Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
File: QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft (raw, json)
Hash identifier: Pbo2gywocZaIu7NhIn3ZhELPERGjXv1xcjF+NLKDcdU=
Subject key identifier: CB:B9:09:65:7C:DF:97:4C:84:21:A7:0E:4E:D0:87:66:D9:48:4C:B9
Authority key identifier: 43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
Certificate issuer: /CN=431c57e1921d31a34aebd12e507a136fe04598c6
Certificate serial: 019D389C6859C6A3C9B4B812B5B5B97C3B85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
Manifest number: 064C
Signing time: Sun 29 Mar 2026 08:01:07 +0000
Manifest this update: Sun 29 Mar 2026 08:01:07 +0000
Manifest next update: Mon 30 Mar 2026 08:01:07 +0000
Files and hashes: 1: QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl (hash: m4RBwr5OSpOtFIemwlq/CwV3rHuQ0ObNdCDu7tJHrLw=)
2: mIEKfqcwzKGnUqM9s4OdPs7YrbA.roa (hash: buVxIPz10EIVfwpYwh+P1ZYqWF3K+n7bUAR0sR0jGqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:68:59:c6:a3:c9:b4:b8:12:b5:b5:b9:7c:3b:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=431c57e1921d31a34aebd12e507a136fe04598c6
Validity
Not Before: Mar 29 08:01:07 2026 GMT
Not After : Mar 30 08:01:07 2026 GMT
Subject: CN=cbb909657cdf974c8421a70e4ed08766d9484cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ae:47:b1:6a:e5:21:b4:12:8f:5f:cb:8f:fa:
a3:9b:bd:5b:2f:06:b8:88:7d:13:eb:b4:4e:ca:b0:
31:68:0f:01:a7:d7:81:72:01:2b:e8:20:42:a2:fb:
1a:d1:75:c1:62:93:2b:18:aa:9c:81:29:da:81:c4:
46:5d:0d:9b:32:f9:b4:67:dc:ff:a5:fe:1b:18:23:
55:25:b4:81:11:53:09:00:3b:0e:19:aa:7d:41:65:
38:1c:7c:64:3f:91:07:63:f2:a7:e8:bd:1a:c4:95:
e8:e9:f3:c8:65:67:7a:f5:1b:70:ee:7e:03:41:ab:
aa:9d:f2:e2:5f:d9:d1:dd:fa:f7:f0:20:a6:5a:af:
04:88:60:6c:bc:d9:a4:15:e7:52:99:71:82:7a:1e:
cd:21:67:ad:7c:e6:e8:5a:0e:65:34:0a:bd:41:5d:
d3:91:12:ef:55:3b:45:b5:87:5e:13:64:af:da:09:
0d:6b:41:82:05:56:78:b6:5e:6c:da:8c:e7:d1:64:
4c:5b:e1:e2:b7:fa:90:0d:85:0c:6d:5f:3a:7c:3a:
f7:ee:34:c7:2e:54:73:e9:d2:19:6e:ef:e5:a1:8e:
c5:f4:67:a7:61:47:85:47:fd:f4:17:6e:74:d1:20:
b0:f2:47:45:b1:05:40:5d:61:8d:93:e3:e6:bf:83:
84:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B9:09:65:7C:DF:97:4C:84:21:A7:0E:4E:D0:87:66:D9:48:4C:B9
X509v3 Authority Key Identifier:
keyid:43:1C:57:E1:92:1D:31:A3:4A:EB:D1:2E:50:7A:13:6F:E0:45:98:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QxxX4ZIdMaNK69EuUHoTb-BFmMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/0f1aaf-b173-4ce1-bcba-cc353ebacba6/1/QxxX4ZIdMaNK69EuUHoTb-BFmMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:ec:24:8e:c8:9c:3e:82:c4:c5:aa:39:5d:32:b2:dc:ac:14:
16:7d:6e:3a:4d:72:0f:77:7b:63:76:ec:cb:04:3f:d9:e8:59:
99:17:29:5d:ce:df:a4:7d:52:1e:bb:67:8d:5d:e4:05:31:24:
1c:2d:8f:b5:1f:ac:60:75:8a:be:ea:24:a9:76:70:b2:86:b3:
18:93:36:51:a1:f2:d0:f5:67:b1:df:1e:02:d2:d5:44:80:c7:
5b:dd:0c:a7:ef:57:2c:9e:3c:07:54:df:5c:b5:bd:ef:31:20:
a8:7d:9e:08:0f:62:12:bc:60:86:fd:ab:da:8a:95:0e:25:36:
80:05:b6:ea:f4:64:21:07:b3:1e:ea:74:dc:75:7b:97:e9:a2:
d7:c1:da:bf:4f:45:1f:43:17:0f:31:35:08:4d:46:f3:c3:25:
61:a0:55:86:bc:8a:57:33:e0:a6:4b:2a:d2:7d:e4:3e:3f:d2:
19:3a:54:17:5a:c3:93:ae:b5:53:fd:62:64:a3:ce:d5:6d:cb:
de:f9:4c:07:47:94:82:6f:02:04:b6:62:2e:90:e1:31:56:ea:
a7:0c:39:6c:99:e8:0a:32:02:a0:df:5b:cc:9b:64:d7:97:6f:
cc:65:91:c5:1d:1c:99:e7:fb:01:2a:87:2e:22:1a:43:91:26:
91:89:4e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:06:13 2026 by rpki-client