Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
File: QlbgyzjNYSXO4U5Jcii4SQodQOk.mft (raw, json)
Hash identifier: GREn35tj8azFlfXwj6fYGgkosEIItA3pj1F2HdSETV8=
Subject key identifier: 3F:30:FC:D5:1C:DF:C6:8A:1B:FB:C7:90:8F:EB:17:B0:5C:5C:96:44
Authority key identifier: 42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
Certificate issuer: /CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Certificate serial: 019D37BFF0DCAA9044FF2426798A04845DE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
Manifest number: 07EB
Signing time: Sun 29 Mar 2026 04:00:19 +0000
Manifest this update: Sun 29 Mar 2026 04:00:19 +0000
Manifest next update: Mon 30 Mar 2026 04:00:19 +0000
Files and hashes: 1: 1-Xi8qsCjZ_PQpe6NJ6-T2dzR4GM.roa (hash: zBTP7ZR26XJl8LaBef5EoQw5nxBQyUiQLy+rkLHHEk0=)
2: QlbgyzjNYSXO4U5Jcii4SQodQOk.crl (hash: mPusXrmhfpfs2Q+yWa+XGkcxu43g5YtMsuFbjmEMfiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:bf:f0:dc:aa:90:44:ff:24:26:79:8a:04:84:5d:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4256e0cb38cd6125cee14e497228b8490a1d40e9
Validity
Not Before: Mar 29 04:00:19 2026 GMT
Not After : Mar 30 04:00:19 2026 GMT
Subject: CN=3f30fcd51cdfc68a1bfbc7908feb17b05c5c9644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:22:58:07:0b:67:02:3a:a9:b6:77:52:0e:5f:
c3:61:28:95:21:a8:2e:81:a6:53:0d:f2:71:02:38:
8d:92:48:bc:88:05:f4:ab:26:e4:73:7a:12:df:3c:
18:50:ce:1d:10:a8:82:9c:1f:45:29:b7:9c:92:44:
49:0f:dc:e6:af:aa:91:38:04:36:3e:d4:e3:17:87:
57:35:8e:ff:01:4c:cf:1b:f2:8c:81:a4:39:29:d9:
cb:04:01:01:f8:80:c3:62:ed:d0:df:e5:d2:63:00:
61:a0:17:a0:0f:15:5d:36:11:3f:77:65:6b:f8:79:
2f:1d:64:c2:d9:83:f8:78:ff:17:87:ae:5e:16:5d:
c1:57:6a:14:ba:7e:5d:9f:fc:de:89:82:92:dd:fd:
8f:3d:31:74:36:b1:8b:9b:a6:7e:3c:12:a1:54:81:
a3:b7:90:a3:77:d5:8c:94:c5:5e:93:eb:10:b5:ef:
39:d6:9b:7c:0f:fe:8d:ec:b1:c1:44:6e:02:da:26:
55:8f:53:87:3a:bb:2d:4c:c7:4d:e2:c5:70:c5:38:
3b:05:8e:32:84:a7:df:3c:43:6a:e0:9f:03:a9:10:
3a:2b:9d:e2:d8:d0:e6:78:63:98:69:e0:23:e5:b2:
19:f0:bc:e3:b2:aa:d2:62:7d:33:43:5a:1c:f4:2c:
24:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:30:FC:D5:1C:DF:C6:8A:1B:FB:C7:90:8F:EB:17:B0:5C:5C:96:44
X509v3 Authority Key Identifier:
keyid:42:56:E0:CB:38:CD:61:25:CE:E1:4E:49:72:28:B8:49:0A:1D:40:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QlbgyzjNYSXO4U5Jcii4SQodQOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/c314f4-b1ac-426f-8f21-a5e850b6a1bc/1/QlbgyzjNYSXO4U5Jcii4SQodQOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:fb:18:ff:14:19:d3:c4:5e:bf:9d:33:99:20:76:90:a7:4b:
6b:41:5d:f0:0b:f2:34:be:5d:94:76:f6:d9:99:b1:da:a3:92:
06:29:5f:8b:5a:c4:e6:47:a7:3c:17:6c:17:cd:a7:39:dc:93:
bb:94:28:64:8b:b0:57:29:e8:1d:49:b7:73:f7:37:e5:29:58:
da:0f:01:e5:0e:d8:01:3a:21:7b:c4:72:1d:25:ba:26:0e:8d:
21:85:7c:5c:49:cd:a4:5d:01:58:74:32:dc:3a:c8:13:3b:2d:
f5:7b:fa:0e:6b:d3:58:43:7c:61:a3:42:54:89:56:8b:c5:db:
e6:6d:a4:e8:28:b8:b4:f6:22:90:b0:94:4d:d0:76:1b:ae:9d:
88:1d:bf:19:52:78:bd:97:74:40:de:85:fd:95:3a:47:8a:c2:
62:fd:a6:10:35:99:b6:a8:e5:f6:6b:7a:27:11:dd:29:24:0d:
35:26:c7:9c:da:ba:40:e1:a1:7b:fe:4a:1c:cd:0b:00:0c:00:
d3:94:77:a6:0a:c0:0d:e7:a4:48:2c:6d:f6:27:c8:5b:ed:e9:
2a:bd:aa:6f:38:23:c0:3d:45:dc:8b:e9:62:06:c0:56:4f:5d:
67:51:b6:8d:cd:b9:26:bc:1c:c4:58:ad:7d:b5:02:f9:48:35:
08:98:a8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:12 2026 by rpki-client