Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
File: qqlyrDzBD3FspJhQRaXwgktgyh8.mft (raw, json)
Hash identifier: p8oY9pZ/683V0+zgKJ1HZy+A3qdk4uCQChY6CAZvsMU=
Subject key identifier: 61:B3:D5:9A:2D:91:B9:EB:49:EF:F2:10:F5:55:C6:F4:E8:3C:FD:FF
Authority key identifier: AA:A9:72:AC:3C:C1:0F:71:6C:A4:98:50:45:A5:F0:82:4B:60:CA:1F
Certificate issuer: /CN=aaa972ac3cc10f716ca4985045a5f0824b60ca1f
Certificate serial: 019D382DD3B9427DE25613A0786481F22797
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
Manifest number: 039B
Signing time: Sun 29 Mar 2026 06:00:20 +0000
Manifest this update: Sun 29 Mar 2026 06:00:20 +0000
Manifest next update: Mon 30 Mar 2026 06:00:20 +0000
Files and hashes: 1: 7W24_Rf5Ko2iEUxEGRog5wJv6lg.roa (hash: dJfyXH3Ih6KNLcTIHiS1qro2e4tZl7n+nF8SgkkUKW8=)
2: qqlyrDzBD3FspJhQRaXwgktgyh8.crl (hash: klO03/VCqrxhyCdYufcHCxzCrbBRx6tXrS83dLX679c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:d3:b9:42:7d:e2:56:13:a0:78:64:81:f2:27:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaa972ac3cc10f716ca4985045a5f0824b60ca1f
Validity
Not Before: Mar 29 06:00:20 2026 GMT
Not After : Mar 30 06:00:20 2026 GMT
Subject: CN=61b3d59a2d91b9eb49eff210f555c6f4e83cfdff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:80:8c:17:27:dc:93:c1:cf:7f:0b:62:1b:27:
f9:51:dc:dc:bc:67:94:f7:e3:b4:81:fc:d9:59:5b:
ce:a1:c4:02:38:9d:ef:27:b0:f5:f2:ca:55:98:c2:
e3:89:be:e6:e1:42:7c:72:59:51:b3:48:ac:44:c4:
01:e5:6a:b5:fa:a4:58:92:07:b1:cf:c4:26:02:db:
42:a0:25:d3:7f:38:db:c3:d1:26:fe:06:e1:ce:1a:
74:a4:ea:ee:2c:e8:22:b6:4d:6f:8d:d3:19:62:5b:
83:e4:01:c6:1e:1f:7d:be:d7:ac:bc:ad:ac:17:1d:
0e:b8:9b:d4:81:4a:9d:f6:1a:a9:f4:de:a0:70:9b:
79:9d:9e:6b:44:21:1b:98:8d:24:03:57:bb:63:5e:
28:8f:fb:27:6c:37:07:cb:50:81:8e:4d:10:56:6b:
ca:bd:4e:3f:16:b8:97:9d:66:f6:ea:54:40:5f:7b:
b4:95:f9:b3:36:21:6e:83:d1:95:ed:2d:2a:ca:ce:
a1:7b:4e:3f:38:c9:19:19:b9:85:a9:f5:ce:06:36:
7d:ed:3d:e9:62:24:41:11:ce:b0:5b:93:20:48:8b:
30:9c:57:50:7d:5f:dc:26:a1:bd:78:3a:61:57:65:
02:1d:f2:c3:12:96:f5:6f:20:46:ad:58:1c:a3:11:
b8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B3:D5:9A:2D:91:B9:EB:49:EF:F2:10:F5:55:C6:F4:E8:3C:FD:FF
X509v3 Authority Key Identifier:
keyid:AA:A9:72:AC:3C:C1:0F:71:6C:A4:98:50:45:A5:F0:82:4B:60:CA:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqlyrDzBD3FspJhQRaXwgktgyh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d09fb9-f3fa-45b8-a5cd-77b489249fa4/1/qqlyrDzBD3FspJhQRaXwgktgyh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:c5:24:1f:c3:51:fb:87:87:4c:fb:4f:6b:7e:01:db:43:5a:
13:2e:f8:3e:b8:97:48:58:0d:fa:32:28:88:84:74:55:a0:98:
11:db:2f:0b:30:08:38:01:05:2a:13:1c:0a:3d:cb:89:89:26:
7d:53:68:64:28:2b:07:76:d7:24:1c:a6:64:82:b8:59:ed:69:
61:aa:0f:a2:af:aa:bb:01:a2:a1:48:e5:b2:07:a7:0b:f5:67:
6b:2d:4c:d7:cd:70:e9:08:05:52:e3:85:4f:34:e4:5a:2d:7d:
74:a9:fa:19:8c:61:d8:46:7d:6d:91:e6:97:dc:44:9d:c7:03:
27:18:f1:78:bc:ed:47:3d:73:a2:66:08:4e:dc:b8:33:33:ee:
f2:54:3e:48:09:40:61:fb:91:9e:25:64:a7:58:50:0d:e1:d4:
78:7b:71:72:86:26:72:28:77:2a:7a:8f:94:09:ff:02:78:e6:
66:07:ba:23:3b:69:28:4a:28:22:35:d4:2b:51:d1:d8:0c:35:
67:d3:56:15:ae:80:f1:3e:71:25:2a:5a:0b:17:a6:c3:5c:e4:
c3:08:33:0c:3c:4f:37:b1:3d:19:59:a8:dc:2b:b9:29:a8:87:
f4:75:7d:68:84:61:52:85:ad:94:0e:b9:cd:81:d2:2f:0b:9d:
c1:fb:c7:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:27 2026 by rpki-client