Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
File: Q94YPxSj8k-bhtBE-HcphoC1Ers.mft (raw, json)
Hash identifier: OdxT1urRwEW4dLBQvo4l5klC9Vb83lX/0nwSRLBCemg=
Subject key identifier: 63:6A:2E:97:A0:86:8E:05:64:63:9F:2C:78:F3:EF:48:E3:6A:40:50
Authority key identifier: 43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
Certificate issuer: /CN=43de183f14a3f24f9b86d044f877298680b512bb
Certificate serial: 019D37F78A8596C5CF34B2023159BC8CC651
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
Manifest number: 06F9
Signing time: Sun 29 Mar 2026 05:01:02 +0000
Manifest this update: Sun 29 Mar 2026 05:01:02 +0000
Manifest next update: Mon 30 Mar 2026 05:01:02 +0000
Files and hashes: 1: Q94YPxSj8k-bhtBE-HcphoC1Ers.crl (hash: n7kPikr60HvFSJSN/7YKgrL0NUaTm0ji9y9qV4dq4fM=)
2: eRzoAPCehzYUsTKWzumpWnRkGv4.asa (hash: XuGTrIZBYEhP0vD01NV66qn1i9p1ktzdlWy+jaqHixE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:8a:85:96:c5:cf:34:b2:02:31:59:bc:8c:c6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43de183f14a3f24f9b86d044f877298680b512bb
Validity
Not Before: Mar 29 05:01:02 2026 GMT
Not After : Mar 30 05:01:02 2026 GMT
Subject: CN=636a2e97a0868e0564639f2c78f3ef48e36a4050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b4:c9:72:d7:9f:0b:15:fa:15:8f:dc:42:27:
3e:75:5c:09:53:88:8f:8b:99:cb:ba:75:84:a8:da:
a4:17:be:d0:e9:13:95:cd:d3:2b:dd:84:70:70:19:
86:16:07:78:80:ff:a1:e4:90:0d:e5:23:04:10:01:
fc:2e:ed:55:f1:0c:b1:c5:c9:ca:cc:36:92:38:d3:
61:b3:5e:b8:12:63:da:0a:f6:6d:ed:6e:3f:3c:9e:
07:52:e4:29:8c:f4:b8:97:a1:ea:53:6b:cc:05:ea:
0f:6e:89:24:a9:fa:47:d7:d5:2f:a5:d5:56:74:0a:
18:69:e9:e5:a4:fc:76:a6:e0:3b:d9:64:ba:ac:05:
24:cb:1f:bb:63:ca:bd:19:6f:d6:24:42:2e:5c:4f:
df:65:e7:05:2f:66:14:32:66:85:1c:f6:07:cb:96:
19:3b:53:32:cb:1d:d1:bb:4a:96:2d:30:3b:cc:e0:
fd:ea:f9:65:f7:82:4f:b8:70:2d:bb:69:8d:47:18:
cd:d8:8c:ad:84:76:16:85:07:51:6b:59:1e:42:4d:
5a:b6:54:e8:c0:69:1d:fa:4b:4f:44:76:c9:00:c5:
9e:03:4f:3b:85:05:54:a2:03:47:f7:00:40:a1:30:
8f:9a:08:71:2c:81:d6:0a:b8:f2:3c:53:f6:2d:73:
fe:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6A:2E:97:A0:86:8E:05:64:63:9F:2C:78:F3:EF:48:E3:6A:40:50
X509v3 Authority Key Identifier:
keyid:43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:57:b5:21:c1:61:7a:1d:04:c8:02:42:1e:4a:1a:5b:bc:70:
dc:f0:ab:31:23:99:89:b8:e1:ca:9e:f6:26:f6:14:30:39:c2:
1e:09:69:03:ce:37:e6:82:77:78:d9:09:be:8b:26:ee:84:4e:
02:70:f6:3d:01:4a:a8:04:a5:b0:fb:c7:48:37:7d:58:99:fe:
0c:2f:59:4e:43:22:82:60:a9:c2:a7:72:a6:2e:16:0f:90:27:
7b:18:c7:ab:46:66:09:52:4c:e0:32:2f:6d:4c:00:84:c9:86:
c5:58:ca:db:f5:e0:96:2f:bc:ea:2a:9e:7b:5f:c5:af:b6:20:
bf:32:57:d6:29:d4:ce:bb:53:a9:fe:49:1f:04:52:26:73:8e:
25:ee:e8:65:ce:7a:5b:b6:9f:80:bd:38:93:a8:c7:65:da:0a:
f2:5b:d3:bb:72:5a:fc:0e:3f:84:ba:01:32:19:49:bb:72:8d:
c9:aa:da:f9:3f:96:ef:5a:85:f8:89:e2:f3:a7:6e:26:c9:0d:
12:c0:96:18:42:f8:f0:ce:9b:c5:69:7a:bd:ea:c7:a0:b1:1d:
d8:65:2a:4d:c0:69:01:63:3e:c1:78:db:26:18:c7:f0:34:27:
96:5f:ae:72:74:86:b8:84:d3:01:69:f1:ea:9c:b7:00:5e:45:
2e:9b:ce:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:13 2026 by rpki-client