Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
File: QHSniVh1zyxnhUT2zm9LI59JKfs.mft (raw, json)
Hash identifier: Mmrz3BjVp8rwcxxdOc0qPqQcP89U9uchw6YT4rr72ec=
Subject key identifier: 48:D3:7D:DF:C1:26:98:7E:12:E2:C2:BC:83:CC:A9:37:6C:81:52:F3
Authority key identifier: 40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
Certificate issuer: /CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Certificate serial: 019D39098F61AA372D5C1B8D2187B40AB80D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 10:00:20 +0000
Manifest this update: Sun 29 Mar 2026 10:00:20 +0000
Manifest next update: Mon 30 Mar 2026 10:00:20 +0000
Files and hashes: 1: QHSniVh1zyxnhUT2zm9LI59JKfs.crl (hash: HpJ1xGhPBXRDe9y4c4VTt3jQQb33GKVRTK1S0LwOYVA=)
2: ugMrWtr-AgbWpTxdCrlYjC4RyWA.roa (hash: 5ukMlR12Rye0g+suC8BFsAQhk/pWlg5h05IGSX13iYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:8f:61:aa:37:2d:5c:1b:8d:21:87:b4:0a:b8:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4074a7895875cf2c678544f6ce6f4b239f4929fb
Validity
Not Before: Mar 29 10:00:20 2026 GMT
Not After : Mar 30 10:00:20 2026 GMT
Subject: CN=48d37ddfc126987e12e2c2bc83cca9376c8152f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5d:55:0b:70:ff:bd:f9:06:59:89:bc:32:8d:
0a:ab:59:41:16:4a:5f:9f:38:b8:3e:87:5a:32:95:
f7:66:25:a6:90:ac:14:4b:df:00:50:d5:49:b9:61:
be:7a:58:fc:cc:c7:84:3a:85:ad:b1:6c:8c:cf:7a:
fc:e1:d0:7c:dd:d1:12:4a:f9:04:05:1e:a1:36:0c:
1b:aa:18:e5:7e:9c:05:64:60:07:6c:4e:01:e2:65:
14:b0:26:74:d4:3c:88:89:67:1a:da:e9:31:22:c2:
42:83:7a:9a:69:51:1a:7c:45:77:53:39:6e:6b:1c:
f3:0a:7b:ac:72:75:85:f4:0a:d3:c1:a4:79:c9:9e:
21:e1:e3:65:2a:39:d9:92:8c:52:67:c8:9b:b4:02:
f6:55:6f:4d:bd:c1:bf:17:51:46:18:7e:56:04:74:
52:13:7d:44:ea:dd:a3:a8:d2:33:a9:2e:76:be:65:
36:1e:6a:d7:26:14:b3:6e:a3:98:be:f4:e1:d6:ab:
22:27:b1:bd:33:84:ab:2e:1e:8a:bd:0c:38:43:13:
e8:34:ee:c1:d8:53:ba:65:74:a5:54:c6:38:5d:48:
f4:77:79:52:b3:b4:f7:f6:c7:f4:dd:95:62:2c:70:
19:92:3b:6c:48:d0:22:fe:82:aa:f2:02:05:24:11:
78:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D3:7D:DF:C1:26:98:7E:12:E2:C2:BC:83:CC:A9:37:6C:81:52:F3
X509v3 Authority Key Identifier:
keyid:40:74:A7:89:58:75:CF:2C:67:85:44:F6:CE:6F:4B:23:9F:49:29:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHSniVh1zyxnhUT2zm9LI59JKfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d177dc-43b3-4bdd-8bf5-f52d6064dd8b/1/QHSniVh1zyxnhUT2zm9LI59JKfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:68:ac:20:e6:bc:0f:c1:90:7d:2a:22:9a:e0:98:8a:ba:af:
7e:c3:d2:ba:d8:a2:32:d0:6a:16:26:95:59:b6:0c:d8:0b:e8:
45:f8:f5:0d:f9:6c:42:36:a4:7d:41:42:6e:a8:b9:26:ad:c8:
a2:9f:55:72:4e:cc:13:e7:5c:37:5e:8a:b7:f7:2a:f5:d9:18:
0c:d9:38:61:38:2f:a6:01:d9:ef:59:75:67:be:ea:71:bc:49:
92:cf:95:9f:98:8e:a8:23:a2:74:2b:48:e7:d2:c9:de:72:2a:
e4:f5:9e:c2:c7:97:61:86:60:66:8e:6d:f5:8b:dc:d8:a1:6d:
76:ac:f8:6b:51:57:9d:d8:ac:eb:9a:1d:92:b3:90:66:7c:11:
bf:24:6e:33:42:1d:f6:48:90:2b:4e:f2:1d:e6:54:e0:94:a2:
cd:40:7d:4e:5d:85:a0:8e:8d:e1:76:4d:c8:02:a7:73:ad:f0:
3a:91:bc:ff:7f:6f:3f:7c:89:40:a2:18:af:e1:a5:94:70:19:
08:1a:04:d6:8b:f3:25:b3:c4:ed:ef:1c:b0:16:3f:81:62:84:
07:fa:82:fb:fe:34:42:6c:d4:a9:a3:05:44:4a:18:4f:18:34:
af:51:cc:16:3d:78:a3:02:aa:eb:51:7a:a9:a7:cd:af:ff:e2:
5a:19:0c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:03:05 2026 by rpki-client