Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
File: qqbmeSWCHkuHnIA-wKUiRflnOtA.mft (raw, json)
Hash identifier: giNz1DapzCcO7km5KiJ9126gAsZzieTYNBsfNjhdjqA=
Subject key identifier: 68:3B:6E:4F:83:8C:84:37:8F:7F:BC:5A:54:E0:FB:E5:65:BF:1B:53
Authority key identifier: AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0
Certificate issuer: /CN=aaa6e67925821e4b879c803ec0a52245f9673ad0
Certificate serial: 019D273B28C431D7A902E96B886C69FEF526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
Manifest number: 0628
Signing time: Wed 25 Mar 2026 23:01:21 +0000
Manifest this update: Wed 25 Mar 2026 23:01:21 +0000
Manifest next update: Thu 26 Mar 2026 23:01:21 +0000
Files and hashes: 1: qqbmeSWCHkuHnIA-wKUiRflnOtA.crl (hash: C1dgcbtp6TY9SabFNuw1vTLgbKRtvegCXlx+zdHWMqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:28:c4:31:d7:a9:02:e9:6b:88:6c:69:fe:f5:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaa6e67925821e4b879c803ec0a52245f9673ad0
Validity
Not Before: Mar 25 23:01:21 2026 GMT
Not After : Mar 26 23:01:21 2026 GMT
Subject: CN=683b6e4f838c84378f7fbc5a54e0fbe565bf1b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e8:fa:a0:3a:c8:61:da:97:92:82:98:3b:4f:
19:2b:47:0f:3e:c9:fb:51:10:66:25:a0:a2:2a:d4:
46:13:0e:e0:f2:d1:20:d7:8e:4c:36:79:4c:41:cf:
f9:fc:73:6d:8c:46:85:da:b8:c6:0a:c4:f2:c0:e4:
81:64:89:97:1a:82:d5:4f:b2:82:c6:a5:dc:25:d6:
96:3c:cf:bd:e3:ec:77:6f:f5:b7:9e:8e:da:92:da:
65:3f:32:bf:b1:eb:bc:0d:5f:e7:d8:f6:35:f5:c5:
73:76:41:9c:9c:e9:42:78:d6:17:2a:db:80:ab:df:
13:b6:35:55:82:eb:06:75:f9:07:8a:87:46:2f:ec:
47:91:9a:76:b1:80:57:e1:5d:f3:2d:93:1d:df:dc:
43:cc:da:b4:c1:b5:ab:38:3f:fb:db:da:3c:28:03:
a0:69:9b:29:18:d3:c5:dd:d4:76:dd:cf:af:5c:34:
1d:48:61:10:0a:65:e0:ee:52:a9:0b:b6:d4:57:ba:
da:79:6e:79:ce:5c:2c:25:3d:f0:61:c7:85:70:c5:
01:d3:43:23:bf:9f:6e:e3:96:e7:cf:d0:38:80:24:
83:fc:c2:bb:e9:7d:1d:9c:d5:8b:b5:e5:c6:87:5e:
e0:72:13:3a:78:d8:8a:9e:4e:b4:b2:0e:68:65:cd:
97:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3B:6E:4F:83:8C:84:37:8F:7F:BC:5A:54:E0:FB:E5:65:BF:1B:53
X509v3 Authority Key Identifier:
keyid:AA:A6:E6:79:25:82:1E:4B:87:9C:80:3E:C0:A5:22:45:F9:67:3A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqbmeSWCHkuHnIA-wKUiRflnOtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/64ae5a-8622-45e2-9327-512f565ac011/1/qqbmeSWCHkuHnIA-wKUiRflnOtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:94:be:25:da:f3:bb:25:f5:38:3b:8c:43:55:af:ab:91:dc:
5f:bb:65:e4:a6:d8:32:1c:9b:a2:d4:39:4c:c3:ae:12:9a:b0:
6f:4a:e9:e0:1a:7a:9e:c4:50:d4:06:ff:d1:38:0f:d0:7f:89:
e7:44:51:21:45:37:15:48:15:02:2e:a9:53:5b:8a:13:ba:b0:
67:29:54:96:f7:b7:fa:c6:02:a7:e4:a6:71:6c:38:f2:08:69:
d1:74:19:c4:95:2c:99:05:0d:00:22:37:f3:1d:ae:9a:4e:e0:
14:f5:30:d0:42:bf:41:20:4e:3f:25:4a:c1:0b:fa:f6:02:b8:
b3:e5:99:cb:37:da:98:e8:e8:92:05:33:0c:f4:cf:7b:1b:72:
aa:83:d3:d8:e6:e2:13:8f:e1:45:ca:51:c3:c9:18:93:32:29:
b4:4a:0f:e8:1d:59:eb:b2:35:5b:2d:c5:69:28:cc:b7:ae:20:
ca:8e:18:e9:cd:99:be:5c:65:83:61:6a:7b:17:dc:1a:06:ba:
d8:f8:e7:19:36:2c:c5:05:5e:c1:45:77:5a:60:7d:03:4e:5c:
56:23:9f:25:ec:0b:e8:2c:3d:f8:96:14:80:aa:9e:28:ad:0e:
33:00:55:fc:c1:fe:75:d6:6f:09:3c:9f:40:3e:04:b6:d9:fd:
e3:11:2e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:57:15 2026 by rpki-client