Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
File: qWpTYQ2O9mShJ1txquq7KFEEwk8.mft (raw, json)
Hash identifier: vu9tzYKJXPcc/5HWUkn4p00Q0vkoStd3GpiqDIt1tuc=
Subject key identifier: B7:1D:9E:01:F9:F4:B3:00:F0:5F:F9:40:1E:C3:A6:DA:07:72:47:09
Authority key identifier: A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
Certificate issuer: /CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Certificate serial: 019D386580D59EB73FCC6A4B1AEF08F51B39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 07:01:09 +0000
Manifest this update: Sun 29 Mar 2026 07:01:09 +0000
Manifest next update: Mon 30 Mar 2026 07:01:09 +0000
Files and hashes: 1: qWpTYQ2O9mShJ1txquq7KFEEwk8.crl (hash: ab1A1zzHOzapGfmMNe/fPypCdNdI8rBWqaUwWIUvdLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:80:d5:9e:b7:3f:cc:6a:4b:1a:ef:08:f5:1b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a96a53610d8ef664a1275b71aaeabb285104c24f
Validity
Not Before: Mar 29 07:01:09 2026 GMT
Not After : Mar 30 07:01:09 2026 GMT
Subject: CN=b71d9e01f9f4b300f05ff9401ec3a6da07724709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:41:64:10:e0:69:f1:15:1a:36:f2:1a:e1:
bf:29:27:e9:0b:9c:fc:30:e9:9d:a2:e5:8f:9c:7f:
ef:73:dd:43:77:14:d2:f2:2a:2a:b8:33:00:a0:da:
3a:89:8b:41:dc:af:f1:2f:fe:f6:9a:fd:04:7c:7f:
80:03:ca:36:4c:45:b4:e4:ef:d5:ac:3d:2a:fb:1c:
ec:51:b3:9f:09:e6:f0:b4:42:d8:66:6d:dc:b8:55:
eb:f4:a1:80:84:4a:e1:de:10:c2:ca:2e:5c:ea:9b:
0b:27:8b:62:77:28:56:36:41:7d:96:87:26:b0:b5:
09:3c:a2:25:59:de:67:5f:b0:89:da:55:1c:3b:a3:
14:2a:1a:7a:4d:94:86:2d:fe:3d:0d:b7:5f:4c:c4:
68:90:2a:af:f4:f4:73:c8:20:30:ae:36:b4:9c:8d:
67:1e:f2:d0:93:50:7b:fd:a0:84:2c:24:23:6e:33:
60:2c:fe:c0:cf:a6:20:f5:9f:38:ad:8d:b8:9f:1e:
30:3e:61:89:99:03:29:d5:f6:f6:6a:c3:21:99:a1:
e1:40:e8:0e:06:27:cb:fd:8a:25:ce:98:cc:29:33:
ef:96:24:10:13:e9:82:86:bc:ae:34:31:fd:43:2e:
26:b3:21:fe:6a:11:40:7a:e7:24:c0:79:88:d1:38:
ff:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:1D:9E:01:F9:F4:B3:00:F0:5F:F9:40:1E:C3:A6:DA:07:72:47:09
X509v3 Authority Key Identifier:
keyid:A9:6A:53:61:0D:8E:F6:64:A1:27:5B:71:AA:EA:BB:28:51:04:C2:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qWpTYQ2O9mShJ1txquq7KFEEwk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5a017c-a3dc-44cf-b80e-a211175c05e0/1/qWpTYQ2O9mShJ1txquq7KFEEwk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:47:97:06:e6:ef:19:82:14:b0:d0:d1:8c:27:34:60:a8:8b:
34:22:82:2c:fc:c5:42:4b:8b:b6:e8:4a:cf:eb:a0:d7:7d:c1:
ce:26:fc:0c:1a:21:51:91:8a:a8:b1:76:4a:43:34:1b:87:8e:
f4:53:cc:88:3c:94:1b:27:75:15:d4:2d:01:e6:9b:5d:7f:1c:
ce:77:11:b5:dc:4a:41:93:f9:eb:3a:76:09:64:4e:11:48:96:
a5:ee:da:de:2b:dc:29:34:00:23:f0:ea:82:31:de:a9:62:26:
d3:d6:f8:8e:af:3f:0a:ba:e7:54:6a:d3:ff:8d:fa:6e:40:67:
9f:ae:90:18:e4:e7:90:cb:ba:9b:42:8f:96:d0:ae:bf:d4:2d:
8a:26:37:36:e9:96:1e:ff:28:10:d7:24:b3:57:53:c1:f6:8f:
ba:77:56:41:4a:34:56:df:38:12:9f:11:e8:a3:4d:3b:6e:0c:
d2:07:ae:da:46:51:17:e2:f7:94:64:12:e9:30:e4:77:9d:d0:
67:16:ae:fe:87:5a:41:e9:16:a2:50:3b:e8:13:c7:e3:52:4c:
77:58:73:ab:9b:b9:d1:dd:96:01:f2:f0:76:4a:15:ce:e4:a0:
97:ae:8d:11:df:b2:ec:b1:ab:67:82:8a:b2:b5:1b:80:2f:87:
3b:3e:1e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:10 2026 by rpki-client