Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
File: QRoqlAW9oWccEHdvRCYnPJBOStA.mft (raw, json)
Hash identifier: wjW/agYV9vd1Dw+mNF76cJpbeoWuzNOmxBVeO57Kupg=
Subject key identifier: 20:49:94:29:4A:FB:99:68:BE:57:09:74:A7:F2:24:13:E8:E6:E0:C9
Authority key identifier: 41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
Certificate issuer: /CN=411a2a9405bda1671c10776f4426273c904e4ad0
Certificate serial: 019D25F167F6EE6349873C072467BACB2FAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
Manifest number: 188A
Signing time: Wed 25 Mar 2026 17:01:10 +0000
Manifest this update: Wed 25 Mar 2026 17:01:10 +0000
Manifest next update: Thu 26 Mar 2026 17:01:10 +0000
Files and hashes: 1: JhKTt4vHe2Da6Kx5S6KE0aGaD54.roa (hash: nw0ozHE1LZlyAK+hkXXsJOHymcfFOhmuSyMz6eBbqyE=)
2: O5zwSwZaq-PnYfyFgUGaYTtXVCc.roa (hash: EcphMyhwWu+HB1619MCd3HbMcseN3a1eZUs2rmX7LwY=)
3: QRoqlAW9oWccEHdvRCYnPJBOStA.crl (hash: St5Y3Fd2bUTHBRzc6kmGEGb47TXRfM/Qm+6oogD8Gzc=)
4: mV0XT4eYWUzPfujoqVHWBgPdVhw.asa (hash: SxQBgXkzl2s7ZSzL5zFHD8gDFNbcwGk2HGZOyqJzEQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:67:f6:ee:63:49:87:3c:07:24:67:ba:cb:2f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411a2a9405bda1671c10776f4426273c904e4ad0
Validity
Not Before: Mar 25 17:01:10 2026 GMT
Not After : Mar 26 17:01:10 2026 GMT
Subject: CN=204994294afb9968be570974a7f22413e8e6e0c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:21:83:36:17:10:ab:14:36:88:8d:29:d7:32:
bf:f5:15:57:de:d1:a6:00:e1:47:51:b6:8e:ae:49:
85:0f:10:c1:20:89:04:4e:59:dd:0f:ff:19:2c:6a:
40:7c:18:e5:62:2e:fb:95:e9:e8:48:d9:c4:42:d2:
f1:30:14:ba:85:60:6c:a0:1b:e3:d2:e5:8b:8d:89:
4a:0c:27:06:8e:e4:65:c9:9a:e2:74:d9:f5:27:9c:
89:08:8b:8f:ee:86:66:90:3f:b9:43:6d:9a:c7:89:
35:b7:b2:d9:bf:e5:32:d9:5b:f9:b9:bd:1e:96:f6:
db:cb:97:e6:f1:d7:fa:07:c4:3b:de:b9:f2:ba:fc:
af:9e:05:39:c8:56:0e:42:9a:fa:c8:ef:1d:bc:84:
58:4f:47:e8:3e:97:94:98:c1:54:ee:9e:91:17:7e:
a4:07:84:9e:42:ee:5c:3c:9b:0a:6a:f2:d1:4a:e7:
e8:7e:8b:42:9c:d4:73:49:3b:cd:97:37:f6:5c:88:
22:c4:55:7b:98:8b:bf:2d:b2:71:64:50:62:8c:66:
b1:a1:7e:92:65:ee:77:5c:b4:b4:7e:ea:36:bb:b8:
48:8f:55:a7:8f:b2:dc:90:f5:56:cd:d4:52:53:e8:
3f:32:cf:81:17:8a:b9:ab:a7:d7:34:59:0c:d9:d9:
48:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:49:94:29:4A:FB:99:68:BE:57:09:74:A7:F2:24:13:E8:E6:E0:C9
X509v3 Authority Key Identifier:
keyid:41:1A:2A:94:05:BD:A1:67:1C:10:77:6F:44:26:27:3C:90:4E:4A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QRoqlAW9oWccEHdvRCYnPJBOStA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/fe6870-0990-4c21-9e4d-8c52e666a8a2/1/QRoqlAW9oWccEHdvRCYnPJBOStA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:e4:2a:ed:f2:9d:c3:42:e9:92:93:a9:f9:32:7a:86:77:3c:
65:41:9e:10:70:c6:91:3b:75:84:cb:65:82:65:bd:8b:d9:46:
d4:1b:e9:0c:ba:2c:44:00:90:8e:09:22:5b:70:7e:7e:df:f5:
fa:1a:ba:c2:9e:2d:69:7b:77:5c:2b:87:9f:d7:23:68:c7:27:
b9:e1:ee:12:aa:54:cd:a9:91:31:fa:ef:35:fe:f8:11:f1:40:
22:22:81:56:cc:21:d3:68:e4:11:bf:67:eb:e6:70:8f:6f:d2:
d4:bb:40:70:10:b4:de:aa:e8:eb:78:4e:0d:1f:66:4c:35:fa:
b4:a2:73:7e:e6:a7:91:05:b8:95:54:50:aa:4f:27:04:b4:f9:
ad:0b:69:67:c0:c1:38:8f:a0:a7:17:75:69:47:e7:12:04:3e:
6a:72:ca:4d:63:69:6a:dc:8e:57:7c:6d:84:4d:7d:16:18:73:
1d:1c:12:8e:42:e3:36:d1:6a:6c:c8:fc:9d:f6:72:be:9d:6b:
14:15:68:20:f8:60:bc:d1:c3:39:47:f9:6e:59:2a:6a:23:74:
12:40:23:be:a7:f9:ea:1b:74:f7:f0:84:8c:4b:ce:f1:e1:1d:
99:fc:41:33:7a:2e:12:1d:64:ab:dc:23:ce:06:d8:54:a8:0a:
19:53:4a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:19:34 2026 by rpki-client