Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: 0FItKKSXbGmNCePzhC+twpCT+/2R14RM8VImmLlXyB0=
Subject key identifier: F4:46:E8:9E:3E:C6:89:C8:70:E4:54:18:66:94:40:CB:36:1D:25:F1
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 019D39777A068E66ACA70368520553595567
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 107F
Signing time: Sun 29 Mar 2026 12:00:24 +0000
Manifest this update: Sun 29 Mar 2026 12:00:24 +0000
Manifest next update: Mon 30 Mar 2026 12:00:24 +0000
Files and hashes: 1: MnDYEmNyAQzBpzR98qjs2sOtO_c.roa (hash: 34lKjvmsvDbzxduruRJbqT8KL81GGIwldVfmoVn9Yyw=)
2: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: AyCohAzEsIfQPuV5i8eS6VbPZ1QuPPYFz5rMeFOvthg=)
3: UG9G_dnWRpZkM8dNOUmzQ9ddYpM.roa (hash: VJHtgY+XTe16MdK4R4BNwcTnWb1T/NjN98Z9wb0GkTk=)
4: vUHrTNIykiSnEmNGusQYaFxAqdw.roa (hash: 1iGnZuZAbpNIqbdvK2c36DPr9j4iU15E9+caM/CdPU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:7a:06:8e:66:ac:a7:03:68:52:05:53:59:55:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Mar 29 12:00:24 2026 GMT
Not After : Mar 30 12:00:24 2026 GMT
Subject: CN=f446e89e3ec689c870e45418669440cb361d25f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2c:1d:f3:51:8f:74:9b:f4:b7:55:6d:bd:30:
58:9d:06:33:66:e0:98:74:a9:79:2c:2f:c0:69:84:
17:a6:65:02:b2:ba:00:ed:34:a0:85:70:96:65:23:
ba:d2:9a:4b:0c:d5:85:e0:0b:97:6e:92:47:20:88:
a0:4f:a1:d9:d3:ff:70:5e:30:fd:b5:ac:14:90:b0:
e0:49:91:4c:bf:c4:15:81:4d:71:9a:04:d9:c7:9f:
92:ae:e9:16:70:f4:d6:40:03:dd:22:76:cd:fb:ec:
e2:a7:a8:37:07:0a:56:cb:c2:64:ce:87:0e:c8:04:
3f:7a:88:f6:15:9a:f9:d4:fd:d5:9d:ec:a7:a0:0f:
d1:28:b2:0f:7e:df:ea:cf:00:a2:ad:7a:cc:11:a4:
d9:f6:08:32:3e:83:c1:cc:45:41:e2:99:78:5e:42:
72:57:4f:64:bf:c0:6e:93:13:49:b1:ad:85:55:07:
be:a8:d6:e8:1a:9e:b5:2a:46:73:d4:74:3b:30:c6:
fe:ca:fe:9b:8b:18:32:56:f6:c2:f7:5b:12:35:08:
ae:64:a0:6b:e0:ca:dd:03:42:c4:7b:13:9b:35:96:
7b:61:1c:ef:8f:7d:b5:42:a9:c6:41:76:54:71:9e:
94:24:75:ef:54:60:97:d6:60:64:9d:09:1d:0a:16:
fd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:46:E8:9E:3E:C6:89:C8:70:E4:54:18:66:94:40:CB:36:1D:25:F1
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:73:eb:e4:b3:fa:0d:1e:ad:26:67:75:ef:70:e8:cd:b2:15:
bb:96:bb:7f:3b:35:45:53:a9:bc:43:6f:ef:f8:6f:b0:91:70:
bc:f7:cd:c1:3e:7f:ab:41:ea:d1:1b:8c:99:07:2f:79:6c:20:
cd:b0:32:0c:66:79:14:77:db:90:7f:45:97:0c:16:88:46:4d:
57:ba:8a:b9:3f:71:01:0b:1a:9d:4f:af:e7:d1:c4:de:8d:ba:
42:5d:e4:94:93:6a:89:0f:03:2b:27:c5:6c:aa:e4:6a:c2:58:
b6:9a:22:e4:63:ce:3b:49:64:3a:f4:3f:63:48:5a:1f:79:28:
d4:04:9e:54:d7:ef:4a:3b:eb:52:0c:72:fb:57:70:78:3c:e2:
16:f2:a8:44:c5:71:c9:a6:4b:a6:f3:9c:13:12:a3:70:06:63:
c1:f5:da:d9:47:1e:af:b5:48:96:e1:cc:77:59:0d:01:11:e8:
d9:4d:47:0e:e6:e5:51:d0:6c:f3:40:6f:c6:39:72:86:7a:dc:
2b:e2:51:2a:4b:7b:c3:26:80:1f:7e:b3:1a:b7:2d:ed:35:37:
4b:ca:29:72:2d:a9:31:64:55:3f:73:51:33:66:cb:79:95:f0:
e0:78:4f:b7:5b:32:14:f1:83:a9:01:c2:8c:2b:db:66:5a:77:
d2:7d:e0:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:09 2026 by rpki-client