Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
File: QIyWuStsaY_TT6x9WB1MCQjczpk.mft (raw, json)
Hash identifier: D2sICFcie9Hpg2B5aCQzhW+9riidm8RiqK3k5sSBRI4=
Subject key identifier: 93:36:96:F8:62:66:18:9F:32:D6:C1:AC:10:FD:51:27:D1:3D:53:08
Authority key identifier: 40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
Certificate issuer: /CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Certificate serial: 019D2B175846B07D281D7289B0AF64B46581
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
Manifest number: 1458
Signing time: Thu 26 Mar 2026 17:00:43 +0000
Manifest this update: Thu 26 Mar 2026 17:00:43 +0000
Manifest next update: Fri 27 Mar 2026 17:00:43 +0000
Files and hashes: 1: QIyWuStsaY_TT6x9WB1MCQjczpk.crl (hash: ZdhbGt+SRDtRBkTP8dqO7I8SlCcvC0QrQw46vGnYclI=)
2: t87-StaNkWoIrvxpm-LKJGpGKeM.roa (hash: r4gMZM/MRHYsjQV9QPuG6dWd9zz5OkmUPJF3gcNO56g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:58:46:b0:7d:28:1d:72:89:b0:af:64:b4:65:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408c96b92b6c698fd34fac7d581d4c0908dcce99
Validity
Not Before: Mar 26 17:00:43 2026 GMT
Not After : Mar 27 17:00:43 2026 GMT
Subject: CN=933696f86266189f32d6c1ac10fd5127d13d5308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:fb:f8:a8:3a:b6:3a:49:9e:d8:68:2e:ab:71:
73:ec:8d:14:2a:68:31:c1:c1:ad:ff:1c:50:06:aa:
66:87:fc:cd:b4:a2:fa:7e:ca:f4:c5:90:b8:1d:08:
a0:7c:b0:e9:fb:16:dd:db:ea:98:7d:ed:d8:75:52:
cb:20:4f:11:1f:84:c4:cb:92:dd:98:80:64:76:eb:
ac:48:b8:71:fa:4c:3b:0b:3e:7c:a6:10:d7:3d:b4:
ed:78:14:3c:90:81:44:9f:f2:c1:a4:27:72:21:00:
e0:4b:32:ee:f2:9f:fd:d2:89:26:40:d2:3a:18:0d:
22:52:65:07:60:31:4f:62:6a:9a:0a:bf:29:0d:38:
24:cd:fd:d5:7e:53:65:82:5b:3a:a7:f6:bb:34:7f:
5c:65:b0:8a:3b:e5:f1:b3:c7:be:4f:3f:5b:cb:1c:
0b:4d:40:fe:7b:b0:52:da:9b:a6:39:f3:f9:49:a2:
8c:91:b4:30:88:e4:8b:2b:57:ed:81:4d:96:83:67:
57:25:66:8f:f3:25:07:37:3d:e7:9c:b0:1a:a9:70:
4f:00:68:9b:17:8e:bb:3a:c5:e5:00:ec:50:35:6d:
d7:46:cd:d6:30:ab:6f:a0:f3:14:e2:9a:ca:d7:36:
ef:dd:ad:f1:40:16:8b:ff:96:e3:bb:51:45:52:ce:
87:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:36:96:F8:62:66:18:9F:32:D6:C1:AC:10:FD:51:27:D1:3D:53:08
X509v3 Authority Key Identifier:
keyid:40:8C:96:B9:2B:6C:69:8F:D3:4F:AC:7D:58:1D:4C:09:08:DC:CE:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIyWuStsaY_TT6x9WB1MCQjczpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/229fa2-32cc-4b59-9377-56bbf0beaf47/1/QIyWuStsaY_TT6x9WB1MCQjczpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:92:66:45:98:a3:e4:d1:b0:b4:b6:cf:bd:38:3d:d9:cd:d3:
b3:87:cc:b3:a6:a0:63:33:9c:8c:31:c5:b5:7d:67:6a:bb:bc:
c6:21:e9:58:bd:98:d0:b5:2f:f5:22:9c:92:97:d2:a3:98:91:
4b:f2:c3:c1:cb:e4:06:5a:ec:d1:5f:31:dd:21:00:d6:b1:ed:
b8:98:d0:c5:0b:7c:e8:95:23:7f:27:23:fb:85:93:7c:0d:c4:
c5:d2:86:39:6c:b3:ff:2b:da:75:2d:12:a6:dd:53:c0:f9:4d:
6e:78:64:2b:9a:5c:89:77:0f:9f:be:b0:cc:29:b8:f3:ae:81:
1f:f4:1d:75:fe:58:8e:c3:bd:47:ad:d0:bf:2b:c5:1d:e6:9c:
96:10:3d:20:68:98:bb:46:94:67:ba:20:03:be:e4:64:39:2f:
5c:a9:35:c6:a3:ca:3c:6e:f1:b1:e8:76:3c:3e:b9:bc:11:67:
4f:ab:69:a0:ae:78:c3:20:b5:8f:0a:9c:ac:26:93:b9:29:06:
cd:c7:97:1e:6e:b0:a1:a2:c2:e7:a8:21:fc:d8:42:12:b9:ef:
00:63:29:9f:ec:76:5f:4c:4a:ae:9b:33:ad:df:0f:b8:1e:55:
fb:4f:cc:b3:19:c5:fe:ff:08:1e:af:2a:bd:d5:2d:bb:63:68:
d0:a7:09:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:44:06 2026 by rpki-client