Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
File: QHShwDg61esPBYjkwzlLo0AQpiE.mft (raw, json)
Hash identifier: jnfhXq5HuzFowv324MaS2Bzm195RbWHY/RJ2fjaYOos=
Subject key identifier: E0:5F:54:20:AA:9E:EA:48:4D:47:82:D3:18:17:F2:22:FE:AD:0C:C1
Authority key identifier: 40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
Certificate issuer: /CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Certificate serial: 019CC7BDF8ED0D6F6CF18DBBDB8BBC0E451E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
Manifest number: 1857
Signing time: Sat 07 Mar 2026 10:00:41 +0000
Manifest this update: Sat 07 Mar 2026 10:00:41 +0000
Manifest next update: Sun 08 Mar 2026 10:00:41 +0000
Files and hashes: 1: QHShwDg61esPBYjkwzlLo0AQpiE.crl (hash: xquCOyOOe5ZPAo76/xixBVosKJ8w6PXOkFfcrP1jg6M=)
2: UuOnxKKINXGrGno4BgqG1wRiVJE.roa (hash: qOk1balDAYueDzPokwNkuPz8mml9IxTXWfQ4Usp7bxE=)
3: lWaDtpARbUJ2WwQgVuDOZ2ytV1Q.roa (hash: jLR4Kee9nPopi72xWjqK7/G5TtGJxgI8fqStb9xXKYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c7:bd:f8:ed:0d:6f:6c:f1:8d:bb:db:8b:bc:0e:45:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a1c0383ad5eb0f0588e4c3394ba34010a621
Validity
Not Before: Mar 7 10:00:41 2026 GMT
Not After : Mar 8 10:00:41 2026 GMT
Subject: CN=e05f5420aa9eea484d4782d31817f222fead0cc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:31:80:61:e3:b0:9c:59:3b:ee:c0:e5:15:a1:
1f:d6:79:44:9a:25:49:ae:01:7a:e0:9b:c0:ea:ce:
9d:0d:10:d2:27:f8:b9:1a:5a:b2:3e:01:d6:1c:0b:
45:37:fd:37:78:97:e5:f9:46:d7:50:f7:a3:70:8c:
78:2a:7f:2c:a4:1a:f8:c9:51:44:91:f0:84:32:fa:
91:7c:1d:a5:ca:a9:b5:55:00:2d:3d:4c:ce:2d:3a:
1b:18:84:36:69:55:cf:f9:65:49:a3:b5:b8:4e:f4:
e4:c4:99:76:d6:17:0f:01:da:b5:e0:a3:8c:6a:e4:
ad:1e:ac:c8:b8:fd:cb:37:1a:22:bd:43:16:c3:41:
d1:ef:84:a0:d9:e0:a9:38:7a:5d:a4:bd:d6:68:6b:
87:dc:78:af:e5:c7:6e:cd:4e:06:51:16:c7:a1:cf:
fa:99:cc:ff:26:a1:3c:97:ce:f8:d0:07:59:10:7e:
f3:83:8e:7b:d2:06:0a:d8:53:39:bb:d8:f5:0b:f3:
89:65:92:3d:d0:88:26:fa:6c:9d:a3:2f:0a:19:41:
7a:40:d5:3f:63:7d:cc:70:70:1a:b8:ba:4a:50:92:
c4:db:3e:91:79:de:2d:3a:59:48:2a:cf:e2:2d:80:
43:1f:73:20:79:48:f7:57:e8:af:19:c5:dd:27:0d:
f1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5F:54:20:AA:9E:EA:48:4D:47:82:D3:18:17:F2:22:FE:AD:0C:C1
X509v3 Authority Key Identifier:
keyid:40:74:A1:C0:38:3A:D5:EB:0F:05:88:E4:C3:39:4B:A3:40:10:A6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHShwDg61esPBYjkwzlLo0AQpiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/304aaa-4ce5-4065-b073-26c3365153af/1/QHShwDg61esPBYjkwzlLo0AQpiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:5a:c6:22:99:5a:65:9e:ab:d6:c5:78:7b:ed:59:cc:ed:dd:
99:87:45:20:cf:d5:1c:9a:8c:cc:57:ea:c9:82:41:9d:57:53:
c4:23:a2:4f:d8:ba:cf:38:99:1c:4e:61:7f:b0:9c:d0:5a:3c:
28:f4:be:36:d7:1a:4a:b8:7d:b7:fa:15:62:fa:17:47:8f:92:
41:e9:52:02:8e:70:08:e0:bc:c3:b7:c5:94:4d:91:b0:77:4f:
2a:f3:ba:e6:a9:da:dc:ec:8a:4f:98:35:ba:e9:20:59:1e:28:
7f:dd:43:49:ad:ff:91:73:aa:96:74:09:a1:de:0f:88:ab:05:
c6:20:1d:5c:27:3c:40:13:9b:05:a0:91:3a:a0:3e:e7:20:05:
17:8a:16:cc:bf:a6:0e:29:4b:ac:9b:a8:81:cb:ae:5d:bf:38:
77:cc:fc:8f:bc:13:a8:3e:69:af:9f:d0:a0:db:fb:2a:10:3c:
2f:30:c4:98:12:79:cf:7a:3e:d1:fc:d5:cc:69:9c:00:56:b3:
be:45:a0:c7:9a:83:11:3e:35:67:64:c2:89:ed:2f:57:1b:2a:
ea:cf:de:02:6b:9d:a3:16:88:c7:bd:f5:e2:01:9f:67:b5:4e:
d4:e1:bf:68:1a:f6:18:73:06:ec:7c:c3:7d:a4:f5:eb:60:d0:
61:fa:2c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 19:18:29 2026 by rpki-client