Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
File: QTKoayl3h-SMVXBZMe05NR-EFxo.mft (raw, json)
Hash identifier: TiG29YslAFX40ecNyXmUwLOcl+Mur6Gw4uQ3b9LiaKc=
Subject key identifier: 53:91:8B:C0:BF:95:CC:44:F6:75:5C:64:50:6A:4F:28:69:38:36:F7
Authority key identifier: 41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
Certificate issuer: /CN=4132a86b297787e48c55705931ed39351f84171a
Certificate serial: 019D28F1F7A161CE5D268D154533BBA16E12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
Manifest number: 126D
Signing time: Thu 26 Mar 2026 07:00:39 +0000
Manifest this update: Thu 26 Mar 2026 07:00:39 +0000
Manifest next update: Fri 27 Mar 2026 07:00:39 +0000
Files and hashes: 1: QTKoayl3h-SMVXBZMe05NR-EFxo.crl (hash: VrgTQgrcVIF//w0Gq8QL6dyrjpKtiDX+oI73VmaSX5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f1:f7:a1:61:ce:5d:26:8d:15:45:33:bb:a1:6e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4132a86b297787e48c55705931ed39351f84171a
Validity
Not Before: Mar 26 07:00:39 2026 GMT
Not After : Mar 27 07:00:39 2026 GMT
Subject: CN=53918bc0bf95cc44f6755c64506a4f28693836f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5a:f0:c2:37:8b:41:41:d1:6b:c2:02:00:a4:
03:83:82:4b:ef:72:3d:60:be:f7:2d:dd:95:c6:4b:
e3:c2:d3:b9:1f:c8:0d:74:b8:20:7a:9a:37:b2:3f:
a0:eb:d3:ff:b0:fe:8d:02:c7:36:bb:75:c7:24:12:
2a:31:dc:c5:5f:bb:20:bb:70:f6:c7:78:ab:0f:ef:
d2:35:6d:1c:c8:5b:b2:06:b8:58:60:06:89:d0:b1:
25:a0:1c:aa:0c:68:12:38:91:4c:dc:45:e9:dd:75:
5d:5f:9c:9e:7e:55:45:8d:ad:35:2d:3c:7a:e5:1b:
9d:4d:13:2c:61:a2:fd:b7:c5:0d:f8:ba:0a:4e:74:
05:d3:4e:1a:9a:d4:db:00:5e:46:be:8d:44:5d:5d:
64:71:82:26:e8:15:c0:62:d3:ca:40:b1:32:8f:6c:
70:6e:ed:fa:98:14:23:c0:ca:4b:13:8c:af:60:e5:
08:29:11:4d:13:65:64:aa:ae:98:25:dd:94:08:6b:
31:b5:78:d3:10:1b:6e:7f:26:06:4e:cd:4c:e6:71:
57:20:45:12:d4:34:6c:dd:d0:83:b8:b6:4a:17:21:
7c:8c:de:ce:bd:12:81:3f:cc:1a:4f:4b:b2:ba:9f:
0a:89:bc:43:46:c1:07:cd:16:1e:b9:bc:23:fb:69:
08:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:91:8B:C0:BF:95:CC:44:F6:75:5C:64:50:6A:4F:28:69:38:36:F7
X509v3 Authority Key Identifier:
keyid:41:32:A8:6B:29:77:87:E4:8C:55:70:59:31:ED:39:35:1F:84:17:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTKoayl3h-SMVXBZMe05NR-EFxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/878e7c-34f5-47cb-a7e1-8042d6f4bef1/1/QTKoayl3h-SMVXBZMe05NR-EFxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:42:0c:69:ef:be:ad:54:85:1a:d5:1e:09:45:11:cd:1d:af:
41:81:a3:4f:d9:3e:3e:64:11:23:fd:b5:cd:18:d5:6a:80:39:
84:47:92:cc:06:eb:18:28:13:49:d2:46:d7:51:5d:00:a3:04:
9b:46:0f:b5:07:71:2e:5b:69:8d:26:9f:41:94:fb:12:30:40:
f6:f0:0b:48:29:5d:22:c0:a0:71:40:7b:3d:98:3c:2f:b5:04:
1a:76:d1:83:6d:e3:52:7d:f8:b6:ae:c0:06:02:b5:ae:3b:0f:
8c:8c:1f:6e:21:5f:50:b9:82:06:cc:ed:13:db:75:55:a2:b0:
91:66:e0:e8:a0:35:8e:13:1e:0b:fd:4d:bd:b6:84:20:fa:60:
de:db:2c:63:b4:1b:bc:74:5a:71:b9:35:f8:c1:a7:c7:d1:fa:
e2:d5:9e:76:67:c2:26:51:ea:fb:74:e5:a6:a7:ce:75:15:62:
4f:a3:be:f4:b8:48:91:dc:6b:e6:60:73:ff:50:fc:16:5f:e5:
5b:52:bf:0c:ad:fe:b1:00:44:c5:3c:1b:f8:7a:5e:a5:47:8f:
db:cb:20:30:c9:08:e0:87:82:48:a0:79:3e:e3:16:fc:fa:f8:
d7:0a:48:c5:92:84:8a:51:3c:b1:f0:f3:0d:0a:b4:03:ed:d0:
3c:d1:e0:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:58:39 2026 by rpki-client