Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
File: Q8FllZZq-wus8deTfyRdagUiIaM.mft (raw, json)
Hash identifier: 45L+cm9BJTIiNhfYDu6eI6mUWaf4TFqFeXvYBvwUyyo=
Subject key identifier: 49:2B:5A:32:A6:E5:B6:5A:01:5A:0D:8D:31:DD:7D:00:0B:C3:31:0D
Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3
Certificate serial: 019CE55AD247ACF0882F0D182DF1135AD6B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
Manifest number: 1867
Signing time: Fri 13 Mar 2026 04:01:00 +0000
Manifest this update: Fri 13 Mar 2026 04:01:00 +0000
Manifest next update: Sat 14 Mar 2026 04:01:00 +0000
Files and hashes: 1: 4txRYI484TEAkKZQuGXE7v7kNFE.roa (hash: 0LHuR+m3x801pvrNDlfkYNVRhvh7QTNXeF2avzGdu+o=)
2: 7j99n4d6ANqzBKZIb7AtbN16HNM.roa (hash: rlAo1p9sV9yO7tsi280DXkwJRnsLW38pb6gpoEvvu7w=)
3: Oo3ap3FWMfZFuKT_5X4cPgbvWBY.roa (hash: SClF6a/p5GxrqHhEbYnu5sljGKEXM6UG1fAy0VW6itY=)
4: Q8FllZZq-wus8deTfyRdagUiIaM.crl (hash: i/pk9dObyhhopkMkAN37L0AvhqG+UdS2JKC/XP5koBk=)
5: ZoLYEk24uuNv33EjJ4m1okSNS6w.roa (hash: aOyue5Aqc/KW4Mnoyy7ahJjLtcQmVKEsi36/Y3I9yHA=)
6: aj9euBKzI3NIH66jZPh8bbmGI6A.roa (hash: 8jTNJ61hr37vcKXTL8TlYqDMnFRq1ith6TwEVeBelwE=)
7: nH1OKpXJbAvAHxN6XWdXMd6gZuY.roa (hash: j3S1I730IB3QQneXnDNotR19hJRoRUA2SbUVmp/YndQ=)
8: ottEKlKze703Xucot2ljZZmoong.roa (hash: 1DtEnDgUDcQi4vqWCrTRW5+Lsqb1kTbcbswrOF8wGaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:5a:d2:47:ac:f0:88:2f:0d:18:2d:f1:13:5a:d6:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3
Validity
Not Before: Mar 13 04:01:00 2026 GMT
Not After : Mar 14 04:01:00 2026 GMT
Subject: CN=492b5a32a6e5b65a015a0d8d31dd7d000bc3310d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:67:27:e7:30:08:b0:e3:a7:e7:0f:cd:bb:91:
31:e1:f5:bf:4f:7f:11:7e:e8:4b:71:8b:cb:57:1e:
99:dd:b9:03:0f:82:bf:d8:89:8d:c3:43:74:a2:ac:
94:cb:00:af:57:fa:b8:69:f5:b5:fc:83:d4:9b:cf:
a9:3a:2f:09:84:4c:ff:67:72:70:b7:e0:76:d3:65:
fe:16:89:ff:bb:83:72:04:81:b6:62:7a:c0:ab:fb:
60:f2:83:2a:b9:7e:33:d7:43:f8:6d:b3:ca:f9:3d:
db:cd:0a:bb:b4:c8:16:3c:4d:90:bf:f4:ec:17:49:
48:50:24:94:78:96:57:35:64:cf:91:63:32:61:3e:
f1:77:20:9c:b9:26:ea:c4:02:81:ef:7d:04:bb:c9:
00:20:6c:dc:85:24:5d:5e:03:46:ab:ef:cf:85:10:
ee:de:13:54:14:a0:0f:ed:96:bc:48:20:08:73:51:
46:2b:8d:b9:d1:3f:d5:ba:e6:c4:81:30:11:32:69:
82:34:b5:4a:c9:4f:b3:b0:d9:67:fc:e6:fc:49:8d:
4f:7d:7c:0d:30:2e:cf:77:dc:22:39:fd:82:a3:cf:
dc:d0:c0:c3:49:24:39:58:24:8f:a4:d4:1f:ea:4e:
dd:fb:40:39:86:e5:a2:39:44:80:ec:15:8c:ee:ad:
2d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2B:5A:32:A6:E5:B6:5A:01:5A:0D:8D:31:DD:7D:00:0B:C3:31:0D
X509v3 Authority Key Identifier:
keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:a2:1f:fc:0a:ef:68:7f:9d:ac:67:7c:ff:01:46:82:2c:2f:
77:15:f6:50:47:39:e4:a1:7c:ef:70:b1:91:03:c4:39:a9:b3:
2b:b0:72:20:7b:58:78:5f:8b:f4:16:6d:b8:4c:a6:e5:97:a0:
c7:7d:07:ee:d2:27:cf:11:17:87:12:ce:fe:e5:08:4c:99:2d:
19:18:ca:18:5f:c5:78:63:a1:43:37:a8:89:d7:06:f3:ea:77:
9c:59:01:c2:5a:b1:e5:ad:23:31:91:bb:22:b5:3e:52:7d:04:
61:28:55:2c:d1:dd:b0:10:e8:a1:c9:a3:c9:b8:b6:38:be:35:
0e:f4:63:29:4d:a4:8d:aa:5f:05:f7:3a:c2:6c:de:13:70:6d:
b8:b5:17:04:51:b7:f8:3a:43:93:98:17:7e:90:66:44:52:f0:
69:cd:39:97:cb:8d:36:31:0a:93:38:02:f2:f3:c7:dc:b1:44:
64:c4:c6:77:72:6a:ac:41:2a:94:31:de:e2:7c:a2:c2:bf:94:
c0:26:11:de:91:58:8d:7e:6f:70:40:6c:b1:e0:6f:4b:38:55:
5c:a8:3f:bc:7d:3d:db:8a:46:ae:cb:8d:6c:da:40:fc:e1:82:
f8:f9:a9:3d:ef:96:81:61:8b:5c:a8:09:91:1e:45:c4:48:87:
44:48:82:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:30:25 2026 by rpki-client