Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft
File: qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft (raw, json)
Hash identifier: gX6VB9ZxXxUn/XBTzYdEp4wWOvZeqtiEiATe8CNAmS0=
Subject key identifier: AE:80:80:89:82:5D:43:D9:01:BA:DA:75:31:00:5D:6E:59:15:F5:81
Authority key identifier: A9:24:0F:02:7A:94:09:22:9C:59:FF:63:0A:A2:A8:0F:93:78:A9:3F
Certificate issuer: /CN=a9240f027a9409229c59ff630aa2a80f9378a93f
Certificate serial: 019D3977E43A388A0B0DBB5379DA37AD9C1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft
Manifest number: 13E2
Signing time: Sun 29 Mar 2026 12:00:51 +0000
Manifest this update: Sun 29 Mar 2026 12:00:51 +0000
Manifest next update: Mon 30 Mar 2026 12:00:51 +0000
Files and hashes: 1: qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl (hash: g8dc65PCC4Qsy5ccPt5Vxq3rpkmtHUF78dkflF+UF80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:e4:3a:38:8a:0b:0d:bb:53:79:da:37:ad:9c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9240f027a9409229c59ff630aa2a80f9378a93f
Validity
Not Before: Mar 29 12:00:51 2026 GMT
Not After : Mar 30 12:00:51 2026 GMT
Subject: CN=ae808089825d43d901bada7531005d6e5915f581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4a:37:de:0e:9e:e0:e5:5c:ae:4e:2e:d0:d8:
f6:10:cd:46:f9:82:eb:6b:d0:ef:92:f5:17:46:40:
fe:df:a0:75:d1:bb:ff:0f:3d:31:3d:db:94:00:2a:
98:a8:c0:6a:5a:2e:a0:29:1b:30:ca:5d:3a:c1:1b:
47:2b:c4:f7:06:4c:06:a3:5c:cb:ed:71:e8:e1:e2:
10:d2:ba:13:59:e0:45:aa:18:6c:2a:8a:be:4a:86:
47:82:c0:f7:ca:5e:71:8e:ad:01:86:03:31:33:5b:
60:f3:d2:dd:2e:0f:84:1f:9a:cd:16:38:31:68:71:
d5:2a:db:3b:92:04:98:4c:fe:ff:4e:7c:f9:a3:ec:
c6:02:ff:ec:5b:1d:dc:f2:6d:7a:92:c2:7c:28:02:
cb:a9:99:38:f8:3d:d9:e2:09:7c:3d:50:b0:aa:34:
f2:6d:d8:5a:17:6d:b7:47:90:a3:2a:fa:4c:89:ca:
d4:ae:f1:66:eb:93:3b:85:ee:05:bb:1b:9e:aa:8e:
a2:fd:ca:95:73:73:88:d4:00:38:76:16:d1:70:46:
ea:16:1c:1c:70:17:50:69:41:81:75:8e:8c:2c:88:
fa:2b:09:c9:04:32:a9:4e:b6:18:6d:75:a8:9b:40:
0f:0e:fa:8d:39:1c:aa:f4:49:04:09:6c:f8:1d:18:
ad:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:80:80:89:82:5D:43:D9:01:BA:DA:75:31:00:5D:6E:59:15:F5:81
X509v3 Authority Key Identifier:
keyid:A9:24:0F:02:7A:94:09:22:9C:59:FF:63:0A:A2:A8:0F:93:78:A9:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:ed:02:82:21:da:d8:38:14:ad:ab:97:67:8a:5f:c8:ab:7c:
4f:19:43:20:80:71:98:a4:ea:05:6d:dc:08:71:6d:6d:e9:30:
39:44:cf:38:62:ea:53:1a:fd:b6:a2:f0:e7:57:a5:e7:1c:ff:
bf:77:9d:3a:14:39:94:a6:7f:49:7e:f9:17:ea:e0:6f:46:7c:
04:cf:37:e9:b0:59:1a:98:61:8e:c7:1b:eb:42:f8:b7:1a:5a:
b0:c9:58:ff:e0:73:a2:22:e7:ed:f2:5f:4b:2c:c5:95:ea:53:
5f:17:c9:df:fe:8a:1c:09:c2:d0:04:d8:72:f4:fa:3f:c8:e9:
25:65:5a:ae:56:5e:36:49:3e:af:08:00:53:26:da:84:be:fe:
d3:bf:14:ac:e7:5a:a1:43:86:ff:2d:64:34:bc:a4:de:0d:72:
2d:b2:62:2d:38:a9:1b:2f:fc:5c:8a:a2:9c:b7:0b:95:7c:44:
69:92:2b:0e:6e:ca:ff:ae:9d:8a:24:01:6c:e0:ce:ca:08:08:
0a:34:ea:26:c8:79:77:ef:61:97:24:47:95:f3:b9:f7:80:56:
08:a9:13:f0:af:49:53:8e:6e:32:3b:e9:50:55:b8:cb:90:19:
f7:fe:f6:40:1b:63:1a:4f:4e:ea:2a:50:e8:62:d9:4c:53:b8:
de:fb:d3:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:24:34 2026 by rpki-client