Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json)
Hash identifier: WsxO0q6v38tUQ9e+N5y0OllwR9VVe1lxZVjDSuqbUfg=
Subject key identifier: 62:B7:64:77:1C:81:14:A7:F3:28:7D:6E:8B:07:27:E8:62:EF:DA:67
Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Certificate serial: 019CE3356779FA1BDCA0C333C92F0FA5B3C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
Manifest number: 04C0
Signing time: Thu 12 Mar 2026 18:00:53 +0000
Manifest this update: Thu 12 Mar 2026 18:00:53 +0000
Manifest next update: Fri 13 Mar 2026 18:00:53 +0000
Files and hashes: 1: TPinzjQGStjo9WplkE5Cz7wKV1E.roa (hash: PHy3g+7P0F5Q3MN1sN50m0Ft2cJh+htWlf3pquiUF5Y=)
2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: EN7YcFykiYpF9JHJC6u94MaW9607NnHe+1JWUXdSukg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 15:04:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:35:67:79:fa:1b:dc:a0:c3:33:c9:2f:0f:a5:b3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Validity
Not Before: Mar 12 18:00:53 2026 GMT
Not After : Mar 13 18:00:53 2026 GMT
Subject: CN=62b764771c8114a7f3287d6e8b0727e862efda67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:44:32:2c:13:55:b7:2a:8d:65:3d:9e:60:8d:
9a:ad:d9:47:52:94:d4:3f:fb:02:13:37:d6:bd:8c:
08:61:8c:c5:4a:d5:42:23:1e:7d:20:1c:41:2f:70:
8b:62:4d:04:22:4b:7f:54:4f:ec:d9:5b:07:70:3d:
c1:ea:e8:04:ad:35:d8:2c:5b:34:27:32:68:3b:d5:
d1:62:ec:60:96:63:1d:1f:99:ab:87:b1:5f:3c:40:
dd:6e:e2:6e:ce:df:fb:ba:42:7d:3f:35:e8:79:0b:
ce:25:68:c5:7f:f4:97:49:d4:ed:40:e0:8b:c4:d3:
f1:65:65:a7:02:b4:6b:f6:0a:8d:35:4f:63:ef:5c:
d6:c3:24:36:53:00:34:2c:09:97:58:6f:ba:3a:52:
ca:5e:90:e7:48:96:7e:5c:20:09:c6:82:44:bd:78:
9e:32:7a:22:20:82:c2:69:c8:e4:89:3d:83:25:9a:
6d:80:1f:e6:03:2f:f0:21:24:5f:8e:3f:fe:18:3e:
ca:93:24:b0:3a:2e:7f:dd:a0:e7:48:3d:41:24:c1:
1a:16:a8:de:1f:77:62:26:5f:60:83:51:6c:c9:0a:
8f:c5:be:63:b9:39:c1:91:e4:9f:f3:19:4f:ae:2d:
33:0a:56:2b:59:7f:7b:79:b6:f7:dc:ff:b7:81:39:
bf:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B7:64:77:1C:81:14:A7:F3:28:7D:6E:8B:07:27:E8:62:EF:DA:67
X509v3 Authority Key Identifier:
keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:e3:bb:5a:43:9e:79:4c:d7:3c:31:c7:26:01:8b:cc:4b:f0:
53:f5:87:ed:66:de:38:d2:3f:1c:29:91:6a:f2:a7:77:4e:e1:
39:13:e8:e6:f1:25:2f:bb:f4:a6:c7:aa:f2:a1:f0:2f:90:6b:
83:39:a0:61:12:75:4a:21:d0:70:49:cb:5f:cc:97:01:58:f5:
db:8b:ed:e0:5f:a1:5d:91:87:9f:01:46:78:fa:fb:9a:6a:4c:
66:0f:2e:47:76:3c:50:7b:91:29:cd:59:07:cc:8c:e1:d5:ed:
f5:bf:f9:8c:46:1a:62:ff:eb:8c:cc:ca:37:97:44:70:eb:8e:
be:f4:1c:85:bd:7d:66:f6:2c:24:8e:42:ab:6c:55:07:30:1a:
b5:c3:52:21:37:f2:4d:25:5e:9a:11:a2:19:37:96:4c:38:d6:
ff:f2:6d:8f:10:53:70:2b:84:6c:58:fa:39:74:d4:23:20:b4:
96:2e:fb:76:68:36:d3:73:50:ea:22:bb:89:2d:b3:76:0b:2c:
c1:01:46:69:4b:1d:fa:7a:07:6e:a3:c5:ce:7f:8b:38:f8:f2:
8a:6c:4b:fc:ad:e5:6c:c4:f9:ce:59:d3:91:fc:25:e5:5f:1c:
f8:c6:aa:31:6a:e6:d7:df:f2:33:1f:9f:f4:1d:29:95:0f:9d:
67:d2:49:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 21:29:30 2026 by rpki-client