6f:2f:da:de:
40:ae:99:3f:5b:a1:3a:e8:a7:42:27:59:da:86:d7:a3:14:78:
08:a0:dc:24:79:a4:03:93:e4:c7:cf:22:95:31:0b:5d:dd:0b:
0b:e9:dd:f6:55:24:a5:3d:23:53:9d:fe:8d:b5:03:08:f2:3a:
db:5b:b6:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d6Ew3eR4FskqFG8mjJdNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNjQxZmE4ZWQxY2ZjM2RhYTIzYWFhZjhjM2E3NmZlODdl
ZDViYWIwHhcNMjYwMzI5MTIwMDM0WhcNMjYwMzMwMTIwMDM0WjAzMTEwLwYDVQQD
EyhhZTdiNDlkZDNhMjkxZmNmNGRkNzQ1ZTE3MDNkYzlmODA2NmI1NjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYCSDeZyLxm+moq5RqdCiQSDJ7xl
rXO6mckuiQNLpjMiGYFzEsX4O5cx5y5WLhjmY5NlroMjZKvZr7keBRM+jQJgB91Q
0aEnkCjMBKQP6Ba19Zpp3rva9kGkjjlZn/nbOqHSHNlWZCN/iV3iq1P1MVXu+fIP
TZgqmP256NkJ7qYJbFtqzRmFJUxqtCNnuTo2GwWuD/gZVu+YyjBBAiIrinHDpN0v
/uAxLVR4+2uuNm1CXZHhR+1s4TjSNrGn9n3Y3D17oTYyPjuKCCGb4rxbAz1gxlo7
XGbgrs3YRP2el2tzvlEDJ27MtgusA+IxLw3Gw+VcsF0PqygL9xtB6q7wAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK57Sd06KR/PTddF4XA9yfgGa1YtMB8GA1UdIwQY
MBaAFNNkH6jtHPw9qiOqr4w6dv6H7VurMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDJRZnFPMGNfRDJxSTZxdmpEcDJfb2Z0VzZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81OWQxMDktOGIwNi00ZGRkLWJjMjAt
OTk0MTk5MmM5YzI0LzEvMDJRZnFPMGNfRDJxSTZxdmpEcDJfb2Z0VzZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81OWQxMDktOGIwNi00ZGRkLWJjMjAtOTk0MTk5MmM5YzI0
LzEvMDJRZnFPMGNfRDJxSTZxdmpEcDJfb2Z0VzZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASaTEBbSg
ISA3H7MFCz5Z2mTpH0v8cb0XTHAnQfQCw4ZfMYJIjIc9Zfbi/UClK6MSKdIvUVHN
r1LyNCdNJw+ymwzbiJhbjaOtzfX8IMy8xbBO6oZHNnNLmNktuPq61VCevICiWJUY
USAZXCem64c5SEI7Bf6EKU0u31rjJaVASP5OQOYCmFJBo1cOdQBw/viXfylQewm6
uC4wI4CqHrnBTKIoetEN6SXZ04asbl03cieS+dUwxFuJh1hRGY6Ve/1UrOtvL9re
QK6ZP1uhOuinQidZ2obXoxR4CKDcJHmkA5Pkx88ilTELXd0LC+nd9lUkpT0jU53+
jbUDCPI621u2Xg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:55 2026 by rpki-client