Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
File: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft (raw, json)
Hash identifier: rD56SZOGsks3WEqanqJ7ZHxBUbYZufU0l5CBZjOlKEE=
Subject key identifier: DB:2D:33:79:3A:C5:35:C9:9E:B7:98:00:3D:C8:A9:27:E9:09:53:FE
Authority key identifier: 41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC
Certificate issuer: /CN=41d6451b923a07e365b2f190faa55a572dd0fafc
Certificate serial: 019D3789A4E852B18E55A4019D63283AA8A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
Manifest number: 0B58
Signing time: Sun 29 Mar 2026 03:01:00 +0000
Manifest this update: Sun 29 Mar 2026 03:01:00 +0000
Manifest next update: Mon 30 Mar 2026 03:01:00 +0000
Files and hashes: 1: M2qWTH73NkMquwfzQJVxK2FVK8I.roa (hash: 5PswSRa1E9ITddc7NsFeNUg4nkAmj5HsnCX0ziwfNao=)
2: QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl (hash: d/ehxtFWH4VVoncqEgFaoCFjQJkrEB6M5WXq9Rca9oM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:a4:e8:52:b1:8e:55:a4:01:9d:63:28:3a:a8:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d6451b923a07e365b2f190faa55a572dd0fafc
Validity
Not Before: Mar 29 03:01:00 2026 GMT
Not After : Mar 30 03:01:00 2026 GMT
Subject: CN=db2d33793ac535c99eb798003dc8a927e90953fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:03:0a:1e:4f:ca:d6:9c:63:ad:5c:1b:36:75:
98:04:71:df:3f:d0:21:dc:dd:7d:ed:6b:3b:96:c1:
31:12:34:2f:de:90:a1:5e:f5:af:6a:26:9b:d5:dd:
fa:f9:e4:65:29:07:61:4e:73:fb:87:e5:db:d7:dd:
82:b5:db:8b:12:ab:7c:d1:cb:ab:bc:49:1b:23:8d:
61:ae:21:73:c4:6e:8a:74:f0:c2:21:b3:0e:96:b0:
e4:00:eb:9f:c6:16:72:b2:94:cb:95:be:b1:dd:d2:
8f:4f:94:82:03:61:f3:51:a9:5b:2f:f6:85:05:2d:
73:26:c2:d9:a6:03:9e:ab:e7:8b:81:c8:df:0a:a1:
e6:e3:24:8f:8a:60:cf:ab:60:f1:45:57:72:55:06:
db:d7:92:3d:f8:55:1e:a8:e9:de:71:e3:46:8f:13:
1e:fa:31:09:76:40:05:2e:ca:91:43:7b:cd:ea:2f:
41:34:46:2d:58:0c:3b:57:15:4e:3b:54:a8:cb:3f:
50:b9:3c:a3:cc:f5:01:ee:37:bd:63:85:61:12:5d:
68:c1:83:2f:a0:a3:94:46:ee:93:df:c6:8b:d4:b4:
93:fb:18:a9:8f:37:18:7d:55:1a:fc:68:a1:ad:9d:
2f:3f:00:ff:aa:ee:13:37:a3:6c:11:c5:94:fd:55:
b2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:2D:33:79:3A:C5:35:C9:9E:B7:98:00:3D:C8:A9:27:E9:09:53:FE
X509v3 Authority Key Identifier:
keyid:41:D6:45:1B:92:3A:07:E3:65:B2:F1:90:FA:A5:5A:57:2D:D0:FA:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/dee744-0854-4cf1-af6a-f56c84943a7d/1/QdZFG5I6B-NlsvGQ-qVaVy3Q-vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:db:32:56:90:f4:41:66:7c:a8:47:03:6a:d5:70:2c:85:8b:
83:58:23:27:fa:56:0f:68:35:ef:9a:6a:14:08:18:1e:b1:c8:
95:8b:6e:67:49:20:81:1c:09:cd:2f:18:16:fb:29:bb:44:f9:
e7:58:ae:84:94:6e:e3:34:1d:d8:58:75:cd:fc:d4:47:f8:ee:
f4:b1:89:60:a8:73:6c:7d:0f:30:dd:cb:e6:ee:55:02:a9:3a:
12:14:d2:7c:ae:04:76:b1:52:54:4e:e6:85:ad:ec:1a:13:7c:
7b:f5:1d:c3:ee:79:89:bd:dd:41:0c:07:33:18:90:4b:ab:3e:
53:5a:cf:e0:c2:91:47:3f:ff:eb:06:d7:0a:ae:82:f7:93:43:
fd:3e:53:0a:60:b1:95:d1:55:d4:b6:35:0f:22:5e:f2:f3:51:
d1:58:0e:72:77:db:fb:8f:d4:14:94:f7:fb:fd:0d:81:30:c7:
ef:f9:19:49:7e:6b:55:4d:f9:41:78:5f:0e:89:eb:1a:47:07:
81:c7:96:17:83:91:83:67:93:0e:2b:01:fb:a6:82:26:4f:38:
90:46:16:6f:28:eb:b0:52:35:87:56:4d:3e:18:c3:5f:33:ff:
8c:4c:f6:63:be:e5:ee:74:66:1a:7e:36:ca:c4:7c:d5:38:e9:
d6:30:2e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:33 2026 by rpki-client