Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
File: qsIj-xlCEV5IqXVCByktAKCC7N8.mft (raw, json)
Hash identifier: n8neYuhCyEsmnWf1ohLHHT9rmsL1Uz/yaHDvHvbDmXY=
Subject key identifier: 3B:42:34:A5:E6:2E:9A:77:CD:62:9F:6D:4F:2B:1F:82:F5:68:1F:9B
Authority key identifier: AA:C2:23:FB:19:42:11:5E:48:A9:75:42:07:29:2D:00:A0:82:EC:DF
Certificate issuer: /CN=aac223fb1942115e48a9754207292d00a082ecdf
Certificate serial: 019D2816A911E809C0BC773CF0798DD3179C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
Manifest number: 0AD8
Signing time: Thu 26 Mar 2026 03:01:06 +0000
Manifest this update: Thu 26 Mar 2026 03:01:06 +0000
Manifest next update: Fri 27 Mar 2026 03:01:06 +0000
Files and hashes: 1: WXDefoGzoUIZ3AxVVx77aC_MDc4.roa (hash: 0/oY/YwsoelOzPNcClAu/TuufBye/1HGrabd5S28VWg=)
2: qsIj-xlCEV5IqXVCByktAKCC7N8.crl (hash: Yemzx/y9uEVklJR3mEXbd+W/u0NCbl/2sWMBebjB9iY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:a9:11:e8:09:c0:bc:77:3c:f0:79:8d:d3:17:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aac223fb1942115e48a9754207292d00a082ecdf
Validity
Not Before: Mar 26 03:01:06 2026 GMT
Not After : Mar 27 03:01:06 2026 GMT
Subject: CN=3b4234a5e62e9a77cd629f6d4f2b1f82f5681f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:02:f7:bc:1a:b4:30:c0:58:16:dd:7e:c3:a6:
91:0e:04:7e:4d:37:53:3a:2c:5f:53:af:9a:b5:be:
35:28:e2:c5:b4:74:3b:fd:21:d9:eb:2e:d8:4b:6c:
84:bc:77:a2:6b:7c:8d:59:be:f5:ec:8b:22:25:5f:
73:aa:db:73:6b:13:62:27:db:9b:1e:27:d6:45:45:
5a:89:08:01:24:a5:20:11:f4:65:19:c6:90:3f:7c:
bc:de:cb:36:7f:dd:e6:4e:10:2c:8b:8f:8f:62:5d:
b2:4a:7f:3e:bb:be:ef:e0:cd:1f:cf:5a:b3:4e:4f:
0f:55:b7:95:4c:f4:62:e6:df:1a:17:83:03:84:8a:
7e:c7:b9:16:a0:9a:bd:11:5d:c3:3b:db:8a:8b:2a:
8d:3f:63:28:f3:2a:45:93:82:8a:36:c3:91:49:95:
b7:96:93:d1:68:9e:b2:db:3a:63:6a:63:8c:b2:f7:
96:30:57:31:3b:39:d1:e2:26:28:c5:24:3d:92:c2:
35:e5:6b:4a:71:96:6c:79:db:6d:7f:3c:77:dc:7e:
5a:f3:58:8a:75:d1:de:00:e9:3d:26:4b:c4:48:5e:
1e:fb:37:c8:7a:2d:5e:5d:0c:ad:e8:93:b0:d4:14:
18:41:a8:cc:e6:45:39:23:63:2d:28:81:a4:fe:02:
d2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:42:34:A5:E6:2E:9A:77:CD:62:9F:6D:4F:2B:1F:82:F5:68:1F:9B
X509v3 Authority Key Identifier:
keyid:AA:C2:23:FB:19:42:11:5E:48:A9:75:42:07:29:2D:00:A0:82:EC:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsIj-xlCEV5IqXVCByktAKCC7N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60eb48-279d-4afe-8d8a-1daa951c71b7/1/qsIj-xlCEV5IqXVCByktAKCC7N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:80:d9:ab:7b:14:da:a8:a8:b8:b3:b1:0d:33:b5:b4:41:6f:
55:12:04:09:8c:24:a2:16:46:80:dd:ec:dc:e3:e8:71:ef:ed:
63:b8:63:ab:52:2e:47:b8:13:22:20:17:65:05:e8:23:cd:34:
de:57:8e:3c:04:67:3a:92:89:64:9c:cb:fa:37:80:e6:28:90:
8a:3e:5d:e6:c6:41:0c:5c:05:93:3b:bc:a0:0a:a0:44:a1:63:
96:9b:db:8e:31:c4:49:6b:47:69:cf:60:15:c1:aa:45:41:f1:
cf:e8:8c:8e:ff:d8:0d:b9:56:1a:48:75:d6:3b:47:3e:03:6d:
c4:30:6e:db:f1:6e:3c:42:65:f6:b7:9b:59:fe:11:44:d9:28:
41:e5:74:8b:09:a3:b4:9e:d4:c8:12:d4:6f:df:21:35:1b:9e:
3c:05:71:0c:27:54:bd:7f:2b:af:25:3e:5b:ec:67:22:59:31:
d4:a0:1e:b9:65:68:89:39:1b:0b:fd:7d:ee:b3:93:36:01:27:
8a:72:f9:a1:07:84:3b:01:31:25:f7:31:5a:c9:7b:8f:cd:bc:
10:50:3c:90:04:18:9a:56:a9:f0:e0:7a:19:1e:a5:e0:5c:c4:
58:e5:75:79:ff:0a:ac:1e:f3:14:93:14:58:92:b9:06:72:ce:
4f:f6:cc:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:34:50 2026 by rpki-client