Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
File: Q34DDURmGkwgHroD3kUrBLjn2eU.mft (raw, json)
Hash identifier: JHbhYB227dqeB1N3Y0xLEo7ZVLdR8g6TthHmcr39M6E=
Subject key identifier: 82:93:18:77:29:57:B4:66:A3:EF:BA:DC:4C:03:48:61:3B:21:9C:EA
Authority key identifier: 43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
Certificate issuer: /CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Certificate serial: 019D389C4C63C736AA875FF975A04AE05CB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
Manifest number: 17D5
Signing time: Sun 29 Mar 2026 08:01:00 +0000
Manifest this update: Sun 29 Mar 2026 08:01:00 +0000
Manifest next update: Mon 30 Mar 2026 08:01:00 +0000
Files and hashes: 1: DsEiDbdONX-wlDkZ_X-1g9jpCQg.roa (hash: OA/21KHBKcEIJSTWxQCJ0tkhioZ536fK4ENW6PbwjpI=)
2: Q34DDURmGkwgHroD3kUrBLjn2eU.crl (hash: bKCUpseNgr09lx69UEjQrfy6zmBhmSpQ0JqLpf2vBjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:4c:63:c7:36:aa:87:5f:f9:75:a0:4a:e0:5c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=437e030d44661a4c201eba03de452b04b8e7d9e5
Validity
Not Before: Mar 29 08:01:00 2026 GMT
Not After : Mar 30 08:01:00 2026 GMT
Subject: CN=829318772957b466a3efbadc4c0348613b219cea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d1:92:86:26:24:34:d7:1e:5c:ac:8e:d1:15:
c8:b2:c6:46:1f:c6:f2:80:e2:a3:b9:3d:24:ad:7f:
a4:35:67:32:dc:68:0a:36:4d:9c:e8:71:c5:ff:83:
25:e7:17:d5:56:8a:8b:59:da:b3:70:93:5f:b5:75:
ff:a8:7b:4b:1c:00:6b:e8:ca:ca:47:4d:8c:7d:90:
e6:93:2b:db:34:b5:b4:7b:bb:ce:6f:8e:e8:55:4f:
b8:4c:4b:13:cc:9c:1c:82:f0:05:05:bd:2b:67:e4:
31:76:f5:65:4c:1c:03:db:bf:05:15:10:c8:b4:9d:
f0:66:e1:17:6b:2a:e5:c0:5b:9a:34:36:e2:c8:02:
a0:af:91:d4:26:ec:ef:ae:55:96:0a:c6:dc:98:37:
7b:1f:be:da:4a:3a:f2:25:b0:e2:4d:23:06:b0:9a:
1e:12:c4:ed:7c:a1:4e:b1:4c:82:7d:56:c9:01:72:
1c:8d:7d:dd:b2:05:95:a5:c1:08:a4:05:cc:c1:d4:
3c:04:9c:19:19:0e:9f:34:d8:40:1e:36:65:0c:7b:
96:aa:bc:d9:0b:ea:01:15:61:37:cd:36:12:a3:2f:
79:41:4b:22:cc:65:9c:0b:e2:ec:c5:a6:bb:b1:81:
c2:9b:c2:a0:c0:9f:d0:1e:81:c4:69:87:e5:79:17:
91:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:93:18:77:29:57:B4:66:A3:EF:BA:DC:4C:03:48:61:3B:21:9C:EA
X509v3 Authority Key Identifier:
keyid:43:7E:03:0D:44:66:1A:4C:20:1E:BA:03:DE:45:2B:04:B8:E7:D9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q34DDURmGkwgHroD3kUrBLjn2eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/4be259-be96-40fa-880e-bbd2106f3370/1/Q34DDURmGkwgHroD3kUrBLjn2eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:0b:19:5a:22:8c:50:71:83:61:84:67:36:e1:8d:df:59:77:
cc:76:97:ac:bd:3e:08:f7:d0:30:70:d5:a1:50:19:77:f1:2c:
63:79:d7:c4:4a:b8:de:5d:69:91:24:a8:3e:f2:43:10:15:d5:
62:22:95:2c:90:27:e2:05:97:7d:50:c3:79:13:a1:d5:8a:ce:
79:f0:51:54:d3:65:3f:dc:8a:7a:d4:dc:b4:3d:23:f2:4c:43:
d9:f6:cb:cb:5b:6e:ae:80:bd:fc:ed:63:90:0c:c1:eb:80:10:
c9:45:af:6b:be:8c:b8:44:91:2f:2f:11:75:ba:90:6e:e1:3c:
65:6c:3d:60:55:98:4c:00:e2:d1:aa:91:cf:68:b3:cc:f0:4c:
74:11:b5:16:f9:65:3e:94:36:16:09:30:f7:97:6d:20:66:99:
cd:14:ab:67:78:ce:71:4a:d5:20:53:a3:66:b0:d0:a6:8d:fd:
0e:00:19:85:37:ea:e8:3f:3f:be:5a:f1:ff:62:0a:8e:3f:0d:
de:6b:11:90:90:d6:8d:81:ac:30:26:17:ca:5d:a0:59:b3:26:
51:9b:59:54:76:fb:d0:88:d7:dd:a3:d8:71:bd:bc:00:9e:2e:
2e:7d:15:8e:bb:95:1e:cf:1b:83:36:ac:0c:db:5f:62:1b:5b:
c3:6e:2d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:06:32 2026 by rpki-client