Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
File: 1qcbToaUQX67vPYmi5yPljFwsfE.mft (raw, json)
Hash identifier: OiVEczqqs1mFGCCRT31FKqBYcS1klnPPsXYTBUoPRKI=
Subject key identifier: 13:0A:11:7B:8A:34:1E:9C:10:72:24:26:08:29:41:83:F9:0C:74:8A
Authority key identifier: D6:A7:1B:4E:86:94:41:7E:BB:BC:F6:26:8B:9C:8F:96:31:70:B1:F1
Certificate issuer: /CN=d6a71b4e8694417ebbbcf6268b9c8f963170b1f1
Certificate serial: 019D37C016B11919B4B6A30F2EC74588A164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
Manifest number: 0863
Signing time: Sun 29 Mar 2026 04:00:28 +0000
Manifest this update: Sun 29 Mar 2026 04:00:28 +0000
Manifest next update: Mon 30 Mar 2026 04:00:28 +0000
Files and hashes: 1: 1qcbToaUQX67vPYmi5yPljFwsfE.crl (hash: T1Rx9uUib7NjjIfqY/RlmDouGXCik4guRKL1K+5vGbs=)
2: f5IHBYE7NDPyB0LVrNWj1GgBNpg.roa (hash: 9Iaa5W9aUPxiaP8/fOFVvFkP2DxoYQVxx3K7Xwo06Z8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:16:b1:19:19:b4:b6:a3:0f:2e:c7:45:88:a1:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6a71b4e8694417ebbbcf6268b9c8f963170b1f1
Validity
Not Before: Mar 29 04:00:28 2026 GMT
Not After : Mar 30 04:00:28 2026 GMT
Subject: CN=130a117b8a341e9c1072242608294183f90c748a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:b5:b8:d6:b9:9c:b0:5b:8f:4b:e8:ac:3e:
64:7c:f2:2c:68:8c:a6:c5:d8:f5:3f:42:b0:48:d6:
46:90:66:fb:f5:09:fa:97:d0:ca:2a:21:c9:e0:bb:
16:f8:1a:fe:6f:1d:f0:e5:cc:67:eb:13:e0:89:28:
53:c6:8f:5f:46:e2:d1:6d:47:b5:fd:b2:32:8f:b6:
c4:15:c1:99:2c:42:22:37:1a:82:8d:eb:e9:7f:9f:
f0:55:25:37:b0:76:5c:c2:30:82:0e:f1:52:35:fb:
e5:a2:7c:99:39:87:bc:8c:48:13:a1:ea:a0:d6:59:
52:a8:0c:20:8f:36:11:79:65:bc:f2:0f:81:a2:b8:
05:98:37:3d:51:ec:27:53:fb:b7:46:84:f6:24:39:
2d:99:55:b4:37:55:0d:fc:85:ac:e8:d2:af:82:42:
40:ca:ac:ea:7a:79:2e:c7:f2:ef:1d:6a:80:fd:e8:
5b:a5:ee:54:62:38:a0:34:da:07:7b:88:73:f3:3d:
18:87:13:52:b0:e7:b6:b8:5b:c3:4b:45:4b:07:15:
da:f4:81:4e:8f:dc:37:3f:8b:f0:62:57:f8:43:ef:
0d:ce:ce:08:1b:8f:ae:3a:14:7b:7b:1d:66:d3:3f:
3f:c6:a7:5e:c7:28:4a:84:b6:66:10:45:8d:20:67:
b3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:0A:11:7B:8A:34:1E:9C:10:72:24:26:08:29:41:83:F9:0C:74:8A
X509v3 Authority Key Identifier:
keyid:D6:A7:1B:4E:86:94:41:7E:BB:BC:F6:26:8B:9C:8F:96:31:70:B1:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qcbToaUQX67vPYmi5yPljFwsfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/76a463-0732-497a-948d-2931104c5f7a/1/1qcbToaUQX67vPYmi5yPljFwsfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:e9:35:c8:e8:a1:1e:ce:d2:09:81:07:16:cc:fa:01:00:20:
73:35:dd:ea:4e:4c:0b:9b:cb:18:ad:43:c4:e9:b2:72:9f:c3:
33:68:ed:3e:ef:c1:d8:81:f1:b4:2c:e2:87:17:7c:d4:be:ea:
99:d2:d9:66:2d:89:22:88:31:58:06:9b:cc:cd:34:ec:1a:5f:
97:93:bd:b9:32:19:11:02:56:c2:35:1c:3f:05:7d:53:c9:35:
3d:2f:54:49:dc:15:93:8d:f3:2d:1a:eb:99:71:14:70:a7:41:
0b:4b:d2:da:ef:41:85:df:8a:d1:95:d0:a5:cc:6e:c2:92:0e:
80:19:45:51:0d:ba:be:3f:5c:e9:3b:cc:ce:85:55:9b:d8:91:
70:37:28:fc:f9:4c:6b:85:14:1d:6b:ba:83:42:04:35:d7:0e:
ca:a7:c7:00:9f:9c:62:c4:cd:e2:1b:f9:83:79:95:02:be:fe:
3f:22:71:26:6a:c5:a5:05:b4:e6:0d:c1:3f:a5:5c:50:b4:a4:
9d:cb:12:96:24:95:e5:28:0c:33:49:c6:b0:a6:ec:d2:b4:5a:
1b:4b:01:db:79:44:69:89:af:7d:9d:93:f7:c4:60:52:be:6c:
89:ea:a6:a0:38:ad:5d:3e:b1:db:af:89:31:cc:ad:7a:b1:71:
18:37:df:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:49 2026 by rpki-client