Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
File: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft (raw, json)
Hash identifier: I0DDDu/NvyDaMfnGvzuNdK563RylO62ID80t+5nOXKg=
Subject key identifier: E8:B9:FB:40:0F:45:86:85:72:72:5F:2C:10:0D:D5:D9:6D:58:E5:4D
Authority key identifier: 42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
Certificate issuer: /CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Certificate serial: 019D3977ED82FFB0006E9E67B65FFB7093FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 12:00:54 +0000
Manifest this update: Sun 29 Mar 2026 12:00:54 +0000
Manifest next update: Mon 30 Mar 2026 12:00:54 +0000
Files and hashes: 1: QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl (hash: 2q1wSkECRuWBwOVnnB94MICH7IHdeIUnFK+B3dtS2Eg=)
2: Qx55ZZjEUo3STaLz-yeXRfFXd6U.roa (hash: H6SY2nIdu7L2TEJH4MdS8DA2eloYCGNuqXlJqZac4sw=)
3: vuIHlCo4UFDYBSAD5tytHEhhhAY.roa (hash: hMc0m1Zi/iK2n4XsoGvD9oSD37NqfaVTNmYIxARhpew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:ed:82:ff:b0:00:6e:9e:67:b6:5f:fb:70:93:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4214088c77bd12687fd4ba9fe3159ea805888ed2
Validity
Not Before: Mar 29 12:00:54 2026 GMT
Not After : Mar 30 12:00:54 2026 GMT
Subject: CN=e8b9fb400f45868572725f2c100dd5d96d58e54d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bb:2e:1b:2b:89:b9:55:19:9a:9c:c2:4f:79:
0a:d0:6d:96:c7:f9:17:13:1e:1e:c7:9e:09:e9:6f:
46:ee:5d:12:c4:f7:be:77:db:e1:46:3d:55:58:c2:
87:22:04:1e:f2:6e:2f:37:e8:a5:4d:0f:d2:60:ca:
72:82:8c:8e:4e:c2:07:82:7d:64:af:03:6f:52:a9:
b4:0a:43:8f:68:33:50:6b:e9:44:26:e2:08:81:e9:
94:6b:61:72:4d:54:81:f7:b6:96:95:c2:e0:d0:29:
51:06:57:0b:dd:34:58:78:16:3d:11:10:e8:3b:37:
b7:47:4d:4b:41:92:3f:55:8c:cd:c3:38:44:e6:eb:
59:1d:a2:26:c4:59:dd:96:9b:00:26:9f:9a:e8:cb:
05:f6:86:b6:fb:2e:7d:37:75:6a:48:74:e0:53:b3:
37:0b:e8:97:f7:56:c4:0f:ec:5b:1e:9f:2b:b5:83:
a0:3a:b7:f4:62:a4:fa:0e:c5:51:e3:a2:2f:a5:79:
78:5b:b3:1e:7b:f6:44:f8:86:ae:e8:8d:bc:5c:46:
54:6f:a6:ae:56:e5:fb:fa:2b:71:97:48:e1:e5:92:
af:1a:54:7e:85:a3:bb:46:93:d6:4a:04:9b:ed:d7:
e5:25:8c:08:38:8a:14:b8:18:79:6b:34:6e:6e:7f:
43:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B9:FB:40:0F:45:86:85:72:72:5F:2C:10:0D:D5:D9:6D:58:E5:4D
X509v3 Authority Key Identifier:
keyid:42:14:08:8C:77:BD:12:68:7F:D4:BA:9F:E3:15:9E:A8:05:88:8E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/bb5ece-012e-4194-9980-7e21db5a2ef9/1/QhQIjHe9Emh_1Lqf4xWeqAWIjtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:e2:b3:32:a4:05:d9:f3:cc:ce:56:a2:60:1d:28:19:2f:da:
66:75:75:ff:ed:03:ac:9d:21:85:51:28:35:c1:6f:de:2f:21:
ce:93:ce:03:b8:17:bf:65:c1:ac:0d:cb:e4:88:7f:0b:b9:1b:
2c:ef:13:9f:a3:df:93:b2:d9:99:10:f5:e4:74:87:5c:25:90:
0c:bb:11:da:9c:63:2e:ca:5c:f1:a7:10:e9:f0:99:e5:df:6f:
15:4a:fa:cc:8b:d0:f5:87:8e:0a:67:93:5a:cc:c0:de:04:94:
c2:33:53:51:52:59:5a:f1:ed:6b:a1:04:bd:4c:a7:7c:50:90:
ce:97:73:03:82:98:3e:7e:03:6c:b9:29:7a:a1:97:d6:31:4b:
44:1f:4e:aa:a3:57:a0:49:a2:dd:c4:7d:d3:4c:d9:bc:dd:02:
cf:6b:a5:8f:eb:87:2e:4e:92:24:26:37:cb:e0:17:d1:0b:1a:
77:05:28:90:e5:57:a2:c9:e1:40:98:58:c4:e3:15:cc:62:86:
e3:1c:7c:55:0b:5e:f5:46:96:d3:97:02:09:d7:bc:5f:0c:a1:
79:1c:cd:99:b3:3d:13:18:29:96:56:75:64:23:b7:a6:ba:4a:
ae:e8:a1:9f:9e:5f:46:4c:cf:7a:d3:8e:69:3f:d8:80:9d:79:
37:e5:a2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:35 2026 by rpki-client