Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
File: Q1w_GpeQPnlikqKsenjUGxwh24U.mft (raw, json)
Hash identifier: P0NzD02vw/fgGyqgsFwrWrj0j5JZHjcs4g7Y1Uya2Yw=
Subject key identifier: 37:36:BD:BD:17:7D:8B:79:B2:FE:15:CD:17:35:6F:BA:9A:A2:F9:1B
Authority key identifier: 43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
Certificate issuer: /CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Certificate serial: 019D3A536D09B46FE79DCC18E5E4F87114EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
Manifest number: 11B9
Signing time: Sun 29 Mar 2026 16:00:39 +0000
Manifest this update: Sun 29 Mar 2026 16:00:39 +0000
Manifest next update: Mon 30 Mar 2026 16:00:39 +0000
Files and hashes: 1: 33dtqLxDvjVwskcvs1eBKxG9qW0.roa (hash: v3Uvvd01xCxk2zOvIWKmnmyUBgwjXDORZn0oG3d1w0A=)
2: Q1w_GpeQPnlikqKsenjUGxwh24U.crl (hash: 43dlIpq0V3lkvvqOFZVVoXyIfotFQbUZTw78Ce+S+ok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:6d:09:b4:6f:e7:9d:cc:18:e5:e4:f8:71:14:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Validity
Not Before: Mar 29 16:00:39 2026 GMT
Not After : Mar 30 16:00:39 2026 GMT
Subject: CN=3736bdbd177d8b79b2fe15cd17356fba9aa2f91b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ad:11:7d:5c:18:07:85:42:46:59:1f:16:a7:
cf:0c:90:4e:09:b5:d6:a0:61:50:1a:52:7b:bb:98:
c9:26:48:24:b1:49:d5:51:79:50:28:a6:83:4f:a8:
08:a2:74:fb:39:9b:de:b1:d6:43:37:f1:d6:1d:c9:
32:60:86:07:a0:43:1a:94:77:df:95:69:8c:98:6a:
f0:a7:5f:40:db:f3:ff:3b:51:f6:27:8b:00:ab:ef:
6d:54:7c:23:df:22:63:15:5e:6a:ba:71:0b:4a:1e:
25:d4:fa:05:98:4a:74:5b:a0:ab:20:bc:16:b3:64:
54:85:df:da:a6:f9:e9:ec:79:ed:03:b9:90:fe:5e:
db:49:57:1c:fb:4b:f0:93:0b:76:ae:8d:26:f2:1a:
27:89:c4:e8:8c:a6:13:26:4f:0d:cd:c1:b9:82:84:
46:ce:cb:a8:ed:1d:f0:37:e1:08:5c:6b:a3:70:88:
34:4c:a5:eb:05:1d:44:5c:18:4e:1c:55:ca:83:ae:
18:56:1c:9b:93:14:1e:53:92:c0:2f:59:89:da:da:
74:a5:db:69:54:ad:bd:12:4d:0c:5f:23:5c:48:5a:
5c:90:2e:74:86:9f:7f:1f:1a:ec:f9:4e:69:3e:cd:
28:f9:87:e6:e7:32:f4:ba:bf:71:e1:de:79:a9:29:
64:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:36:BD:BD:17:7D:8B:79:B2:FE:15:CD:17:35:6F:BA:9A:A2:F9:1B
X509v3 Authority Key Identifier:
keyid:43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:23:e5:ad:39:33:6d:fd:ff:31:e5:63:67:31:39:07:0a:04:
cc:b1:f0:b2:57:2f:72:13:19:b9:9a:e1:42:10:80:77:cc:b4:
0d:7d:a5:5d:bc:51:ce:40:5d:88:29:f8:3c:25:7a:5f:dc:2d:
9d:5c:9e:d1:94:89:7d:77:6f:fc:1a:12:93:13:5a:26:ea:3e:
b9:4e:e9:0d:85:8a:fa:1e:24:9f:3d:70:54:2d:02:95:e3:e8:
c4:cd:d2:bf:cf:9f:0c:bd:d0:3c:41:56:22:e2:6e:ad:48:32:
d5:31:62:c8:be:71:1c:5d:59:0b:2f:1a:38:73:3f:2b:3c:f7:
bf:52:f9:c9:a8:49:5a:72:e3:cf:17:94:36:db:9e:c0:02:18:
0a:c5:4e:ff:2c:bf:10:a1:f7:18:31:da:79:fa:a6:11:fb:17:
30:f6:61:dd:9b:f6:f9:81:78:84:8d:05:7c:63:b9:8f:e9:bb:
72:9b:1c:86:ae:a2:f0:6c:1d:0f:04:69:b0:a7:bd:ce:0c:51:
ae:ec:a0:fa:fc:88:cd:99:a7:f7:89:98:d4:a5:5c:dc:16:e4:
26:f0:8b:a9:db:e9:19:85:40:77:80:04:db:6c:e9:23:e2:1c:
79:83:99:29:93:04:e0:a7:6b:74:a1:8d:37:c9:c9:72:f7:8a:
bd:ea:02:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:41 2026 by rpki-client