Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
File: qiIvVnO4KKeuUvmboMYqzXCXSjg.mft (raw, json)
Hash identifier: 6S0V1/pq4byXC5xFUMR+SpMhCQJ1Jx7xXeQf8LGMO8w=
Subject key identifier: 63:9F:FA:ED:43:15:42:18:6F:6F:B7:3D:6D:C6:91:82:BD:92:55:04
Authority key identifier: AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
Certificate issuer: /CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Certificate serial: 019D2BF33B5C4EDB31A6A1C57CD16CF25DD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
Manifest number: 0584
Signing time: Thu 26 Mar 2026 21:00:53 +0000
Manifest this update: Thu 26 Mar 2026 21:00:53 +0000
Manifest next update: Fri 27 Mar 2026 21:00:53 +0000
Files and hashes: 1: 9AVYlnVDy_5NTBGvlnnPZPWKT8U.roa (hash: N+NhjHfDEfFXjTSJhobVC2Q1bhjazURhKTdBJKZj/zM=)
2: qiIvVnO4KKeuUvmboMYqzXCXSjg.crl (hash: 8zRpA2TbYmTtMWkFQXOpLy9kVPbVdDEpAVlaD6ZunK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:f3:3b:5c:4e:db:31:a6:a1:c5:7c:d1:6c:f2:5d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa222f5673b828a7ae52f99ba0c62acd70974a38
Validity
Not Before: Mar 26 21:00:53 2026 GMT
Not After : Mar 27 21:00:53 2026 GMT
Subject: CN=639ffaed431542186f6fb73d6dc69182bd925504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:62:36:ac:2e:f5:02:06:2a:cb:44:97:ac:56:
d0:5d:b8:7f:eb:bd:f6:3e:a0:1b:24:9c:eb:95:78:
04:0e:ce:6d:f4:9c:8c:69:13:08:0e:4d:b6:f6:42:
94:3f:94:76:96:4b:0b:e2:b5:e4:fc:ef:c9:90:1b:
ad:d3:dd:57:f8:97:0b:c9:4c:45:fe:5c:93:6f:ba:
c3:03:31:2c:e8:2e:25:fa:3c:75:fd:1e:34:f0:9a:
d6:88:fb:67:7a:73:d0:56:79:2a:35:3b:59:a1:bc:
74:32:38:68:2c:a8:42:20:df:37:5d:97:d5:10:e0:
a8:d4:fa:01:38:91:62:d0:24:d0:2c:94:1a:10:12:
38:21:bd:a5:b8:ea:2b:38:e1:fa:46:94:c9:8c:72:
36:be:3c:e8:d1:cb:ea:af:a6:f0:b4:10:8a:19:80:
a5:06:5c:ff:04:c4:0c:cc:f7:9c:f0:a8:dc:bc:2f:
9b:f5:21:37:d7:51:ea:b4:dc:84:d9:21:66:84:02:
18:dd:7c:25:e7:4c:10:5b:57:3d:2f:fd:93:f7:86:
d9:93:60:b9:27:da:20:82:01:3e:43:f2:7a:10:51:
08:fc:1b:49:f7:65:98:94:d8:54:e2:da:8f:aa:0f:
aa:81:59:e9:a4:ec:a3:58:de:3c:43:08:64:ec:ec:
ea:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9F:FA:ED:43:15:42:18:6F:6F:B7:3D:6D:C6:91:82:BD:92:55:04
X509v3 Authority Key Identifier:
keyid:AA:22:2F:56:73:B8:28:A7:AE:52:F9:9B:A0:C6:2A:CD:70:97:4A:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qiIvVnO4KKeuUvmboMYqzXCXSjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e54636-c998-409a-89bb-2b7b827e718c/1/qiIvVnO4KKeuUvmboMYqzXCXSjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:1b:30:93:bd:c0:9f:dc:84:78:3c:57:9c:87:56:b4:a6:e8:
06:89:ac:65:c9:ef:33:00:e8:66:f6:5e:d9:33:36:30:1a:42:
f1:70:fc:4f:2a:8c:7b:c5:0e:77:3c:11:7f:ab:9a:c8:f2:8a:
1c:02:05:59:bc:41:81:e7:83:20:b2:b6:33:49:a5:31:5b:6d:
09:ee:ff:24:9b:7f:5f:83:95:46:61:03:cc:06:bc:d3:ee:86:
99:37:7e:74:3b:5b:23:db:32:3e:57:9a:84:f6:3d:04:94:1f:
46:29:21:7c:7f:b7:a4:76:a7:c6:0d:37:f9:f6:cf:c0:53:64:
8b:11:23:a1:68:4a:32:8f:1b:8a:13:80:be:be:85:3d:21:aa:
3f:b8:bf:62:0a:83:e8:bf:0a:56:ee:fb:02:a3:d2:42:88:90:
6c:9c:de:7d:56:c0:68:e2:35:78:73:ba:2b:17:f3:72:cf:5a:
44:ea:d8:ce:88:5c:c4:1b:23:95:d7:97:49:0f:94:2b:8b:f6:
2c:fc:7c:e6:f6:71:5e:03:2f:3a:3e:53:46:3e:37:02:eb:d7:
f4:bc:ee:2d:e3:1a:03:f8:d0:8e:c0:37:d8:ba:0f:a4:f2:a8:
f2:d9:87:36:07:36:5b:36:ba:2b:6c:9d:2b:1e:6c:96:87:83:
37:12:3d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:43:40 2026 by rpki-client