Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
File: QD8Iu6_6QWGEMgOop1erbpVGsM4.mft (raw, json)
Hash identifier: 5SWJ9zuTcD8DyewFZoa00aauqMO7CLhUfzl4QZ+17To=
Subject key identifier: CF:78:1F:5B:CF:E1:F6:C9:A7:27:D6:F4:71:3A:2F:84:4F:42:5D:C2
Authority key identifier: 40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
Certificate issuer: /CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Certificate serial: 019D37521C26DF9B9F8A5479336667A03C3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
Manifest number: 07A3
Signing time: Sun 29 Mar 2026 02:00:20 +0000
Manifest this update: Sun 29 Mar 2026 02:00:20 +0000
Manifest next update: Mon 30 Mar 2026 02:00:20 +0000
Files and hashes: 1: 90swIJHrJ2sBN5-x6r2JwT1pPtM.roa (hash: qSNS122hM6E8JtNAlwnMJTYeLimXbz4RNM0wfB80wLI=)
2: QD8Iu6_6QWGEMgOop1erbpVGsM4.crl (hash: fctVMN1rERZMk6XcGuWZ3iqx0BhRsRGSM0lnRH/9P58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:1c:26:df:9b:9f:8a:54:79:33:66:67:a0:3c:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403f08bbaffa4161843203a8a757ab6e9546b0ce
Validity
Not Before: Mar 29 02:00:20 2026 GMT
Not After : Mar 30 02:00:20 2026 GMT
Subject: CN=cf781f5bcfe1f6c9a727d6f4713a2f844f425dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:89:63:02:c5:2d:af:ad:ad:02:31:b8:cd:c6:
9a:8d:5a:a6:5d:69:22:03:86:34:51:99:80:3e:0e:
32:22:00:7c:15:9c:df:5c:4d:a4:6e:59:7c:ea:03:
bd:35:2c:97:8d:1f:67:5e:62:46:ea:de:33:11:d1:
0a:cc:bb:3b:5f:c8:48:00:63:e4:6a:a5:27:c9:f3:
20:a1:ee:9a:17:2f:01:e6:fc:e5:76:e5:7c:ed:95:
7a:fc:70:89:d3:a9:c2:47:df:c4:05:bc:94:2e:32:
ea:9c:4a:8d:29:9b:e4:64:d1:48:09:ed:88:00:f9:
36:5a:84:eb:f3:fe:ec:75:da:36:03:0e:d6:d0:7e:
85:ac:85:30:48:c5:44:da:83:bc:b7:90:61:3d:b1:
c2:22:d3:03:e6:48:a9:fa:78:e6:d2:13:01:05:b5:
8c:1d:a5:be:ee:ab:f9:fb:77:30:6c:d2:9c:5f:9b:
e3:a2:43:20:77:a2:05:a1:5b:25:97:ac:49:c1:0c:
6a:8b:78:1b:0b:86:c9:57:95:b9:87:66:45:6d:9d:
01:90:4c:48:79:49:3b:18:4e:34:a1:a7:84:27:ff:
ab:94:25:10:61:83:2e:aa:15:e3:9a:32:df:d3:62:
4a:e3:d0:73:73:22:41:b1:09:08:00:df:a0:25:0d:
87:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:78:1F:5B:CF:E1:F6:C9:A7:27:D6:F4:71:3A:2F:84:4F:42:5D:C2
X509v3 Authority Key Identifier:
keyid:40:3F:08:BB:AF:FA:41:61:84:32:03:A8:A7:57:AB:6E:95:46:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD8Iu6_6QWGEMgOop1erbpVGsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/d06832-dbdf-4f87-99b8-38d8a78a4862/1/QD8Iu6_6QWGEMgOop1erbpVGsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:91:39:bc:b4:b1:34:c8:04:12:3f:79:d8:d6:81:e8:ad:bf:
e5:62:3f:c0:f5:fd:fc:db:72:a6:b7:91:a4:83:a9:c3:b6:99:
c5:2c:08:f9:9b:3f:65:67:a6:b7:0e:46:65:0d:33:f9:c4:24:
fd:a6:9c:0f:8c:55:f5:e0:bc:2a:be:67:01:1c:51:69:47:73:
41:5e:64:28:1b:ee:ab:6f:97:7f:4f:bb:3c:7d:c1:52:8d:55:
a6:d2:ec:de:19:e7:d0:5f:54:4c:9c:28:f8:16:89:e6:53:c2:
ff:0a:1b:b7:57:3c:73:fe:48:e7:db:90:82:3c:00:78:7b:a5:
5c:ea:1c:ed:37:65:f7:6f:23:4e:bf:dc:bc:bb:74:c2:80:69:
1e:c5:1c:95:31:27:87:b6:2f:82:b0:e6:d7:95:f8:e0:73:5b:
a6:61:a6:cf:92:1b:db:8e:9a:b4:d0:df:ec:4b:75:49:5d:56:
e6:8c:ab:a3:42:9d:85:08:21:6a:2d:b3:83:64:f8:58:e5:c3:
13:5d:68:17:c7:7c:86:53:d9:66:39:db:52:33:97:22:df:d3:
18:00:e7:fb:fa:0b:77:fc:8b:c4:23:59:72:f8:0e:3d:da:78:
66:63:95:95:e1:7f:23:1b:40:e8:c2:94:0c:52:43:00:35:5a:
9b:b6:23:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:15 2026 by rpki-client