Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
File: qnD7s9sihDfWBXmaxPRZjSLhPhs.mft (raw, json)
Hash identifier: lJHOqRw5xun2dIoWiS8uhpPQybn0T/FFS7N5K+Jqrk4=
Subject key identifier: A7:60:07:62:32:9F:52:BE:B5:77:E7:5B:B8:45:59:FC:A4:D4:CD:C1
Authority key identifier: AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
Certificate issuer: /CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Certificate serial: 019D265F6AB5943DD6BF63534302EBC04A17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 19:01:20 +0000
Manifest this update: Wed 25 Mar 2026 19:01:20 +0000
Manifest next update: Thu 26 Mar 2026 19:01:20 +0000
Files and hashes: 1: 5zEkxsehYVrSBWS8R6vq4w7gVtY.roa (hash: y9Gfd8AbrZdX5+SsYIumelvvyPK5gzC9wuMjV0Ywdgw=)
2: qnD7s9sihDfWBXmaxPRZjSLhPhs.crl (hash: xzkYfredEMZar7nla8gDmc8YsWkc1l+U9VSu0E9jYms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:6a:b5:94:3d:d6:bf:63:53:43:02:eb:c0:4a:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa70fbb3db228437d605799ac4f4598d22e13e1b
Validity
Not Before: Mar 25 19:01:20 2026 GMT
Not After : Mar 26 19:01:20 2026 GMT
Subject: CN=a7600762329f52beb577e75bb84559fca4d4cdc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ea:27:23:b7:ab:1c:3e:05:29:fc:a7:5d:f0:
ad:fc:61:30:e0:1d:fd:51:c7:d1:12:3a:b1:e5:44:
a8:8a:0d:7b:ac:7b:ea:fa:38:83:09:1a:77:6c:43:
cb:c5:0c:0b:85:05:44:ce:56:19:c8:e4:ce:58:64:
13:a9:41:e0:1e:af:a0:8e:fd:e8:45:b8:af:c2:d1:
83:40:66:86:90:ef:17:5f:6c:19:50:68:56:f3:3e:
fd:81:e3:a8:91:5b:3d:3b:52:32:06:e9:2a:e4:ea:
e3:ee:d4:c8:00:d2:dd:ac:21:8c:89:51:b1:4e:f5:
f4:5b:cd:3d:7e:b2:cd:b4:8c:7e:87:49:d5:a4:c8:
a5:86:35:52:b4:64:8b:db:75:b4:02:c3:5b:b7:e8:
2e:85:11:87:62:62:35:d9:53:fd:14:b6:ee:25:e5:
b9:43:2e:29:55:53:fd:be:22:6e:5a:31:06:14:16:
95:2b:64:f7:bd:65:18:51:03:1b:68:58:32:ab:4f:
de:1e:ee:65:1f:e3:58:a0:fd:6c:42:26:0a:ef:c7:
6c:9a:2b:9c:48:3a:28:37:2f:8f:7c:eb:89:a2:ef:
0d:8c:93:00:40:35:fa:cf:c7:cb:e9:ff:e3:6a:af:
27:40:aa:ba:3d:39:0e:e1:ae:e7:4e:7b:b8:3f:7a:
46:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:60:07:62:32:9F:52:BE:B5:77:E7:5B:B8:45:59:FC:A4:D4:CD:C1
X509v3 Authority Key Identifier:
keyid:AA:70:FB:B3:DB:22:84:37:D6:05:79:9A:C4:F4:59:8D:22:E1:3E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnD7s9sihDfWBXmaxPRZjSLhPhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d8e184-e79b-47fe-96dc-5ba4235ce619/1/qnD7s9sihDfWBXmaxPRZjSLhPhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:98:eb:a2:81:d2:28:0d:20:79:79:4e:a1:c8:78:cd:19:d2:
df:73:e7:70:c6:34:d8:54:1d:b0:c5:4d:77:cb:71:02:b1:89:
48:63:ff:3a:a8:f8:da:96:2c:04:15:3d:87:ca:fd:37:ee:8e:
c4:3d:1d:f3:fb:d9:86:c1:de:76:87:56:81:20:2b:ad:a7:2b:
64:f7:4a:44:82:56:9a:31:0d:eb:cb:51:17:ac:11:63:9b:c5:
b3:64:5c:7a:68:43:22:71:c3:92:ca:19:a2:a3:bd:6a:47:8e:
8b:86:64:31:55:38:8a:b1:9c:76:9a:59:eb:6f:a3:62:86:8b:
0c:cd:d0:dd:6e:f1:14:ba:be:26:93:8a:fb:18:1b:f5:a0:af:
63:93:d1:ed:56:29:cc:c5:d0:d3:87:c6:0b:d6:14:c3:9f:8e:
36:e2:e9:e5:3a:3a:7c:51:17:05:07:52:29:01:15:b4:b1:51:
f2:d9:2c:e5:c5:68:91:8a:2e:78:50:e9:99:c5:55:2b:d0:c8:
34:65:d6:51:b9:87:5d:bd:54:db:90:27:30:ee:29:af:fc:a3:
af:6b:ef:63:ef:b1:5c:f1:ba:e1:6c:2b:0f:4d:82:59:71:6d:
df:d1:9f:97:99:d6:8d:6e:50:e0:5d:bd:1b:2e:60:4d:6c:d5:
1a:4f:74:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:44:57 2026 by rpki-client