Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
File: qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft (raw, json)
Hash identifier: OIms0EF7aeMe0ZyIsKNQPpAaCzi6kNpD4vXdF+Ht0Rw=
Subject key identifier: 55:02:15:5A:12:45:9C:1C:F0:C4:57:83:7F:73:D3:1A:A6:56:A4:5D
Authority key identifier: AA:7C:64:35:A8:50:F0:C5:E9:9A:9C:E0:51:F3:4B:DB:53:22:2F:04
Certificate issuer: /CN=aa7c6435a850f0c5e99a9ce051f34bdb53222f04
Certificate serial: 019D38656BADEA1AE9C09478448B196CCD0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
Manifest number: 092B
Signing time: Sun 29 Mar 2026 07:01:03 +0000
Manifest this update: Sun 29 Mar 2026 07:01:03 +0000
Manifest next update: Mon 30 Mar 2026 07:01:03 +0000
Files and hashes: 1: qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl (hash: hSBOLfgNITfM0EwCGP3igC5F4jSIsyOJEIgzuQXJMUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:6b:ad:ea:1a:e9:c0:94:78:44:8b:19:6c:cd:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7c6435a850f0c5e99a9ce051f34bdb53222f04
Validity
Not Before: Mar 29 07:01:03 2026 GMT
Not After : Mar 30 07:01:03 2026 GMT
Subject: CN=5502155a12459c1cf0c457837f73d31aa656a45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1b:b8:9a:f1:b5:4b:cb:c9:ab:ab:7f:8e:82:
4d:c4:d4:60:fe:92:83:8d:5f:31:65:1d:05:87:c2:
10:2d:e8:39:3e:d7:9d:76:1a:8e:72:a8:b2:d3:96:
c1:7e:37:44:94:d7:63:df:e6:e4:16:22:43:c0:f8:
3a:5e:6a:5c:37:7b:49:68:4a:f1:ab:e0:3c:53:ff:
71:0b:f0:60:e0:f8:8b:33:71:a5:de:55:39:f0:26:
3a:c1:ab:00:dd:48:a4:66:fe:24:c6:cb:72:47:05:
32:7d:a1:17:9b:6a:6b:80:eb:a4:a9:d1:17:d9:0c:
14:b5:1f:b1:1b:d2:41:8c:f3:af:bf:b9:eb:8d:39:
5f:ad:ee:15:d8:50:f5:2e:f6:31:3c:98:31:56:51:
16:b3:8a:8a:8a:68:f9:53:f4:df:35:18:64:5b:7d:
ba:00:06:55:2f:42:fb:8c:69:75:7b:45:8b:70:67:
c3:9f:db:6d:34:0e:46:b4:73:29:82:75:c7:5e:54:
4d:22:f6:33:02:42:b4:d3:88:13:fe:b0:ed:41:14:
dd:76:c9:87:59:8c:bb:33:60:50:11:14:f0:3e:2b:
04:a0:d2:cd:c1:0e:77:8c:a0:6a:72:3a:f4:07:c9:
87:ac:c7:3e:25:81:f3:b2:b1:20:11:50:f3:39:86:
e9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:02:15:5A:12:45:9C:1C:F0:C4:57:83:7F:73:D3:1A:A6:56:A4:5D
X509v3 Authority Key Identifier:
keyid:AA:7C:64:35:A8:50:F0:C5:E9:9A:9C:E0:51:F3:4B:DB:53:22:2F:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:ef:c1:bb:f6:e3:1d:ca:72:e5:5d:8f:49:64:17:bb:cc:b8:
a4:9e:54:a3:67:3e:72:45:c0:3a:83:3d:f5:d9:c8:d5:44:a4:
04:f3:41:09:db:73:c9:0f:a3:44:57:e6:48:cf:08:df:14:f1:
f3:b1:e3:3c:43:1e:77:b8:aa:33:73:8a:86:48:b7:79:f8:bc:
41:4f:b3:d1:e5:da:68:93:33:31:dd:be:9c:dd:fe:6f:b2:ad:
35:5a:58:4d:05:eb:2b:2d:73:0a:f4:0d:a5:8e:3d:49:1e:da:
04:0c:88:d3:55:69:4e:27:20:07:27:d5:55:3a:46:cb:3f:34:
c1:2a:ea:4d:33:67:ed:35:0e:f7:f3:6d:aa:8e:22:59:ed:1e:
a0:8b:c7:7c:02:d9:e4:52:91:5e:28:de:5b:69:1a:b3:3a:42:
5a:49:05:ec:ac:c7:b8:f9:aa:fb:ab:50:fd:e3:74:40:57:b2:
ca:18:63:75:1c:4b:10:32:6b:86:22:a6:d5:96:3e:f6:73:d1:
44:a6:d7:2d:f4:c7:63:49:94:67:99:4d:98:b4:9b:00:53:73:
11:e2:a1:b3:41:ca:a4:16:64:42:0d:9c:f4:bf:70:d7:06:42:
b4:00:a4:82:f5:cc:4c:2b:30:8d:0e:ff:10:20:af:37:f9:12:
b0:6d:a1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:12 2026 by rpki-client