Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: kbiZQL7UASE/BleVhl7zWy5Jt5KbkBSBm7JgA2yLaRc=
Subject key identifier: 62:23:34:CC:6B:10:C8:E7:14:89:DA:88:7B:9D:10:13:D9:7A:A6:A1
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 019D2929A76ECFFE02E5B2548447BE5A99FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 08:01:28 +0000
Manifest this update: Thu 26 Mar 2026 08:01:28 +0000
Manifest next update: Fri 27 Mar 2026 08:01:28 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: jF3JiT8r3N6oqvijsqkcJd6qWSf/cNy+Vux80fCTCuc=)
2: vvBOQ04V9GOEp_xWifhOTx36DlE.roa (hash: kyJgbX8RGqWByplGJZ1fz/UdnF/eQPqYIRllvHcTi70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:a7:6e:cf:fe:02:e5:b2:54:84:47:be:5a:99:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Mar 26 08:01:28 2026 GMT
Not After : Mar 27 08:01:28 2026 GMT
Subject: CN=622334cc6b10c8e71489da887b9d1013d97aa6a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:35:f0:3b:06:c6:09:e5:97:5d:98:f4:f1:42:
40:01:8f:c6:0b:be:a9:4f:fd:7b:6c:16:52:28:82:
ad:ee:93:07:47:10:80:fc:fe:2e:c5:f0:96:31:3a:
26:ac:5d:ac:53:86:3d:dc:b6:5f:f9:1a:d9:24:8a:
8e:9f:96:b1:20:39:ce:c3:f8:b1:a8:81:d6:8d:72:
9f:39:89:5a:e5:91:31:fb:66:84:87:2d:0d:38:ed:
99:97:54:71:77:d4:fc:91:3f:a2:6d:34:b9:a2:79:
aa:2e:15:a1:75:5f:fd:9c:46:2b:49:b0:a4:75:e6:
a9:8a:05:01:0d:95:cd:da:62:2a:c1:e3:a8:9a:ff:
72:a3:dc:2b:0c:5e:53:07:a8:dc:a2:bc:08:a8:b7:
5d:d2:75:ae:d7:a4:16:89:d6:61:85:31:55:59:30:
ed:52:d8:d8:91:98:bf:88:2a:23:a8:4e:2e:91:18:
b5:86:08:49:13:97:84:e7:8b:68:b7:5d:14:33:16:
b4:f8:7c:aa:83:6c:ab:b7:9f:e4:44:23:a8:40:53:
1f:75:72:31:0e:81:b9:f8:64:86:1a:3c:93:ce:66:
2c:da:85:fc:35:59:e3:49:91:bf:cb:90:3c:2b:97:
a4:9b:6e:81:dc:05:d3:d5:19:40:36:41:1a:38:23:
40:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:23:34:CC:6B:10:C8:E7:14:89:DA:88:7B:9D:10:13:D9:7A:A6:A1
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:39:b9:56:18:c2:7d:94:a1:60:6f:f8:33:6c:10:80:91:d8:
0c:5c:a2:b7:09:ce:14:3f:35:bd:8d:bf:ab:e4:2f:73:90:0b:
ff:2c:ce:25:88:06:1d:dd:2c:ea:7f:35:b4:ad:9a:99:ac:dc:
01:be:96:5c:17:7b:21:99:95:d3:1e:cd:af:6c:43:cf:c8:96:
81:04:5e:e9:81:7c:d4:39:44:4a:03:02:14:b3:b2:45:4d:34:
d7:2f:07:4a:67:8f:04:84:05:7a:f4:eb:60:85:fa:19:6d:22:
59:df:8c:91:19:96:b2:c1:ef:b6:ca:9b:d6:25:f7:38:fc:3d:
5a:82:24:b3:9c:9e:7d:60:02:d4:37:74:fa:74:2e:ca:74:0a:
16:c6:df:c2:f4:97:db:e3:73:43:4a:8b:8c:61:55:30:4f:e5:
a7:44:bc:31:9f:f6:22:47:da:d2:1b:04:23:bf:cf:da:fc:bf:
f2:07:53:c9:2a:5a:df:50:b7:3a:08:98:18:dd:72:9c:bc:fa:
1c:59:f7:aa:a7:75:11:a0:46:cd:6d:e9:bf:ee:51:5e:ab:63:
a8:6d:ff:b4:2b:d4:1f:f4:0d:1e:c6:a1:81:b3:d4:e7:35:b7:
99:ab:42:37:ae:94:6c:e3:06:39:1b:62:ae:dd:bb:24:3e:26:
4a:e0:2d:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKaduz/4C5bJUhEe+Wpn8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWI0Y2Q0MGJhZTQ3ZDQ4ZjUxYzljY2NjNjA3Y2NlNTdj
ZTAwZjcwHhcNMjYwMzI2MDgwMTI4WhcNMjYwMzI3MDgwMTI4WjAzMTEwLwYDVQQD
Eyg2MjIzMzRjYzZiMTBjOGU3MTQ4OWRhODg3YjlkMTAxM2Q5N2FhNmExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszXwOwbGCeWXXZj08UJAAY/GC76p
T/17bBZSKIKt7pMHRxCA/P4uxfCWMTomrF2sU4Y93LZf+RrZJIqOn5axIDnOw/ix
qIHWjXKfOYla5ZEx+2aEhy0NOO2Zl1Rxd9T8kT+ibTS5onmqLhWhdV/9nEYrSbCk
deapigUBDZXN2mIqweOomv9yo9wrDF5TB6jcorwIqLdd0nWu16QWidZhhTFVWTDt
UtjYkZi/iCojqE4ukRi1hghJE5eE54tot10UMxa0+Hyqg2yrt5/kRCOoQFMfdXIx
DoG5+GSGGjyTzmYs2oX8NVnjSZG/y5A8K5ekm26B3AXT1RlANkEaOCNA/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGIjNMxrEMjnFInaiHudEBPZeqahMB8GA1UdIwQY
MBaAFEIbTNQLrkfUj1HJzMxgfM5XzgD3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEt
ODRjY2YzNDIwMjg2LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi84NTEzY2QtYWFjNy00NjZkLWEwMzEtODRjY2YzNDIwMjg2
LzEvUWh0TTFBdXVSOVNQVWNuTXpHQjh6bGZPQVBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUzm5VhjC
fZShYG/4M2wQgJHYDFyitwnOFD81vY2/q+Qvc5AL/yzOJYgGHd0s6n81tK2amazc
Ab6WXBd7IZmV0x7Nr2xDz8iWgQRe6YF81DlESgMCFLOyRU001y8HSmePBIQFevTr
YIX6GW0iWd+MkRmWssHvtsqb1iX3OPw9WoIks5yefWAC1Dd0+nQuynQKFsbfwvSX
2+NzQ0qLjGFVME/lp0S8MZ/2Ikfa0hsEI7/P2vy/8gdTySpa31C3OgiYGN1ynLz6
HFn3qqd1EaBGzW3pv+5RXqtjqG3/tCvUH/QNHsahgbPU5zW3matCN66UbOMGORti
rt27JD4mSuAtfg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:57:33 2026 by rpki-client