Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: mLZp4oIgxdBEeT1+6/jGmWGFoJTMC485/3zBIY43N3A=
Subject key identifier: F9:87:88:E6:5E:75:B3:A4:FB:6E:E6:B2:AE:4D:9C:65:04:BE:22:2D
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 019D38663A1E8C75D2230846698ADCF2B43F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 05BD
Signing time: Sun 29 Mar 2026 07:01:56 +0000
Manifest this update: Sun 29 Mar 2026 07:01:56 +0000
Manifest next update: Mon 30 Mar 2026 07:01:56 +0000
Files and hashes: 1: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: zjr5uDW7Pb3slU5ed7TP6L321KVnunfrNr6TM1fdMg0=)
2: lqPB-_tpvjZaRMURMIYlaL-x7v4.roa (hash: PwPNHJ6WdN+tYHjQQVUmAufUKj9CcNQAjnCYOsVYIJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:3a:1e:8c:75:d2:23:08:46:69:8a:dc:f2:b4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Mar 29 07:01:56 2026 GMT
Not After : Mar 30 07:01:56 2026 GMT
Subject: CN=f98788e65e75b3a4fb6ee6b2ae4d9c6504be222d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2a:76:9a:e4:7d:05:82:ad:41:24:17:81:1b:
57:91:b1:6c:ed:a8:39:5a:76:18:7a:13:da:31:fb:
68:7c:29:b4:87:12:b6:9a:f1:fe:12:1e:d6:72:26:
ce:15:a6:0f:2c:04:c2:32:f8:f2:9b:66:d6:ef:fb:
89:97:43:45:45:3b:71:53:8e:71:f8:27:ee:df:54:
4f:2d:c6:6b:e6:e8:1d:d3:3d:90:3d:96:74:01:31:
67:d7:7d:81:62:e1:1a:28:c8:3f:fa:a4:d3:fd:af:
42:f5:59:b1:ea:54:6a:62:71:5b:2b:54:d0:b0:0c:
a2:12:49:b2:82:32:e6:d6:52:11:9d:c8:05:b0:7a:
86:b2:af:04:89:53:30:d1:10:c2:1e:a7:49:cc:6f:
01:64:7f:11:58:a8:f5:71:4e:1f:8c:05:8d:25:47:
0b:11:78:d0:38:21:4c:4a:bb:aa:0b:40:3d:ec:c8:
ee:5e:84:9a:a4:e4:3e:83:34:e6:7e:d4:27:76:c5:
7b:a5:72:48:22:d4:f8:ef:8f:6b:2a:a4:e5:be:76:
66:ad:ed:95:04:e5:69:04:7a:19:85:ef:0b:ff:71:
09:de:51:a9:90:ec:35:64:2f:ca:d0:5c:3f:58:f6:
5c:76:3b:e1:f9:b1:2a:dc:9e:3a:c7:dc:da:d6:7c:
28:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:87:88:E6:5E:75:B3:A4:FB:6E:E6:B2:AE:4D:9C:65:04:BE:22:2D
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:17:a9:e5:55:8a:3e:c6:fe:d4:4e:31:0c:fa:ed:69:88:fc:
d6:f1:21:b8:cb:35:bd:2a:76:57:9b:2a:ac:30:28:ba:ef:d1:
12:2a:49:78:87:6e:fb:45:6b:d7:30:5b:54:69:70:e5:e3:e3:
47:a7:7f:3f:04:19:e6:c5:0a:d0:6d:8a:80:01:7d:ab:a7:db:
e4:3f:f9:44:75:a3:d6:5d:fa:7d:65:87:0f:4e:e1:3e:cf:0d:
f1:0d:96:ea:87:99:73:a7:3b:b3:7c:3b:5b:fe:1b:81:6d:a9:
f0:72:e2:c7:22:56:d0:57:f7:b2:ef:0a:00:6a:54:43:12:86:
e3:20:d7:77:4c:02:ae:22:8a:22:ea:30:ab:52:58:4d:69:d0:
14:97:ee:61:56:04:22:65:de:51:e0:ee:f6:d2:66:f7:ca:a2:
f5:ca:f3:c2:10:b5:7e:af:e8:bd:09:cb:f8:9a:8e:f5:16:9b:
3e:85:18:e4:32:41:3a:b7:d3:13:71:9d:cd:cb:50:19:90:d2:
18:63:63:bc:9d:69:18:60:bc:f9:7d:a0:47:a8:1a:98:5a:0a:
ce:2e:f1:8d:96:e1:71:67:41:e0:ca:b3:2a:c2:c6:95:39:f7:
8f:52:80:a0:1b:79:31:93:64:f8:5c:29:a6:6b:5b:a4:f2:f6:
2b:a9:4c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:42 2026 by rpki-client