Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
File: Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft (raw, json)
Hash identifier: SZO3x4yhwSuuFUoEE9V4wYygiybTd+HSk4WG/nUxEcg=
Subject key identifier: C8:8A:9A:45:12:A8:83:E2:83:53:CD:67:0E:89:56:8E:05:F6:E3:FE
Authority key identifier: 43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
Certificate issuer: /CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Certificate serial: 019D389BE4D92BAA2B25739F7A8BB8ED7D67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 08:00:33 +0000
Manifest this update: Sun 29 Mar 2026 08:00:33 +0000
Manifest next update: Mon 30 Mar 2026 08:00:33 +0000
Files and hashes: 1: Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl (hash: WhDOtwXfWUNLjYSYZTubwuhD9tvd8WBzHZdZykJWQsw=)
2: QyZa0nXuZdTRYOcamDUuEXlxJrw.roa (hash: fY3crQbaUbhZWemSvo5lCgx+xQL5kp/7I3vPr0MN5Fo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:e4:d9:2b:aa:2b:25:73:9f:7a:8b:b8:ed:7d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434421cf6a02b38af5b6bbca6dbd3764448b6cb7
Validity
Not Before: Mar 29 08:00:33 2026 GMT
Not After : Mar 30 08:00:33 2026 GMT
Subject: CN=c88a9a4512a883e28353cd670e89568e05f6e3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bf:16:54:ad:f6:c7:65:a7:76:5e:6e:88:d0:
3d:9f:4c:41:ab:29:8f:78:9e:b3:69:47:4c:96:ae:
ef:1a:43:20:07:a7:2c:76:65:d3:70:fe:b3:89:98:
ab:6d:a0:fc:41:43:0d:87:0b:af:cc:b3:78:e6:db:
7c:e3:b0:be:2c:a9:0e:5e:87:ab:7c:0a:9b:aa:2c:
76:b9:a0:04:0c:49:00:5c:bd:10:b6:4a:85:38:b0:
14:3d:7a:c4:fa:43:2d:84:4c:27:e5:e3:7b:c3:fa:
66:46:56:bc:a1:cd:9d:7f:60:8d:d3:ec:70:01:31:
f9:e4:93:72:50:b7:3d:bd:c4:dd:54:c6:d0:d2:d9:
34:ce:e8:02:11:ea:5d:85:66:80:42:a4:2f:9c:d9:
88:f4:c2:15:84:97:a9:c7:98:bc:19:1f:f6:88:4a:
40:d7:43:ab:92:10:2f:c4:85:02:91:fb:8d:4a:9a:
2c:3d:5c:43:99:7a:ec:0f:ff:75:f0:fb:48:86:68:
47:3b:1c:ef:e0:a8:a4:c9:b8:3d:e1:3b:39:de:97:
e6:14:c6:76:37:c8:52:07:c0:4a:d3:34:31:3a:6a:
92:71:ea:53:98:f5:ea:71:1e:e8:85:9f:9b:6d:7c:
17:b2:75:90:9a:e4:54:51:29:f4:8c:60:0b:cb:9e:
a4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8A:9A:45:12:A8:83:E2:83:53:CD:67:0E:89:56:8E:05:F6:E3:FE
X509v3 Authority Key Identifier:
keyid:43:44:21:CF:6A:02:B3:8A:F5:B6:BB:CA:6D:BD:37:64:44:8B:6C:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0Qhz2oCs4r1trvKbb03ZESLbLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3f151b-fb71-4f1b-bb09-539b329f995c/1/Q0Qhz2oCs4r1trvKbb03ZESLbLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:3f:0a:cb:f4:4f:45:0a:35:b6:0a:33:a6:06:67:cf:af:c9:
81:bc:c0:c4:54:eb:06:02:65:01:1c:95:a8:64:6b:fe:03:8e:
01:ff:8d:e7:5c:5f:85:a7:60:a1:0a:c8:2a:94:25:c6:a1:33:
45:b0:54:72:ce:24:3f:81:14:11:0c:6f:e1:d1:75:c0:f9:14:
1c:db:3e:34:f5:aa:8e:72:db:58:2a:42:75:6d:f5:7d:6c:f3:
c3:d1:fd:69:8f:05:77:5c:f3:fe:8c:68:e2:63:3f:02:88:0a:
1e:27:ee:5c:5b:31:f8:3c:56:07:5a:38:2d:5c:3b:13:2b:5d:
e7:b9:a2:5c:dc:f1:21:d9:8a:ea:e4:ab:33:25:9f:8f:41:d3:
96:0f:c8:f0:7a:69:90:1a:03:94:8c:38:7e:32:97:50:2e:c8:
dc:55:c5:b5:a7:a5:70:01:6b:2f:ca:3e:41:e4:26:56:98:24:
9d:77:33:c8:24:6e:d1:99:c0:85:67:23:63:82:e7:92:7d:23:
19:9b:9b:eb:81:a5:e4:af:bc:81:f9:7a:23:ac:25:3b:1c:c5:
98:d1:1d:6b:57:1a:1e:60:0c:d9:67:db:f5:65:e2:b9:e8:92:
85:44:a1:18:f6:7b:98:9b:95:6b:53:b8:3d:aa:eb:bd:34:12:
37:24:36:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:06 2026 by rpki-client