Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
File: QVHWtEHT9XdiwDL4-tIXYIoi96E.mft (raw, json)
Hash identifier: /2vUgaddGDeHhX5Gi0gF69flGq+WFTOqokc4ou4w+04=
Subject key identifier: 6C:E1:5E:CA:05:D7:76:2B:04:12:E5:5B:4F:FD:64:38:EB:65:7E:7E
Authority key identifier: 41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
Certificate issuer: /CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Certificate serial: 019D27E093582E83B7FA12EBE68E8C59CD1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 02:02:02 +0000
Manifest this update: Thu 26 Mar 2026 02:02:02 +0000
Manifest next update: Fri 27 Mar 2026 02:02:02 +0000
Files and hashes: 1: 5ryFhi9ZcM4ZXUi-AstHZtjweAE.roa (hash: 2qM0IhOL1SBTen6Ye0bZXnOAWOFNUbuFBAheUHcm2J0=)
2: QVHWtEHT9XdiwDL4-tIXYIoi96E.crl (hash: HjhxRADKGX8dtx6/NQ+2aehrGo5F26L6Ben+7H5Uexs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:93:58:2e:83:b7:fa:12:eb:e6:8e:8c:59:cd:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4151d6b441d3f57762c032f8fad217608a22f7a1
Validity
Not Before: Mar 26 02:02:02 2026 GMT
Not After : Mar 27 02:02:02 2026 GMT
Subject: CN=6ce15eca05d7762b0412e55b4ffd6438eb657e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:59:79:66:f6:08:d0:ee:b4:81:da:d0:ed:97:
bc:af:25:8e:d4:41:9b:fb:56:b1:8e:23:68:9a:85:
ac:22:72:b8:e4:5b:3b:af:ff:5e:74:30:c4:a7:0b:
0d:57:88:9d:76:48:cb:ef:74:90:7e:d8:12:09:e1:
d0:0e:0a:e8:68:92:43:2a:9a:a9:98:26:ff:bd:e7:
72:f2:a2:13:87:4d:3e:7f:9a:96:52:63:92:16:67:
e6:05:38:0e:d5:63:f9:34:fe:b3:71:df:73:79:cf:
87:43:f1:29:88:0d:cd:12:17:34:26:9c:42:f5:45:
f3:f8:32:4c:96:31:8d:ae:97:ac:f3:97:dc:3f:b9:
04:4f:90:a6:76:cf:c1:b3:38:47:a4:e2:cd:35:9b:
ca:ca:e4:00:fc:7a:5d:dd:e3:63:ee:46:47:7b:73:
9c:88:b2:9a:dc:c6:a6:e6:06:c5:28:bb:f3:d5:68:
b5:6a:2b:8c:c8:1b:7d:0d:20:b0:73:8e:0e:1f:c6:
16:33:ed:30:9e:0d:21:d0:17:72:c0:0f:58:ff:89:
e8:ea:d8:8f:f8:1f:55:b4:9c:67:26:c7:3c:35:da:
87:f5:3a:a8:be:df:66:e4:73:6b:c1:db:a2:6b:29:
c9:29:80:d9:af:4a:a1:46:ef:d1:d1:f0:36:5e:ab:
79:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E1:5E:CA:05:D7:76:2B:04:12:E5:5B:4F:FD:64:38:EB:65:7E:7E
X509v3 Authority Key Identifier:
keyid:41:51:D6:B4:41:D3:F5:77:62:C0:32:F8:FA:D2:17:60:8A:22:F7:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVHWtEHT9XdiwDL4-tIXYIoi96E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cddb63-9308-43c9-9473-eae418158a52/1/QVHWtEHT9XdiwDL4-tIXYIoi96E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:62:13:84:64:6e:3c:c6:b3:f7:6f:c5:bd:48:51:eb:02:72:
19:38:8e:1f:e3:64:db:96:ff:a7:18:5f:eb:c4:db:10:2a:36:
5d:c2:39:c8:7e:58:cc:f4:2d:a2:c7:ee:2e:f1:59:5f:b3:0a:
67:83:e4:66:73:ad:1e:b2:77:57:83:30:fb:eb:e7:a6:6e:4b:
da:6a:4b:46:44:03:93:46:c6:86:56:96:31:0f:96:c0:85:b1:
aa:57:39:e2:5d:8f:7f:e9:1a:94:e2:4a:39:8e:1e:6f:14:33:
98:5d:a5:35:02:8b:1f:a3:ab:6c:2c:33:b5:ff:d8:48:b7:9d:
12:37:47:2d:e3:d7:a4:97:9a:1a:bb:93:a5:1f:5f:eb:ca:34:
cc:05:75:da:2b:ea:4f:27:fa:e0:c9:6a:fd:8d:a1:2b:fc:a9:
ac:27:86:76:39:03:41:6b:91:dc:4a:9c:3b:d6:8e:fb:58:6f:
6e:5c:a4:c3:da:3f:cb:af:4a:73:45:af:68:f7:30:01:93:b5:
72:63:70:90:b6:ed:3a:3f:51:27:b6:01:42:b5:18:e1:4b:78:
b3:b4:ff:0b:19:e1:a3:a7:96:b8:26:02:a3:6e:a3:44:09:23:
6f:f2:92:d4:89:1f:de:c1:5b:25:f6:ab:cd:0e:89:cb:f4:c6:
53:d2:b5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:56:25 2026 by rpki-client