Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
File: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft (raw, json)
Hash identifier: cdTqUIKBCicjLRjtgiyEMZQlRcxgXIQG0yLrilC3NYI=
Subject key identifier: 49:C1:E8:BB:7A:2F:E9:CA:63:C0:7E:87:B5:05:49:5F:05:AA:DE:46
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 019CB8F005F4C45AC31E331D67DC409E6025
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
Manifest number: 0A1A
Signing time: Wed 04 Mar 2026 13:01:03 +0000
Manifest this update: Wed 04 Mar 2026 13:01:03 +0000
Manifest next update: Thu 05 Mar 2026 13:01:03 +0000
Files and hashes: 1: QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl (hash: G1/2DZlXl4flHYvd8WdELCeQYPlo3+AWz2NOjKHppvw=)
2: RhhybVhgxehJpyQFfu1dQiF3RZc.roa (hash: vTXKPtYUm1UxDqfrm9GUHJ6eZM3EZfiTITZU7YFaPA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 13:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b8:f0:05:f4:c4:5a:c3:1e:33:1d:67:dc:40:9e:60:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Mar 4 13:01:03 2026 GMT
Not After : Mar 5 13:01:03 2026 GMT
Subject: CN=49c1e8bb7a2fe9ca63c07e87b505495f05aade46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:15:c1:05:2c:fb:0e:14:fc:30:38:13:82:de:
2b:5d:06:fc:90:29:7d:e2:b6:32:45:78:b2:83:ef:
fd:37:34:b3:7a:11:f8:ab:d0:4d:55:47:f8:f7:f6:
6b:f8:b0:b3:65:a0:6f:8a:03:7d:a6:4c:4d:11:4a:
69:42:0b:2a:55:98:e1:2d:0b:ba:d4:79:77:86:cd:
78:92:cc:c0:26:92:9f:1f:0e:69:29:2e:d9:95:38:
56:79:22:c3:65:cb:67:c1:9d:41:d7:f1:6a:84:5a:
6e:8a:72:0e:0f:5f:fa:1c:08:c8:ce:5f:52:39:f9:
5f:c2:1d:21:f9:ec:04:42:f1:d8:18:bc:4c:03:dc:
6c:d5:a4:66:26:53:24:07:6e:ed:0c:cf:1d:79:aa:
95:85:bf:6d:cf:da:79:31:4b:c4:3a:43:28:40:1f:
e3:80:54:bd:44:13:8f:70:08:56:cd:65:01:36:5a:
f7:44:9b:98:44:62:34:61:e3:b3:eb:2a:8b:3c:18:
69:10:c1:08:d3:21:e3:52:25:b3:88:3f:02:5f:74:
e2:1f:b0:66:84:36:71:64:80:83:5b:77:63:56:44:
d3:a4:7f:be:ce:3f:23:f1:cb:aa:50:3b:62:50:14:
80:48:38:5d:6e:35:f2:f7:32:23:bc:f7:6a:35:de:
2f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C1:E8:BB:7A:2F:E9:CA:63:C0:7E:87:B5:05:49:5F:05:AA:DE:46
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:f1:51:f1:64:4a:75:b7:a4:3a:82:05:bd:de:12:5a:c3:ea:
d8:65:e1:9e:27:85:75:22:f3:2e:f5:08:97:ce:2f:c9:3b:36:
e4:10:43:e1:ef:21:40:f9:56:df:60:5b:ce:d0:05:19:10:44:
c5:b9:10:14:28:f2:28:43:73:ac:82:a2:45:ab:b9:d5:b6:6a:
fd:c7:5a:62:71:f4:56:d2:ff:ca:8f:17:bf:07:9a:61:8e:22:
e8:b1:d1:ed:3c:eb:9b:ee:ef:79:9a:9b:a5:20:f3:bf:f4:55:
8e:77:4d:2f:82:37:80:12:8b:26:44:cb:81:29:b9:e0:bc:4c:
06:c2:93:94:8a:80:15:0a:53:00:f7:30:87:7f:65:7a:b9:35:
31:0f:e8:75:8e:4a:b3:62:8c:ab:c6:54:bd:c4:e6:1d:04:89:
c3:80:30:7d:d0:22:c8:0d:53:e1:16:90:3b:07:61:62:1f:f7:
b9:70:d7:2f:04:49:8f:b9:91:b1:80:66:93:32:da:88:3e:85:
a6:d1:9b:8c:01:65:d0:68:3d:44:12:fa:b2:38:2b:be:5a:7b:
b2:a1:1b:56:f7:77:3a:ea:d5:04:98:e2:73:40:ed:45:aa:9f:
51:d8:72:ba:64:6b:cb:2c:c6:e0:9c:05:c4:2e:cd:47:ad:16:
ef:c2:81:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 17:15:18 2026 by rpki-client