Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
File: QdD5FclU2DtKG_GEz7wTjEftpR4.mft (raw, json)
Hash identifier: 0DRgs+meFgxRrMwND6/dLy3ucTw7qsfCzmKWMO6Cd14=
Subject key identifier: E4:F9:24:BF:25:D2:F8:7D:7E:9F:05:DC:85:53:27:97:2B:AF:19:2E
Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Certificate serial: 019D389BC0182F452FB7DEE55054E1875316
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
Manifest number: 1522
Signing time: Sun 29 Mar 2026 08:00:24 +0000
Manifest this update: Sun 29 Mar 2026 08:00:24 +0000
Manifest next update: Mon 30 Mar 2026 08:00:24 +0000
Files and hashes: 1: QdD5FclU2DtKG_GEz7wTjEftpR4.crl (hash: AGVdj3aFY30UVTLZSW8Dayf9soogpaAYabszEB9rKKM=)
2: fpHmAafjOGhBaMS1gbhoimd-T64.roa (hash: tNORG3Af35zgXnyNJfcnl9XFHgufLnvK+eM/0nmyONM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:c0:18:2f:45:2f:b7:de:e5:50:54:e1:87:53:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Validity
Not Before: Mar 29 08:00:24 2026 GMT
Not After : Mar 30 08:00:24 2026 GMT
Subject: CN=e4f924bf25d2f87d7e9f05dc855327972baf192e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:99:68:8b:72:e4:53:45:be:c9:e3:a5:6c:6b:
37:74:02:e4:99:81:98:c0:41:f1:b0:3c:2d:52:1e:
fe:5f:fe:6b:db:c4:f0:1c:f8:16:bc:c1:8e:d7:23:
dc:07:0e:67:cf:24:f7:39:ca:13:6e:38:68:f1:03:
78:71:61:2a:6b:f1:4f:36:c6:b9:c0:1c:c3:cd:96:
bc:34:d4:95:2c:0d:65:b8:df:20:20:88:c0:a0:de:
af:f2:af:23:4c:c8:62:05:5f:f4:90:c4:cc:b7:e1:
78:55:d9:fd:58:b1:18:46:19:13:6c:ab:08:ae:68:
6d:ef:66:09:16:4f:ff:22:dc:71:82:d7:0a:5c:e2:
3e:a6:e7:8b:e5:c7:0a:d9:1b:4f:fa:2b:4d:26:df:
47:3b:b3:3c:a8:07:ff:3f:f4:f8:27:85:9e:20:6c:
8e:4d:90:3f:48:dc:63:3e:ba:0b:64:20:bb:fb:95:
58:e8:86:f9:dc:d0:bd:2c:25:dc:fa:08:5f:c7:08:
24:81:9a:41:69:f7:cf:98:29:e9:5d:12:fa:44:74:
90:25:a0:f7:be:b8:0d:5e:8d:23:82:97:e8:3c:96:
a3:36:a9:7e:72:a0:16:9a:f7:8e:44:c1:97:a7:ca:
09:6d:e1:51:dc:dd:09:5d:79:11:45:6d:d8:8e:81:
a6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F9:24:BF:25:D2:F8:7D:7E:9F:05:DC:85:53:27:97:2B:AF:19:2E
X509v3 Authority Key Identifier:
keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:db:75:aa:0a:84:bd:50:b0:89:b9:1d:d5:02:f8:60:c7:af:
89:5d:cb:1a:bf:d8:e8:df:1b:47:de:19:dc:85:cd:cd:87:73:
aa:04:c6:d0:de:e2:73:0c:7a:58:dd:75:27:de:7e:b2:14:cf:
95:42:4a:75:28:22:83:c4:c7:20:d5:fa:7c:a8:b1:22:3b:c9:
1d:db:36:6a:bd:08:11:ae:d2:a6:55:ad:fe:4e:49:df:19:db:
72:0c:1a:b5:69:02:e6:26:1c:ab:9e:4b:3f:ec:7c:53:7c:d9:
69:4c:d9:ff:8e:01:17:a9:dc:b4:78:a8:62:02:e4:8f:d7:72:
fd:9f:3a:db:87:00:1f:0f:56:4b:98:b8:1f:f1:34:d4:cc:28:
7f:38:9a:b7:1f:a5:79:89:8c:89:9e:f7:ab:36:e2:44:41:56:
00:3e:5c:ac:32:ec:8f:49:46:f8:c5:7b:7e:e3:e5:61:6a:07:
57:95:fb:18:d5:60:31:6a:06:52:47:31:1a:2d:6a:54:d7:8c:
51:f0:2a:19:54:77:6b:db:64:20:12:1e:27:28:4a:60:e4:03:
cb:1d:12:65:a0:44:e5:b0:a0:4e:01:32:fd:09:44:d8:89:94:
a0:9c:7b:88:3e:9f:b4:6d:43:fb:b3:68:96:4f:b0:58:bd:29:
79:e9:1d:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:37 2026 by rpki-client