Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json)
Hash identifier: W9K1X18abQtY0xRXwsUMOLsnM+W/QJeqr2Xc004p+hg=
Subject key identifier: AE:E7:1E:B4:10:BB:21:A2:C6:78:10:B6:9B:F8:0F:E3:A3:80:33:ED
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 019D37C06FB635D227051FEE05A6A29E96AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:00:51 +0000
Manifest this update: Sun 29 Mar 2026 04:00:51 +0000
Manifest next update: Mon 30 Mar 2026 04:00:51 +0000
Files and hashes: 1: 5zEkxsehYVrSBWS8R6vq4w7gVtY.roa (hash: y9Gfd8AbrZdX5+SsYIumelvvyPK5gzC9wuMjV0Ywdgw=)
2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: CMJUC/Wo6WYIWBUjI2uE6ui7n9wFZuiPJ7btYWjTIyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:6f:b6:35:d2:27:05:1f:ee:05:a6:a2:9e:96:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Mar 29 04:00:51 2026 GMT
Not After : Mar 30 04:00:51 2026 GMT
Subject: CN=aee71eb410bb21a2c67810b69bf80fe3a38033ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4f:98:7c:2e:e1:e8:6d:fa:d4:f1:5e:58:29:
9d:cc:ef:1d:d7:ba:34:f9:b0:68:2a:dc:3d:87:dc:
24:d0:6f:da:d3:fe:05:d7:7f:ac:13:6b:ca:9a:56:
11:ab:6e:3e:c4:09:ef:50:b3:df:18:bb:95:76:0b:
eb:75:7e:f6:ae:09:79:7f:46:ad:d5:94:7a:ff:ed:
cd:44:59:c6:18:6b:4e:1e:df:f0:40:e4:8f:71:be:
c5:dc:8a:04:6a:2e:ad:e0:f5:0f:02:0b:1c:9c:d7:
6d:f8:87:9e:34:01:89:75:6e:a6:cd:04:cf:d4:c4:
b1:b8:53:7b:ee:e1:7e:a5:c8:77:b4:94:3f:f3:c7:
4e:d2:50:12:2d:06:81:28:a2:36:f2:8b:73:67:49:
fc:0e:ae:44:ca:f3:d3:2d:63:80:e1:a2:16:fe:43:
ea:78:ba:86:e9:98:66:71:1c:4c:16:04:cd:46:04:
9f:f6:47:eb:d4:9e:92:e2:fa:37:5d:b2:63:48:d7:
c1:35:71:43:78:c8:b4:9f:87:08:2a:f0:14:4c:2f:
a8:4a:1a:93:4c:62:c8:bb:90:1b:1f:1b:52:b8:b9:
c5:61:5c:54:6f:1a:c5:1a:b8:25:09:95:86:85:7c:
18:4a:cb:50:ff:9c:e1:3f:da:e6:a7:2f:6d:1a:f8:
d8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E7:1E:B4:10:BB:21:A2:C6:78:10:B6:9B:F8:0F:E3:A3:80:33:ED
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:cb:c7:7c:54:78:a5:c2:dd:fa:7a:f0:77:3b:7f:fb:06:39:
0b:72:43:8c:46:a7:02:2e:9e:f8:b7:a8:f9:4f:9e:47:4b:8b:
5a:7f:6d:57:c1:1d:ea:79:0f:96:91:d3:35:0b:9e:3f:b4:0a:
1a:22:46:2e:8b:80:43:b7:32:62:a5:20:4a:53:78:b3:c6:e6:
68:3b:60:39:b5:d0:e4:16:fe:d6:7b:01:c8:90:31:fa:a0:80:
c9:07:c2:32:dd:0a:7e:7d:d3:65:fe:32:93:94:4a:a7:dc:b8:
e9:c9:64:c0:37:8d:f2:6d:b8:3f:c1:a2:a3:1d:40:ad:bd:3d:
d1:ed:07:b7:06:69:25:fc:dd:0e:53:ce:e9:97:ee:11:03:ea:
21:8a:55:2d:be:94:c4:07:17:1c:28:7d:ca:52:0a:94:fa:58:
f9:e8:0c:b6:49:c7:89:49:08:35:cf:95:91:10:e3:33:53:36:
31:ec:3f:a4:8d:c6:3e:70:b0:54:95:b4:8c:8d:c4:1e:29:62:
aa:80:52:fe:ae:cc:18:58:b2:78:44:22:6e:b8:da:97:96:74:
03:27:4c:30:43:5a:50:81:69:91:4e:6c:d7:99:1b:b3:07:5d:
7c:1f:e8:f4:61:e4:82:69:d2:1b:89:42:58:7e:72:93:ab:db:
69:76:12:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:41:37 2026 by rpki-client