Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
File: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft (raw, json)
Hash identifier: l1WYir1vxiQLavO+/+FfGlMRBAuSgjETY/C+ekH0Ofo=
Subject key identifier: A1:A3:81:01:EE:DA:1E:1F:7F:FA:7E:DB:F4:C8:04:AD:41:3B:7E:13
Authority key identifier: 40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7
Certificate issuer: /CN=40d933e82474650c6aa3e9cbf0574d27286592e7
Certificate serial: 019D371BFA51325063B7988C0A2B4B0D7899
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
Manifest number: 189A
Signing time: Sun 29 Mar 2026 01:01:13 +0000
Manifest this update: Sun 29 Mar 2026 01:01:13 +0000
Manifest next update: Mon 30 Mar 2026 01:01:13 +0000
Files and hashes: 1: 1-ojtBFfG2H1rWqjbXk4N7WD3PpY.roa (hash: 33NVVlGbTWQg3lb1uDpxYt5Pr6SGR6CWL3Kw3mH/dfw=)
2: QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl (hash: EE0Pf9leKvASAZyZSkPc+sEs1uJWdP/hHRqIy658nCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:fa:51:32:50:63:b7:98:8c:0a:2b:4b:0d:78:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d933e82474650c6aa3e9cbf0574d27286592e7
Validity
Not Before: Mar 29 01:01:13 2026 GMT
Not After : Mar 30 01:01:13 2026 GMT
Subject: CN=a1a38101eeda1e1f7ffa7edbf4c804ad413b7e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:96:38:60:17:4d:a8:31:f2:7d:d4:2a:d4:e9:
de:86:3a:c5:4d:b9:16:b1:0f:63:db:ba:86:6e:aa:
a0:38:8e:af:7e:fb:c9:0e:08:4c:65:4d:c8:c3:fa:
de:9a:ed:2b:03:a2:f1:a8:38:a8:95:f6:1b:1a:56:
d3:fb:d8:91:92:72:8b:ce:cf:dc:ee:bf:2a:b9:40:
5a:67:20:63:22:f1:c6:d7:11:3a:23:52:87:2f:1c:
01:54:2f:1e:2f:48:94:91:eb:ab:99:a4:5c:20:eb:
93:f4:fd:f3:43:a9:f6:75:50:dd:90:10:01:79:dc:
04:f0:95:0c:4c:4f:a1:e2:a2:a3:34:47:08:60:f2:
43:9c:3f:3a:a8:e6:bf:73:a4:24:32:12:9c:40:37:
6f:a9:eb:ab:b2:9e:78:03:cd:15:8e:47:9e:1a:51:
c6:78:a3:dd:81:f0:eb:dc:e3:b5:49:90:22:b5:25:
90:d7:5a:58:91:82:23:e5:d4:46:4c:1f:89:9b:b3:
34:92:36:7a:57:94:6d:72:a8:4d:09:ee:8e:9e:81:
bc:42:db:25:33:4b:04:f8:58:83:f5:16:80:d3:8e:
3d:12:68:86:d3:fb:88:3f:5a:a5:b0:aa:cd:75:01:
29:41:c9:44:7d:72:ec:63:37:64:9b:0d:ff:a0:23:
90:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A3:81:01:EE:DA:1E:1F:7F:FA:7E:DB:F4:C8:04:AD:41:3B:7E:13
X509v3 Authority Key Identifier:
keyid:40:D9:33:E8:24:74:65:0C:6A:A3:E9:CB:F0:57:4D:27:28:65:92:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3879dd-ef95-45e6-8767-e681ebba4a4a/1/QNkz6CR0ZQxqo-nL8FdNJyhlkuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ac:f7:d2:a9:db:91:7c:53:1f:1d:8b:f1:bf:58:85:7a:49:
57:0e:02:3b:13:93:32:bf:4e:c4:bd:c7:9b:61:e0:8b:08:3d:
a9:64:d5:25:a4:4e:e4:ab:0a:87:17:11:c0:1d:f7:7b:2a:db:
5e:5c:a7:05:9b:24:d5:ce:e3:66:90:5b:5c:de:c2:39:b0:77:
5a:ed:6f:49:13:46:24:fe:a6:d0:5d:2d:b2:90:fe:0c:40:79:
37:8c:e1:96:62:b0:f8:46:d2:0a:6c:b3:f6:7e:6e:c7:3b:40:
50:80:84:e5:13:33:e8:2d:47:81:1e:1b:35:b5:80:91:0e:c9:
c3:af:d5:1e:1b:cc:3a:d0:b5:f8:15:81:69:87:03:68:26:40:
53:6f:28:ab:00:be:80:b5:3c:0a:b7:6a:03:af:fa:e8:5f:a3:
c1:a9:26:a8:41:5a:fd:0d:1f:3e:3e:3c:4a:34:02:8d:d8:11:
5f:47:e1:b0:9f:40:30:95:8c:53:10:79:77:35:f8:c5:40:54:
d6:03:a5:9a:71:54:54:21:8b:0b:0a:7d:a3:ec:b0:81:5b:48:
e5:d8:47:6e:9f:2b:9e:9b:f8:20:75:71:4e:2b:29:8b:37:6e:
2d:16:45:ae:bd:c3:0b:53:e5:a4:e8:4c:63:82:f7:f4:96:11:
95:c6:a0:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:22 2026 by rpki-client