Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
File: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft (raw, json)
Hash identifier: CQuuerUbyF0AaVUdKU79rj5vs2cemyXEB49W0UQMQgk=
Subject key identifier: DD:01:76:EE:24:B6:05:CD:CD:20:E4:E1:76:FA:5E:A8:9B:29:EE:21
Authority key identifier: 40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
Certificate issuer: /CN=4092c47db8a21931154605d576c3b7341d06b4b4
Certificate serial: 019CB21249B83D1BE4AE3B7D275F6458A4C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
Manifest number: 15D3
Signing time: Tue 03 Mar 2026 05:01:08 +0000
Manifest this update: Tue 03 Mar 2026 05:01:08 +0000
Manifest next update: Wed 04 Mar 2026 05:01:08 +0000
Files and hashes: 1: 4lRlhSc9Jzpgo2qyOZgRPmeBS8E.roa (hash: fe25PIHE4R92mruy7bWhmhbyquYQv4J/2uT5rEcGMtI=)
2: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl (hash: XZ7vjclSypACUp4FhxVALO6tZVE6LSpTg0mJsTTaiNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Mar 2026 05:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b2:12:49:b8:3d:1b:e4:ae:3b:7d:27:5f:64:58:a4:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4092c47db8a21931154605d576c3b7341d06b4b4
Validity
Not Before: Mar 3 05:01:08 2026 GMT
Not After : Mar 4 05:01:08 2026 GMT
Subject: CN=dd0176ee24b605cdcd20e4e176fa5ea89b29ee21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b3:42:c8:bd:59:0b:5c:ef:0a:4d:42:97:b4:
0f:ac:e3:f7:e3:64:4d:eb:fe:4d:61:02:ff:f3:94:
4e:2f:60:0b:24:a0:ab:3c:35:1a:1e:f7:96:a9:8e:
af:8f:8f:4a:fe:dd:d4:12:9e:f8:b1:d8:12:f0:55:
50:73:13:ee:be:73:3a:6e:08:7f:0d:ba:aa:23:2a:
84:e1:4f:5b:f3:33:27:ce:d7:b8:a0:84:a2:47:9d:
24:e6:76:df:93:dd:bf:4e:7d:e0:0f:50:b7:99:5e:
1e:4c:9d:9b:91:ad:cb:24:e0:ae:1b:51:87:7e:28:
18:99:ad:7e:3e:a3:2d:3f:44:4f:a2:10:c8:a5:6a:
fc:24:5b:32:ef:86:87:06:ae:99:09:6c:f2:57:aa:
56:2e:b9:0c:42:c3:7d:72:40:16:cf:89:b3:f6:22:
b3:e6:d7:7c:c9:85:4e:02:26:35:fe:2f:2c:31:2e:
9a:6f:0e:cc:43:a3:dc:1d:41:a1:00:3e:b5:25:d3:
2b:d4:2d:78:ea:80:4b:1d:54:20:5d:de:3a:e6:da:
b8:9b:ad:dc:73:df:d0:f2:e5:5e:6e:82:b1:2d:e9:
43:f9:1a:74:a0:fd:fb:3a:1e:d1:77:2d:14:75:f9:
4b:ed:c8:ea:10:6c:9f:0a:30:87:3e:b3:04:1c:c5:
f4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:01:76:EE:24:B6:05:CD:CD:20:E4:E1:76:FA:5E:A8:9B:29:EE:21
X509v3 Authority Key Identifier:
keyid:40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b4:f6:53:a2:7b:76:2d:e1:c0:f0:9a:f0:df:32:04:92:31:
f9:b7:c9:5c:11:a9:86:09:cc:d7:78:e8:6c:f2:90:d8:02:bb:
06:03:0d:d3:a3:9b:61:2e:5f:83:9a:21:dc:95:51:77:8f:21:
21:bd:c9:2e:55:28:0c:5c:46:a4:30:62:9b:00:30:7c:b2:f8:
bf:db:86:d3:b7:17:e6:2a:a4:db:de:83:33:c6:91:17:5a:08:
23:27:ed:8e:cf:92:8d:e5:fc:01:be:1e:e9:4e:54:96:44:95:
79:5a:9a:a7:69:0d:16:b7:48:2f:a1:9f:26:72:03:2e:17:97:
1d:1b:f8:5d:74:fa:e7:04:82:78:82:c8:3c:10:e8:14:79:03:
ad:da:75:b7:33:ef:04:f8:68:2f:56:9d:de:4b:fb:d6:98:3a:
bd:9c:2b:6f:26:0e:d1:b2:28:99:4a:f7:34:98:77:38:4e:cf:
1b:8e:f7:93:47:8c:fa:ce:1a:ca:7c:94:5f:4c:a3:5d:e8:70:
e2:b5:2b:2c:c6:32:de:6d:c0:5d:b2:30:88:7c:a7:d8:d5:94:
8a:8b:c9:c8:15:bc:bd:4a:f6:bb:98:2c:bb:fe:b1:17:8c:12:
61:36:b8:36:d5:9f:db:2f:56:bc:7d:ae:a7:bf:19:dd:2f:e3:
26:77:86:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 12:16:09 2026 by rpki-client