Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
File: QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft (raw, json)
Hash identifier: PCSkd38nJAjwYDSw0f104HGiQQ6H3Rj4HBbqDzXPnN4=
Subject key identifier: 19:79:94:71:01:F8:3A:A0:6D:E7:A3:ED:AE:54:72:65:5B:57:79:BC
Authority key identifier: 40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06
Certificate issuer: /CN=405ffc74ae92386afb7ce770f0390e90d4cde306
Certificate serial: 019D38D3243EC2126CD1C9FF7444E4DD9184
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
Manifest number: 04D7
Signing time: Sun 29 Mar 2026 09:00:54 +0000
Manifest this update: Sun 29 Mar 2026 09:00:54 +0000
Manifest next update: Mon 30 Mar 2026 09:00:54 +0000
Files and hashes: 1: QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl (hash: WW3QgNZuanUFN/xnS8Fwi9VUTe+DzaTXJiGWFxuhuEI=)
2: wMAaF9FeE8vQPeGbyh-_gFZr-RQ.roa (hash: U3G2ZKAfz9i+c+9iabqEffqSxjMJIKuTC8d9C/LqbOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:24:3e:c2:12:6c:d1:c9:ff:74:44:e4:dd:91:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=405ffc74ae92386afb7ce770f0390e90d4cde306
Validity
Not Before: Mar 29 09:00:54 2026 GMT
Not After : Mar 30 09:00:54 2026 GMT
Subject: CN=1979947101f83aa06de7a3edae5472655b5779bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e9:de:b1:32:44:94:56:4e:b4:23:3d:74:e9:
22:1c:40:dc:95:20:14:68:81:9d:97:55:88:9b:95:
53:fe:f4:d3:b5:0c:17:d6:c0:2f:8f:04:84:a4:b9:
3c:55:4b:61:c5:74:3f:d8:3e:bd:e1:4c:18:91:0f:
8b:17:f9:84:8e:4d:ef:82:21:00:65:6b:8c:5e:9f:
0c:1a:31:c8:14:34:a7:bc:66:d2:51:ab:89:a3:80:
22:1c:b7:e4:f7:45:d5:96:11:bd:81:ec:da:89:b2:
73:0b:4f:df:08:d4:5f:c1:a0:78:e1:e3:ab:48:ea:
19:03:66:8b:9e:ad:24:68:67:39:88:84:93:dc:37:
5b:a6:b5:b1:12:fc:50:f5:eb:02:7f:13:b1:69:53:
02:12:2c:58:a5:07:09:b9:50:ce:33:82:e0:2f:2f:
d9:a4:ee:2d:18:f7:fd:dc:58:42:60:79:6e:42:92:
d2:89:02:3b:71:6d:c3:8d:72:2b:4a:9b:6f:c8:30:
96:9c:0d:33:91:36:b5:d3:a1:84:99:2f:db:60:c3:
52:79:b9:ac:c0:a5:ef:0e:5b:ae:b6:2d:ff:70:52:
62:0c:65:86:62:1b:71:3a:a1:5a:fb:ba:7b:2c:53:
5c:6a:96:d0:39:af:74:09:4e:f8:27:58:94:e5:f6:
8b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:79:94:71:01:F8:3A:A0:6D:E7:A3:ED:AE:54:72:65:5B:57:79:BC
X509v3 Authority Key Identifier:
keyid:40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:ef:67:64:62:b0:c1:d3:f7:c1:01:99:ed:26:be:fe:09:a5:
6f:b0:0c:25:3d:43:5c:19:ed:19:30:9e:44:90:83:66:2c:a6:
4a:8f:60:d4:7e:7d:ad:38:f2:ab:19:e1:02:46:ec:d3:db:43:
5d:71:0b:5e:02:11:18:da:b6:c3:d6:65:74:d6:9b:3e:84:ea:
bf:89:e9:a6:51:8d:92:72:e0:3e:03:a0:ce:91:81:a5:fb:2a:
aa:89:ea:a1:1d:4a:87:2a:ad:ff:b1:35:b4:cd:b6:30:75:16:
ac:24:a5:74:d1:67:36:d4:f2:34:cb:ef:d7:0f:7b:3f:26:a1:
ee:ff:4b:95:5a:05:54:34:6d:ac:b5:94:82:1c:bd:ae:59:2b:
4f:10:a0:e3:29:e0:2e:8c:ec:2c:38:c6:e9:7c:76:54:90:c9:
63:ab:de:27:97:81:6d:61:f5:0c:92:04:a4:16:22:b1:cc:bd:
1c:b1:04:15:c9:a0:78:7b:ee:61:60:f0:74:e9:6b:d5:e5:4e:
0e:28:e9:a7:77:a2:e9:f0:a6:fa:3e:08:40:5c:a4:3c:df:86:
b7:fd:bb:cc:78:71:ce:eb:36:54:d4:da:0e:e1:a4:7c:74:76:
c0:e6:aa:cd:0b:68:89:ac:1a:4a:c3:8e:03:f8:fc:9a:b1:84:
2c:36:16:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:42 2026 by rpki-client