Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.mft
File: QA3igTHHO19TIPUdrmwb1Hq4L5I.mft (raw, json)
Hash identifier: I7rXOljdsCWwwX1fTt6950o2w9X810Ch2pjCLuxxe0A=
Subject key identifier: 0E:2D:66:0D:19:92:2B:05:DA:53:C9:E8:14:08:A6:FB:15:7E:59:FA
Authority key identifier: 40:0D:E2:81:31:C7:3B:5F:53:20:F5:1D:AE:6C:1B:D4:7A:B8:2F:92
Certificate issuer: /CN=400de28131c73b5f5320f51dae6c1bd47ab82f92
Certificate serial: 019D382E22EE3DB43D32DEF27B76E549760E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA3igTHHO19TIPUdrmwb1Hq4L5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.mft
Manifest number: 0595
Signing time: Sun 29 Mar 2026 06:00:40 +0000
Manifest this update: Sun 29 Mar 2026 06:00:40 +0000
Manifest next update: Mon 30 Mar 2026 06:00:40 +0000
Files and hashes: 1: QA3igTHHO19TIPUdrmwb1Hq4L5I.crl (hash: N/14iic+l8B0qxlNv20/AjjIFuLBC5iU/kw0bLZp/6o=)
2: lex0MSfafX69jgAmgDrAWYS2f9Y.roa (hash: i/FMA/z6OJZHxVdVZzVnuaqiacIER1savYD4hQ1WM2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA3igTHHO19TIPUdrmwb1Hq4L5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:22:ee:3d:b4:3d:32:de:f2:7b:76:e5:49:76:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400de28131c73b5f5320f51dae6c1bd47ab82f92
Validity
Not Before: Mar 29 06:00:40 2026 GMT
Not After : Mar 30 06:00:40 2026 GMT
Subject: CN=0e2d660d19922b05da53c9e81408a6fb157e59fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a0:30:53:7b:ae:53:2e:35:f1:48:d7:42:96:
95:a8:33:2f:05:90:09:ea:f5:e7:f2:a6:b7:40:fc:
8f:f4:46:63:08:aa:ef:2b:ed:38:37:36:49:11:20:
ac:22:7e:2b:59:9b:35:fb:6e:f1:d6:d5:e0:07:38:
43:21:e6:f3:ba:e7:e0:57:da:20:af:5f:8d:71:86:
89:cc:77:ad:44:b9:d7:d7:c6:e6:6a:92:30:1a:38:
62:f5:ff:94:c4:90:26:94:dd:30:22:e5:02:cc:64:
15:79:d1:78:2e:d7:2d:ab:bc:19:46:b4:4a:cd:31:
8b:85:b7:b2:26:ef:f1:98:47:24:95:d4:57:8b:b5:
04:1b:95:86:9d:1d:b0:db:c8:14:c8:03:85:39:c0:
6f:7d:6c:59:37:08:2b:35:1c:98:28:7b:62:0e:0b:
61:5f:0a:f5:f1:23:38:7a:28:c6:9c:e7:2f:98:90:
98:b5:1b:2d:b1:8d:1f:ad:6d:82:fc:ce:d7:20:be:
2b:93:44:90:da:8d:0d:3a:f9:01:15:e0:a3:a0:ad:
bc:e6:66:73:e2:48:fc:85:57:de:df:01:bd:7d:6e:
32:08:f3:d0:fa:70:17:18:58:d0:93:6d:2d:ea:c5:
d8:df:a9:f3:71:3d:d6:81:20:86:d6:7a:5b:c4:be:
86:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2D:66:0D:19:92:2B:05:DA:53:C9:E8:14:08:A6:FB:15:7E:59:FA
X509v3 Authority Key Identifier:
keyid:40:0D:E2:81:31:C7:3B:5F:53:20:F5:1D:AE:6C:1B:D4:7A:B8:2F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA3igTHHO19TIPUdrmwb1Hq4L5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e797f2-f272-4663-b145-bc6a1b21fd5e/1/QA3igTHHO19TIPUdrmwb1Hq4L5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:5a:0b:fb:0c:83:3d:73:f7:29:ad:ca:79:20:e7:99:80:b4:
1b:32:0b:92:89:f2:5a:c8:12:ad:c0:1c:d6:a7:4b:e7:2a:f9:
39:06:69:4b:d3:6f:2a:72:49:a1:aa:24:78:ef:6c:31:2b:27:
ea:8a:3d:0e:2c:14:49:32:03:05:e4:7b:c5:f0:30:da:e3:2a:
4c:82:40:73:b4:d5:b3:76:e3:72:18:fb:97:69:81:22:f4:fd:
4a:40:72:53:5e:23:75:13:4d:42:aa:e4:6d:4c:2f:56:09:09:
b9:fb:d0:80:da:11:c5:df:94:5a:19:66:a7:1a:f8:4f:51:25:
ae:1f:29:03:cc:9d:20:08:77:53:53:80:09:7b:25:79:aa:2f:
1e:43:12:3d:46:55:e4:52:29:d9:53:50:d8:e4:c8:31:ad:fd:
b6:06:9b:19:73:a4:85:ef:87:7a:ee:38:d6:c3:47:50:06:55:
2d:73:2e:8d:d5:0e:46:03:3e:ed:c0:02:e8:03:d6:02:13:52:
73:03:1a:d3:f7:d5:17:16:72:a6:4b:ae:62:07:fc:bb:bd:51:
14:35:45:58:39:45:c3:d4:17:46:9a:f9:70:3c:36:82:61:86:
24:69:69:bd:12:6d:4f:68:cc:30:86:d8:ac:45:24:87:7d:dd:
15:f0:d8:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:42 2026 by rpki-client