Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
File: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft (raw, json)
Hash identifier: WozyDSPqVGvQb1IDBQFOeTMFggkwZTYHV5k9rBWXN9I=
Subject key identifier: 53:33:6B:3C:44:EF:AF:F1:7E:87:44:8D:91:BB:25:83:36:94:44:2B
Authority key identifier: 41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
Certificate issuer: /CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Certificate serial: 019D38D2DF178D1750535941493D160CDD24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
Manifest number: 1718
Signing time: Sun 29 Mar 2026 09:00:36 +0000
Manifest this update: Sun 29 Mar 2026 09:00:36 +0000
Manifest next update: Mon 30 Mar 2026 09:00:36 +0000
Files and hashes: 1: 6E7-9daevK2MkkP9J_irNaIbJPM.roa (hash: nqBQWE4qRj5lWqiwp2QfZYIRYl9NsKmCq2MDZGildvE=)
2: Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl (hash: R4kQkSMUo3TEF8En9HIOPZYuy+esWnLZisW8wcjCnOE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:df:17:8d:17:50:53:59:41:49:3d:16:0c:dd:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f73670ac161f4b56679c49da8b489b60bf0b16
Validity
Not Before: Mar 29 09:00:36 2026 GMT
Not After : Mar 30 09:00:36 2026 GMT
Subject: CN=53336b3c44efaff17e87448d91bb25833694442b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:45:87:a6:11:d7:25:90:5d:fb:f9:77:26:c6:
a5:a8:ea:7e:7e:33:fa:b8:06:89:cb:68:00:1d:83:
df:8c:7d:01:74:87:71:d3:af:af:1a:3f:57:55:59:
67:40:fe:0b:94:81:75:fa:d4:84:d6:b7:c3:95:e7:
e9:1a:2b:7b:17:d7:a3:be:bd:67:80:23:8e:c2:fa:
43:dd:86:28:3c:93:80:a3:2b:44:e9:52:9e:b7:98:
02:50:b2:28:dd:0e:ec:62:60:37:75:54:74:ae:7a:
b0:5a:96:ea:e0:2e:11:5c:1f:9e:0e:e3:59:4c:84:
e6:59:05:a0:33:3b:fc:96:98:37:4e:a1:c4:48:12:
b9:6d:1f:d6:89:b3:94:ea:49:e1:11:b4:9c:2b:05:
01:7a:1a:69:88:1c:27:79:5e:61:37:b3:eb:ea:b2:
90:d0:32:73:0d:c1:0e:03:1a:67:7a:68:16:f6:f7:
de:9a:4e:a9:76:11:c7:7a:41:5f:af:cf:bb:e4:9e:
23:44:93:e3:62:c7:78:93:09:e9:be:af:a9:20:ef:
ff:4a:ca:80:8b:71:4b:8d:ef:e1:e3:47:d8:e0:d0:
bc:fd:f7:a3:d1:fd:77:04:d5:80:2f:a3:75:dd:50:
fe:96:4b:06:1a:43:23:8c:84:cd:25:9a:14:e3:73:
96:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:33:6B:3C:44:EF:AF:F1:7E:87:44:8D:91:BB:25:83:36:94:44:2B
X509v3 Authority Key Identifier:
keyid:41:F7:36:70:AC:16:1F:4B:56:67:9C:49:DA:8B:48:9B:60:BF:0B:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c31033-e7ae-4ab1-af49-29618387ba26/1/Qfc2cKwWH0tWZ5xJ2otIm2C_CxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:4e:7f:53:f1:1a:a7:13:0c:aa:64:d8:67:17:00:85:8b:9e:
3f:4b:56:ed:8c:ed:fc:b3:49:6b:b8:6f:bd:89:26:7f:78:68:
9e:11:7d:a2:e2:ae:48:43:e0:65:a3:bb:d8:10:cd:7d:a4:ec:
df:9b:2f:50:48:cc:fc:e5:3a:fd:3a:6d:cd:29:ef:f5:04:b5:
6d:a7:db:91:15:38:bd:60:e4:5a:92:ae:a8:c2:d9:32:91:da:
a1:f8:56:e5:d2:d0:92:85:8b:84:8c:36:5a:3f:4f:4c:d3:b9:
57:c6:0f:df:1b:7e:d8:f7:83:b0:62:7c:2b:8d:f0:10:fe:6f:
6f:fc:76:64:31:ad:d4:48:9b:d0:83:82:ae:0e:09:1e:86:27:
6b:f4:bc:c9:aa:4b:87:87:c0:7d:a5:46:b9:48:d8:77:65:9e:
96:f0:f3:62:21:1f:d9:75:d2:ef:12:62:b0:48:0d:f6:db:e9:
e2:99:cb:53:57:91:f4:7d:b8:f5:a3:85:b0:18:ea:02:2c:06:
6a:e3:ce:31:cb:63:4f:cc:3d:34:fe:af:cc:ad:85:ff:f1:96:
1e:08:2a:83:ca:73:60:f2:f6:30:9d:94:74:b3:94:e3:55:08:
d7:10:6e:74:c6:97:c2:06:df:a5:f1:95:c9:1c:8b:eb:ff:3b:
5c:15:75:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:52:26 2026 by rpki-client