Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json)
Hash identifier: fayPuFCMEJLC9VkZ/gsCQl/evlzIqAfwQOkWdTiZRvo=
Subject key identifier: 4B:75:16:E5:A7:E7:96:31:70:B3:BC:37:7C:81:6E:85:86:0F:59:CE
Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Certificate serial: 019D371B3E85996CDFA447972C4737E2B16B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 01:00:25 +0000
Manifest this update: Sun 29 Mar 2026 01:00:25 +0000
Manifest next update: Mon 30 Mar 2026 01:00:25 +0000
Files and hashes: 1: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: tFvGzmEDW7siib8tNKCN5wPljTzP1TfekKzqLv5sjuQ=)
2: amR_0Ln3b6oWcaZ7obIng9Z_o0U.roa (hash: tbRCRQaFz7cg1epOgNM5Qx0T+ZaSIikRXHm5/Cmw7WQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:3e:85:99:6c:df:a4:47:97:2c:47:37:e2:b1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Validity
Not Before: Mar 29 01:00:25 2026 GMT
Not After : Mar 30 01:00:25 2026 GMT
Subject: CN=4b7516e5a7e7963170b3bc377c816e85860f59ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b0:e6:f5:cd:32:19:08:b5:89:24:39:3c:66:
be:c9:21:28:ea:65:3d:ae:3e:7a:fc:b7:42:18:a4:
40:0c:0b:fa:af:21:87:a7:03:c9:b1:71:0b:75:89:
68:15:84:86:b0:ab:97:aa:ba:0a:6c:33:9e:ae:40:
df:e9:b8:af:4c:f5:1b:2f:0f:a8:67:c5:11:e1:9a:
35:6e:af:33:15:c0:b2:b6:cd:c5:af:cc:92:55:2a:
d6:c3:87:44:6a:d6:18:10:34:f0:8a:01:5a:45:a0:
2b:98:99:48:ff:cd:dc:24:2d:fb:35:71:48:12:03:
3c:4d:9f:f9:93:0e:9e:5c:f5:c6:c8:83:4a:dc:af:
8c:ea:b6:53:1d:d5:27:95:2a:c9:fb:c3:50:61:0e:
aa:7b:03:2e:eb:fa:3b:84:c6:40:bb:53:7f:18:cc:
eb:05:35:0a:24:07:22:af:45:b3:84:df:96:62:21:
63:31:62:ac:78:8e:4e:c4:d6:a5:69:7a:82:3c:e6:
0e:75:3e:c7:05:0d:c9:ef:4f:1e:e0:35:09:6d:31:
a8:48:e6:de:99:82:a3:23:bf:5b:07:47:74:67:4e:
fd:55:f1:9c:c7:75:73:e3:54:b2:63:12:64:b4:58:
a3:13:36:3a:96:41:84:14:fa:4e:bf:78:dc:d4:2e:
ad:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:75:16:E5:A7:E7:96:31:70:B3:BC:37:7C:81:6E:85:86:0F:59:CE
X509v3 Authority Key Identifier:
keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:3d:e2:ed:ab:6e:72:3f:fb:0d:48:29:a8:3e:70:94:0f:53:
74:2e:42:41:0c:26:9c:d6:a6:96:03:a7:e8:e7:90:29:38:67:
58:7d:a7:42:75:8c:48:74:6e:c4:16:0d:2c:ee:3d:f4:75:f7:
1f:a7:48:51:54:bf:7c:d8:ea:c7:0f:91:2e:9c:a3:1e:a3:8c:
74:26:7e:f6:31:f4:35:68:cb:38:df:e9:48:0d:61:ab:b5:6d:
62:3e:e9:83:16:b6:04:cf:d3:86:b9:d6:ad:c0:02:af:fe:c7:
e5:d4:5a:46:8a:7a:62:5f:f1:a4:2c:7f:27:80:eb:f3:34:cb:
90:3c:f0:5e:ca:03:b2:41:42:8e:50:88:27:9b:92:c1:7e:3c:
b0:d4:f5:36:13:53:fd:6f:cb:a0:8b:d4:ec:e6:d1:2d:f9:3d:
7d:cd:4c:a3:04:27:06:0d:e4:d7:51:4a:ec:72:15:bb:31:bb:
ab:cc:3b:4d:49:27:2a:a5:72:2e:c7:bb:b2:fb:fc:69:f0:03:
10:54:0a:ef:de:c8:1b:fb:f4:8e:63:ba:30:f5:89:85:b8:58:
c6:67:28:bd:0e:d9:e7:d5:3e:e3:ab:49:cb:02:f0:bc:bd:d8:
3b:5e:b6:89:9a:40:26:b0:38:31:f7:96:2f:6c:4c:ff:a5:72:
21:ef:bc:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:37 2026 by rpki-client