Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier: qCYC/UtSgChMOH/xs6pCZPptSCqNfI8xjmor7gPX75M=
Subject key identifier: DA:FA:03:F0:A9:8E:07:AD:69:EC:B2:5B:7D:75:15:12:D4:FA:F0:9D
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial: 019D3865DAB06D37A3DE10560737458E127C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number: 0E7B
Signing time: Sun 29 Mar 2026 07:01:32 +0000
Manifest this update: Sun 29 Mar 2026 07:01:32 +0000
Manifest next update: Mon 30 Mar 2026 07:01:32 +0000
Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: KLziQUCl2R45dn8Cc2c5xiJ/WIIYtMZD1I6CBzXpDQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:da:b0:6d:37:a3:de:10:56:07:37:45:8e:12:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Validity
Not Before: Mar 29 07:01:32 2026 GMT
Not After : Mar 30 07:01:32 2026 GMT
Subject: CN=dafa03f0a98e07ad69ecb25b7d751512d4faf09d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3c:02:ec:1c:b5:13:3e:7b:3f:5a:8e:30:27:
ff:91:dd:05:f4:1d:a7:c4:f7:92:51:9f:bc:16:65:
7e:00:88:69:85:49:3a:29:77:98:5a:fa:ff:0a:61:
48:d8:c8:13:29:42:4c:7d:b2:8e:44:68:e7:6f:22:
fe:5c:af:a2:1b:3d:96:e7:53:d5:29:42:e8:4e:1e:
19:af:ca:81:ba:c0:fb:9a:95:19:9c:62:72:d8:a0:
0d:43:10:32:8f:d8:72:18:5d:84:fd:10:50:4d:d1:
b6:46:16:d7:88:43:04:40:16:55:05:93:75:89:f0:
a9:c6:5c:fe:52:0d:bb:02:d1:1c:78:a3:47:a8:2a:
40:d9:04:5f:c2:cd:28:51:48:e7:1e:0b:6b:9d:26:
ca:ad:50:57:08:02:ce:05:32:57:45:77:52:87:c6:
97:80:f3:da:4d:8a:3f:3e:84:45:f9:6c:f1:6b:4a:
e3:19:6e:fe:4d:c8:92:b1:11:12:e1:b9:e2:fb:83:
ab:d9:68:7a:02:c7:b0:32:42:e1:aa:1e:e8:8b:2f:
e4:46:40:d1:1d:96:82:88:49:8e:a9:88:b1:75:2a:
b5:ba:d6:00:ba:68:34:4d:f3:75:6e:d8:6d:d4:bf:
6e:d6:0d:93:47:35:35:46:b9:ac:b7:84:ca:4f:b7:
89:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:FA:03:F0:A9:8E:07:AD:69:EC:B2:5B:7D:75:15:12:D4:FA:F0:9D
X509v3 Authority Key Identifier:
keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:e5:3a:99:11:f1:f3:6f:0b:ea:c0:74:c6:b1:c7:3b:f1:a5:
24:a1:df:c1:16:90:42:4d:d1:64:63:a2:5c:75:3f:ba:3a:d1:
a4:2d:63:01:d8:96:ac:62:94:11:43:6b:42:ce:db:d6:f0:be:
6b:da:ec:a9:8b:dd:a8:12:d9:ac:ac:07:f7:7f:df:f7:83:15:
a6:97:65:c1:92:e4:49:ab:09:19:80:bf:1d:da:70:8f:c1:80:
f6:4d:31:e3:c6:a1:7f:da:cf:10:3e:15:35:12:a7:5c:0d:95:
40:a1:f1:78:6d:1b:6a:cc:39:a4:03:0f:11:9d:e8:cf:ac:8c:
01:eb:94:f3:ce:cc:bd:71:b5:43:ff:69:66:ba:d0:5a:f9:f2:
bf:7f:80:7a:d5:9c:c0:54:79:f8:d9:02:15:29:56:ac:f6:20:
62:7b:e5:60:ec:8e:74:37:6e:d6:7f:59:c0:67:d9:06:40:33:
f5:57:ad:13:3b:01:4e:33:20:7a:30:6a:b1:c1:62:c2:da:d3:
f0:ea:60:ff:e8:a9:51:9b:33:4f:94:be:48:57:25:7a:04:e5:
8f:04:7b:a1:7a:98:79:f9:e6:b8:45:7f:55:1a:8f:02:b6:09:
90:a6:e9:54:14:54:99:71:a6:5e:a1:f0:14:05:2e:59:e1:f4:
a1:e3:5e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:22 2026 by rpki-client