Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
File: QGHbehW9JPvKFGzRLMcNQTnIW58.mft (raw, json)
Hash identifier: eqapuLeOJ6ecSvPJzP1ed483ZKamQB8eGyO8istZRIw=
Subject key identifier: C6:F6:AF:11:1A:AD:DB:C5:B2:C8:CD:59:AA:70:88:4F:5F:3B:97:DF
Authority key identifier: 40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
Certificate issuer: /CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Certificate serial: 019D371BF64392C78FCE8E02DDCDC54B0C64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
Manifest number: 185B
Signing time: Sun 29 Mar 2026 01:01:12 +0000
Manifest this update: Sun 29 Mar 2026 01:01:12 +0000
Manifest next update: Mon 30 Mar 2026 01:01:12 +0000
Files and hashes: 1: Pz1ijF7NvXZpwroWfDzmV2z1wts.roa (hash: 2MVgLGXOwFf2G7MSkrktFH0ASrpgVLNSAdBfzn0r5Z8=)
2: QGHbehW9JPvKFGzRLMcNQTnIW58.crl (hash: uaH1EzsWG+x6kceni9T+TEiF64EjrovsLh7WQ+Cq0Uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:f6:43:92:c7:8f:ce:8e:02:dd:cd:c5:4b:0c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4061db7a15bd24fbca146cd12cc70d4139c85b9f
Validity
Not Before: Mar 29 01:01:12 2026 GMT
Not After : Mar 30 01:01:12 2026 GMT
Subject: CN=c6f6af111aaddbc5b2c8cd59aa70884f5f3b97df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5d:c5:23:1a:ee:c5:4d:53:78:59:6e:8e:15:
d7:89:d3:2d:21:0a:65:31:35:12:bb:4c:0f:7b:0b:
c0:4a:4c:6f:3d:ea:ad:ab:30:f2:5a:a8:c7:50:19:
ef:a4:1b:3e:85:13:91:29:75:e3:ef:a9:02:e1:98:
5d:40:2f:6a:50:d1:23:5f:7f:31:3b:ce:a3:f6:53:
a0:56:b0:fa:48:90:90:11:ec:be:b2:a7:03:59:65:
3b:3d:71:50:60:81:c5:a7:03:0d:93:cf:ba:be:e9:
4d:41:45:b9:77:1d:01:09:42:80:d6:14:00:18:f2:
7d:28:28:71:84:ee:74:fb:47:86:43:f1:9e:95:40:
6b:df:99:54:78:95:19:a1:48:09:d9:6e:32:2b:69:
a4:cd:77:b1:97:1c:e2:39:31:6e:21:05:20:b2:59:
98:70:dd:4e:6e:07:a3:64:46:8d:ab:5f:ff:02:90:
6b:bc:47:3d:f7:5e:e9:cb:35:cd:f5:4b:2c:e3:76:
2d:4f:25:7e:f0:bd:72:4b:44:40:3b:09:ee:02:66:
24:69:65:92:52:50:a0:43:d1:62:ba:27:8f:00:57:
20:b9:72:b7:a4:2f:6f:0a:a9:be:63:7a:08:02:63:
0d:dd:42:24:79:42:1a:66:61:ca:ef:4a:b6:1a:35:
91:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F6:AF:11:1A:AD:DB:C5:B2:C8:CD:59:AA:70:88:4F:5F:3B:97:DF
X509v3 Authority Key Identifier:
keyid:40:61:DB:7A:15:BD:24:FB:CA:14:6C:D1:2C:C7:0D:41:39:C8:5B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGHbehW9JPvKFGzRLMcNQTnIW58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/004c3b-aa3f-4d8b-826f-199d14c06bcb/1/QGHbehW9JPvKFGzRLMcNQTnIW58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:02:81:97:5c:5c:7b:56:b5:25:b2:b2:38:37:8e:8f:03:08:
84:3d:49:7e:de:72:23:34:2e:28:0c:a2:83:1c:9a:57:5f:19:
d4:7b:b6:86:36:b3:3b:3a:fa:5e:63:6e:5d:62:bc:79:93:f7:
5a:07:da:77:f1:73:41:ef:43:06:97:a6:3b:1e:04:b4:d8:7f:
74:f7:42:3b:a5:20:cc:17:a1:55:68:66:c9:21:40:df:75:b6:
90:b6:7c:24:68:6f:fa:82:3c:0a:44:bb:9d:60:b7:15:95:ee:
67:df:da:73:50:7a:af:88:27:27:06:e3:b7:76:62:2e:03:ca:
ad:4d:3e:a2:c5:c3:26:49:33:4a:6c:ab:28:c1:3c:77:98:dc:
15:87:8e:80:b2:0a:04:57:e5:82:5b:76:f9:4b:e6:5e:2c:6d:
72:db:c0:67:a9:6f:cc:6d:5d:1a:fa:be:b9:7a:83:05:79:35:
55:b5:4c:79:9a:bb:76:62:68:8e:57:93:36:c7:61:20:fc:9e:
5d:77:e5:98:b7:45:ad:a9:b8:dd:3c:99:fa:d0:72:2e:36:67:
27:9f:51:db:3a:df:ca:89:6a:85:f7:00:6f:12:6a:93:79:02:
20:07:d3:27:5c:a0:b6:b3:3c:07:43:23:e9:04:dd:28:5d:50:
69:f7:93:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:35:12 2026 by rpki-client