Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
File: qyt5QmiS7R2nsuYYZ3DPsErmA80.mft (raw, json)
Hash identifier: nKe9bVDjJEsDvzee1DnjfKoYlucuKpYH0dzpfKwDT44=
Subject key identifier: DC:AA:BB:17:CE:9A:9A:89:8E:8C:43:EF:51:B9:26:D9:E1:2F:91:CB
Authority key identifier: AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
Certificate issuer: /CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Certificate serial: 019D3866826F5941CECD8D253712D342245B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
Manifest number: 0B36
Signing time: Sun 29 Mar 2026 07:02:15 +0000
Manifest this update: Sun 29 Mar 2026 07:02:15 +0000
Manifest next update: Mon 30 Mar 2026 07:02:15 +0000
Files and hashes: 1: Ep1UdBXzCWlqSTpFzem1RUVZTHA.asa (hash: f0L/PAFatn0IgaIhqoEyZoZ0cRFuKV57J/o6cZd4vJM=)
2: UVwGUstyqvelkq37jwrCyB34k94.asa (hash: E7qX0L3M0NDAHs6Gtk5Rp5Gs8S25rdSfJnVG4BtVL6w=)
3: qyt5QmiS7R2nsuYYZ3DPsErmA80.crl (hash: Zf0eZC5OsQAQATuHyGiwf2xzSBQlA76YoOj2YSXXujI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:82:6f:59:41:ce:cd:8d:25:37:12:d3:42:24:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2b79426892ed1da7b2e6186770cfb04ae603cd
Validity
Not Before: Mar 29 07:02:15 2026 GMT
Not After : Mar 30 07:02:15 2026 GMT
Subject: CN=dcaabb17ce9a9a898e8c43ef51b926d9e12f91cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:13:a4:29:05:db:f8:bf:1a:08:a2:15:f3:39:
15:0c:a7:47:ab:76:c0:c3:26:6b:9e:09:8a:84:6c:
57:ed:32:01:63:8f:e2:88:9d:40:1c:55:fb:9e:32:
a6:2d:aa:3b:1f:5a:ed:8d:8b:dc:c6:84:19:15:8b:
dc:0c:7e:34:2c:9c:c6:4b:ee:92:db:36:f4:9d:b4:
5a:8a:99:1b:96:c3:cb:39:30:60:f4:8e:ed:3c:3f:
46:02:18:7c:7b:92:67:6c:de:97:13:cc:71:30:26:
b9:fa:3b:a4:da:4e:39:d7:0f:4f:5c:27:c8:13:85:
65:fb:bf:4f:26:3a:61:8f:f3:f4:d5:88:73:44:2b:
39:1c:f9:c4:04:1e:da:3d:70:e7:17:55:bb:0b:cd:
76:63:48:25:b5:1b:13:81:b7:6b:36:1e:2d:65:1e:
55:a8:48:98:c6:81:f5:98:56:ea:f6:74:c5:2c:09:
db:4d:f4:94:c7:66:54:bf:fa:52:30:8c:5c:9c:4a:
56:2e:08:e2:eb:20:a6:f8:24:cd:88:3a:1f:70:9b:
49:a0:37:38:5c:4b:95:b3:ac:9c:ec:cc:cc:e4:a8:
c5:4f:d6:60:a0:01:9f:6a:46:97:b9:0c:6f:d2:bc:
bf:b1:27:3c:39:c2:f1:d4:98:e1:8c:6d:ff:4c:bf:
f3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:AA:BB:17:CE:9A:9A:89:8E:8C:43:EF:51:B9:26:D9:E1:2F:91:CB
X509v3 Authority Key Identifier:
keyid:AB:2B:79:42:68:92:ED:1D:A7:B2:E6:18:67:70:CF:B0:4A:E6:03:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qyt5QmiS7R2nsuYYZ3DPsErmA80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a26050-49ec-4955-9810-e5453707a58e/1/qyt5QmiS7R2nsuYYZ3DPsErmA80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:e3:11:96:51:08:56:9d:ba:ba:a5:6c:e7:24:ba:6c:35:b0:
85:37:9b:b1:8b:22:df:73:06:3e:42:4d:58:43:9c:55:96:1f:
87:45:dc:6b:7e:cd:db:45:64:0a:2d:ac:77:97:fb:5c:48:00:
a6:4f:9a:c4:17:72:72:7b:55:37:aa:37:7f:ba:3c:cb:2f:bf:
27:54:59:b3:fc:e8:ca:3a:2b:26:d6:a7:82:b3:31:f0:17:86:
b5:d1:17:61:d4:d3:d4:f8:8d:95:6a:ae:63:7b:48:e4:c4:3c:
bb:9c:be:95:a3:17:c8:e0:91:18:87:c6:a6:d0:d5:bc:71:49:
04:5e:1e:8d:3a:e3:0d:02:7f:5a:8f:fc:df:f7:5b:14:3d:ea:
38:70:f1:49:59:fa:ff:89:1d:40:bb:f4:a6:36:43:23:71:30:
db:63:fb:18:39:dd:5d:6f:41:51:cf:8a:4e:3d:f9:ed:19:47:
1e:b5:99:96:b6:bc:0c:e4:8d:4d:4f:47:1e:f3:23:18:d1:30:
eb:3d:be:77:21:b8:72:90:7f:a8:ed:39:b4:bc:73:f8:2a:a7:
54:8b:f5:9e:83:bd:87:b5:5a:17:38:05:d4:51:c9:66:b2:af:
fa:1c:05:2d:fa:87:4d:c7:d3:ba:a6:66:c2:8d:5d:c9:71:1e:
c2:b9:45:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:56 2026 by rpki-client