Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: Goa8LpTj+OFH2eVHlA5rdACzWdj1lxsxURY+A9qmv+4=
Subject key identifier: 6F:02:8D:9C:27:80:82:D0:2A:54:D8:74:2B:5C:32:79:2D:6B:24:C9
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 019D2771E322EF42D69165B32ADDA03582E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 1884
Signing time: Thu 26 Mar 2026 00:01:08 +0000
Manifest this update: Thu 26 Mar 2026 00:01:08 +0000
Manifest next update: Fri 27 Mar 2026 00:01:08 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: rDPTNKxdGci0cAQ0LzVFnhWIXr7VIcSYdCeKKDfIUhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:e3:22:ef:42:d6:91:65:b3:2a:dd:a0:35:82:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: Mar 26 00:01:08 2026 GMT
Not After : Mar 27 00:01:08 2026 GMT
Subject: CN=6f028d9c278082d02a54d8742b5c32792d6b24c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:18:2e:1b:db:60:02:53:ec:89:53:fd:b3:fd:
b3:b1:2a:95:d2:3a:2f:bf:32:cd:d1:9c:b9:f1:16:
8d:8d:ab:c2:e2:b7:e0:37:0f:b0:1c:2c:a1:b3:e6:
ac:e9:f4:ff:af:b2:f4:a1:a4:50:93:f5:6f:4d:f1:
95:c8:02:4b:48:e9:9a:97:59:cc:a7:ca:8e:ae:f7:
fd:6b:50:7c:34:f2:4a:48:b2:0c:f4:9b:69:22:de:
bb:7a:21:3d:8d:16:ff:a5:cb:32:90:0a:9b:8d:05:
bc:8e:f3:85:8e:4a:f5:2a:1c:89:cc:6d:18:52:24:
83:bc:e3:bc:cc:a7:c8:f5:52:19:d6:fd:ae:3a:a6:
95:e1:ed:c5:39:68:cd:fe:fe:6b:72:70:c2:83:66:
ec:e8:d7:9f:99:aa:36:f5:3b:86:8f:6b:9d:ae:68:
62:e0:6e:3b:52:7d:45:b7:3c:58:3c:1e:f9:68:ed:
10:fa:7c:c2:2d:ee:94:d5:f0:d5:27:94:9b:7e:88:
77:e7:4f:9e:9c:ed:22:29:7d:44:9f:af:d0:ab:0d:
18:93:f4:c7:69:fc:97:be:b6:f0:fe:4b:8a:1b:e5:
de:32:17:01:91:09:a0:0f:84:eb:3d:7e:58:0b:59:
35:09:cd:c0:eb:f2:ae:4a:25:22:9e:99:70:d7:10:
08:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:02:8D:9C:27:80:82:D0:2A:54:D8:74:2B:5C:32:79:2D:6B:24:C9
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:1b:27:81:d8:8e:b9:a4:e4:e3:3a:fe:0a:d6:70:02:89:3a:
1a:69:d9:ff:85:0e:d7:37:d2:cc:21:d5:18:c0:35:13:3c:9a:
43:9b:2c:12:c0:14:77:76:ee:7d:ca:1c:7a:38:8e:12:c4:f4:
12:c9:d7:7f:a5:2d:4d:f4:1c:eb:1e:b7:8e:15:93:05:36:14:
5e:32:45:15:f1:21:f9:a0:71:d0:2e:a2:e6:08:72:2d:f6:45:
9c:44:34:23:1b:02:ca:e5:2d:0a:8e:45:0c:b2:20:0c:b1:70:
d2:8f:17:3c:0f:2e:6c:7b:9d:27:4b:83:2f:90:c0:43:29:1b:
fb:72:49:6e:2b:3e:83:59:eb:d3:11:8a:07:fc:e8:9e:42:a2:
36:28:6d:a0:ee:cc:e0:b8:80:a7:18:9d:1b:9d:33:f1:45:15:
69:47:f2:80:f1:55:26:58:b1:c3:c1:90:75:00:b9:10:c8:f0:
6e:89:62:d3:79:d8:1b:ab:e7:b0:7a:90:40:74:9e:5b:ec:5d:
f3:92:c9:e4:26:89:f7:54:42:ca:af:5c:9c:1b:16:b3:a5:54:
4a:16:4d:0c:3f:fe:db:a7:18:21:65:a3:ff:76:97:21:aa:e1:
43:61:8d:3d:a2:e4:4f:91:bb:c7:f3:8f:b3:75:7c:6c:19:a8:
54:ef:67:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:50:44 2026 by rpki-client