Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
File: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft (raw, json)
Hash identifier: devy7Xfmp75L6aGp+PGEvimEoCjRs9D7QUmdapKZSe0=
Subject key identifier: 29:F0:31:85:AC:A9:8B:DF:6A:1B:AD:3F:71:00:B2:B8:92:AD:73:37
Authority key identifier: AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4
Certificate issuer: /CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4
Certificate serial: 019D382E8479D933B7E646CFB1E2AF9FB41D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
Manifest number: 0A3C
Signing time: Sun 29 Mar 2026 06:01:05 +0000
Manifest this update: Sun 29 Mar 2026 06:01:05 +0000
Manifest next update: Mon 30 Mar 2026 06:01:05 +0000
Files and hashes: 1: QRd4aPFV9jlBuWiqVWId4f78nwU.roa (hash: z76kR0ZXpWXElfaEyx2j2tbap+nSUCRwRkiT2NmSfmM=)
2: qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl (hash: fORTlpjb/B+NDl/ffl6LdR/9hgdy1QnwYBBjCKfN+5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:84:79:d9:33:b7:e6:46:cf:b1:e2:af:9f:b4:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4aac1948cee23ddf4d715f803522f93b0cddb4
Validity
Not Before: Mar 29 06:01:05 2026 GMT
Not After : Mar 30 06:01:05 2026 GMT
Subject: CN=29f03185aca98bdf6a1bad3f7100b2b892ad7337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6d:cf:9b:b8:98:7f:2c:ea:7b:a6:d7:1e:52:
24:9d:5f:5c:58:cb:8a:3c:61:8a:8d:c9:fc:35:38:
1d:6c:ed:61:ee:19:83:9d:26:87:5e:1c:e5:d7:46:
49:18:84:8a:4a:6c:1b:ee:43:0b:26:e0:11:17:ae:
b8:7c:88:b0:1b:fd:66:a9:02:b1:d7:b3:dd:60:63:
1b:88:35:a0:28:80:36:3e:b1:4b:8c:67:82:4d:95:
9c:bd:71:16:de:22:36:b8:81:f3:3b:ff:cd:3c:af:
18:5a:0e:55:1c:9b:2d:98:ab:9b:dd:b6:e0:bb:3d:
08:d0:f1:30:ed:73:80:97:58:ae:0a:73:1f:f0:1b:
eb:74:bd:e2:c1:12:64:1f:7b:71:fd:2c:40:93:df:
d3:60:40:43:e9:59:04:89:a7:58:93:c9:62:f1:75:
3e:b7:35:a7:df:38:2e:d8:5f:2e:87:f2:6f:7d:05:
7e:95:ca:5b:2b:88:6a:0e:8e:7a:a9:0b:fd:75:92:
58:06:4d:66:df:c1:1a:d4:69:92:d6:cf:c7:4f:ba:
ca:5f:8e:1c:e5:c8:3b:e0:6e:4a:e8:0f:a7:b0:13:
4f:73:b1:9c:99:7e:65:6f:3f:08:a0:c4:a8:fa:94:
3c:a5:a8:30:02:30:57:30:02:81:a7:b7:75:c4:a5:
53:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F0:31:85:AC:A9:8B:DF:6A:1B:AD:3F:71:00:B2:B8:92:AD:73:37
X509v3 Authority Key Identifier:
keyid:AA:4A:AC:19:48:CE:E2:3D:DF:4D:71:5F:80:35:22:F9:3B:0C:DD:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/06b241-6de7-485c-98ae-f9bd64ca6e4c/1/qkqsGUjO4j3fTXFfgDUi-TsM3bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b7:41:fc:7a:5e:6b:82:50:ba:72:d6:fa:fd:b4:d6:da:71:
fb:df:9f:b2:65:84:82:93:54:6d:2f:2b:a5:74:f5:19:52:3b:
7c:0f:b2:bc:70:33:de:2b:ee:93:19:a6:79:0c:0f:50:8c:62:
80:29:08:5b:ef:11:1e:cf:0b:52:99:b6:ef:a1:3e:41:95:a7:
92:e6:35:79:ac:9a:34:66:21:13:df:3a:ac:33:b2:2b:f1:ce:
15:8b:4d:60:2e:20:cb:c8:e9:84:3d:cf:4b:2c:e4:8a:c0:e1:
18:31:8b:30:33:ef:88:f6:ad:7f:e9:98:21:4c:f3:82:32:42:
4a:58:29:8e:3d:43:dc:a2:4f:70:5e:c1:3b:59:42:7b:77:87:
14:c7:b4:d0:03:4c:66:f8:34:53:03:4d:55:68:86:f5:11:4e:
6a:bb:32:b0:38:0d:95:a4:b1:8b:31:f9:0b:bf:1d:15:45:d1:
ba:0a:6d:f2:76:2d:f5:a2:64:5e:87:83:66:20:42:0e:93:e1:
97:56:7c:bf:e2:be:70:3e:44:b8:be:39:dd:7a:f6:50:00:d7:
df:4f:4a:07:45:35:8e:62:4f:42:c5:2e:18:d0:97:43:78:80:
d3:a1:52:2f:28:10:d8:47:2b:40:3f:02:f8:c9:6f:1f:03:b9:
53:c1:3f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:52:25 2026 by rpki-client