Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
File: Q94YPxSj8k-bhtBE-HcphoC1Ers.mft (raw, json)
Hash identifier: kFd8kceI6MaWjQeLz5mQbx3igTztmkCSQUMLRSUVSVA=
Subject key identifier: 74:75:19:B3:C9:9F:A1:F0:F1:AD:2C:D7:5C:6C:44:B6:51:93:86:7E
Authority key identifier: 43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
Certificate issuer: /CN=43de183f14a3f24f9b86d044f877298680b512bb
Certificate serial: 019D24A7979C3DB4F3BF299E72543546A7EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
Manifest number: 06EF
Signing time: Wed 25 Mar 2026 11:00:56 +0000
Manifest this update: Wed 25 Mar 2026 11:00:56 +0000
Manifest next update: Thu 26 Mar 2026 11:00:56 +0000
Files and hashes: 1: Q94YPxSj8k-bhtBE-HcphoC1Ers.crl (hash: neCf5QJi1L/xSRQD3vkzTE0Tn4buXUSVNPWmYfAfYDs=)
2: eRzoAPCehzYUsTKWzumpWnRkGv4.asa (hash: XuGTrIZBYEhP0vD01NV66qn1i9p1ktzdlWy+jaqHixE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:a7:97:9c:3d:b4:f3:bf:29:9e:72:54:35:46:a7:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43de183f14a3f24f9b86d044f877298680b512bb
Validity
Not Before: Mar 25 11:00:56 2026 GMT
Not After : Mar 26 11:00:56 2026 GMT
Subject: CN=747519b3c99fa1f0f1ad2cd75c6c44b65193867e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:2e:c9:47:6a:2c:c1:fc:32:6b:ee:d7:a9:
ff:f5:6a:41:1d:36:43:95:27:26:6f:dc:9c:05:32:
8a:40:09:30:bd:f1:88:03:ae:bf:1e:78:81:58:0a:
06:b6:59:e6:c0:58:df:0a:c2:e2:75:f7:53:c6:20:
ab:f7:92:47:e1:16:6b:46:8f:1c:71:4c:05:7b:61:
bc:60:7a:dd:04:a3:0d:46:a6:03:38:aa:8e:32:e1:
39:28:b6:0b:25:e0:e4:89:6e:40:84:dc:94:5c:51:
43:10:83:c7:1f:d1:56:5b:2a:09:76:47:3a:e5:69:
a6:4f:92:73:10:6c:53:78:0d:85:1f:fb:66:da:d9:
28:de:86:b2:c1:cd:54:b7:cb:98:c6:d4:df:47:64:
69:c9:31:8b:ec:9e:ee:74:81:a8:ca:12:6a:2c:71:
2c:bc:30:d3:9b:3e:d0:eb:ad:79:1d:80:c9:06:18:
8c:1b:cb:f5:2e:c7:75:8a:64:38:36:00:e3:96:46:
66:4c:66:6a:a3:b1:01:0f:15:a2:e0:88:63:fd:14:
1e:e1:9f:18:fd:ab:33:88:f6:5c:d6:e1:74:ed:a5:
b2:9c:ca:12:36:7c:09:8e:4d:70:84:e1:d2:4a:67:
a2:37:ac:71:46:84:42:69:75:8c:c5:15:73:de:50:
cc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:75:19:B3:C9:9F:A1:F0:F1:AD:2C:D7:5C:6C:44:B6:51:93:86:7E
X509v3 Authority Key Identifier:
keyid:43:DE:18:3F:14:A3:F2:4F:9B:86:D0:44:F8:77:29:86:80:B5:12:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q94YPxSj8k-bhtBE-HcphoC1Ers.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2d8fe-01f1-4c56-91f8-ded743147d58/1/Q94YPxSj8k-bhtBE-HcphoC1Ers.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:13:19:3c:3a:c4:71:a3:1b:b5:39:f3:68:8f:08:62:b3:cd:
1d:79:1f:f9:3c:51:3c:7c:fd:d3:91:ea:8f:d7:8c:1d:04:a5:
4a:80:63:62:27:f8:44:c5:c6:2e:98:9e:5e:80:25:a0:27:81:
fe:93:16:8a:e5:30:4f:0f:c0:18:7e:9c:81:a8:fa:22:5b:d1:
ff:1b:15:cd:26:fc:75:a0:1e:d1:40:dc:1c:98:fc:b2:17:14:
81:59:04:d0:c4:dd:45:39:ab:ba:bc:51:dc:cc:d1:a3:f6:93:
24:f1:57:a3:8e:91:77:b4:c0:24:51:43:3e:b7:f4:d0:6d:27:
36:5d:a7:bf:30:15:bc:24:4a:ac:af:e6:67:83:d5:ae:4b:1c:
c0:78:f7:43:8c:7d:1b:ea:ce:0d:31:3b:ec:f5:1f:f9:bc:47:
aa:d1:81:e2:c4:96:8a:c8:62:9b:57:3e:88:bd:8f:83:31:e4:
0e:60:55:99:07:19:12:df:3b:5d:76:b2:9b:36:10:99:d4:17:
7a:10:3c:b5:c2:23:ef:da:22:62:5a:59:ac:3b:f4:97:e0:6a:
87:09:c8:c7:da:6b:0f:36:4e:5b:64:0f:cc:b6:72:18:16:3d:
e7:02:0f:58:e2:57:7a:f5:2d:80:15:ba:b2:e3:a6:c8:2c:8c:
bd:32:ff:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:24:46 2026 by rpki-client