Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
File: _Q7wQPukW857BxY0lc316FB3kZ0.mft (raw, json)
Hash identifier: GxbFb4TxquQ4avm6IRNT7BHu2Y69kzEwKepT4GosJKw=
Subject key identifier: 1B:12:09:08:18:33:38:FC:1F:F7:BF:A5:C4:26:94:B3:32:61:40:94
Authority key identifier: FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
Certificate issuer: /CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Certificate serial: 019D25841E71FD6949E6AAC824A6EB187E88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
Manifest number: 0F1C
Signing time: Wed 25 Mar 2026 15:01:48 +0000
Manifest this update: Wed 25 Mar 2026 15:01:48 +0000
Manifest next update: Thu 26 Mar 2026 15:01:48 +0000
Files and hashes: 1: BO14bA7PeRb0D7KQP3CWollCutc.roa (hash: KWBfGK/f5gpdRKkzCSVIg8eJkkTlP4Rw/G54X2xmAk8=)
2: _Q7wQPukW857BxY0lc316FB3kZ0.crl (hash: fBaT1KAhJ6uCfjNszJbtm1CGdNMEDddBr5C89GFeEFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:84:1e:71:fd:69:49:e6:aa:c8:24:a6:eb:18:7e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Validity
Not Before: Mar 25 15:01:48 2026 GMT
Not After : Mar 26 15:01:48 2026 GMT
Subject: CN=1b120908183338fc1ff7bfa5c42694b332614094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d5:3d:25:29:1e:a7:6b:45:70:7c:ac:53:4b:
2a:2d:2a:16:b1:2c:c9:26:fb:9f:da:7e:88:a2:33:
28:54:b4:3b:18:76:63:a9:81:55:df:41:ed:8e:f5:
9c:47:81:d9:4e:f3:a8:09:05:ca:65:90:3a:75:e1:
f2:4f:ce:d8:b0:7c:7a:03:53:fa:13:3f:fe:b8:8c:
e0:f9:34:b3:7b:60:94:90:79:b8:c6:1c:2a:c7:d4:
ff:f5:8a:04:c3:fd:e6:47:00:5d:58:d0:01:77:e9:
a0:b0:51:94:bc:58:ab:4b:b0:ab:ab:86:8b:3d:5a:
24:fc:6d:f1:6d:8c:f7:04:9f:86:c2:67:aa:09:24:
42:21:3d:16:59:e2:e6:d0:d5:11:fe:13:36:8e:72:
a8:2f:a5:b9:aa:99:e0:46:72:e3:b7:49:55:26:12:
be:00:ad:63:73:e0:2f:22:3d:ca:ee:f0:7d:7c:19:
8c:4a:d8:21:3f:f6:ff:d5:cd:1e:4c:ba:e6:44:a4:
a9:11:79:99:b3:72:bc:fa:2f:77:4b:41:ef:90:72:
c8:40:6a:6c:d0:e4:0a:09:3a:be:37:c2:88:8c:62:
c2:74:f4:c1:cc:09:a3:73:10:9a:31:44:72:fb:8c:
4d:a1:1d:57:00:90:dd:14:ed:5a:a2:bd:00:e9:8c:
e1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:12:09:08:18:33:38:FC:1F:F7:BF:A5:C4:26:94:B3:32:61:40:94
X509v3 Authority Key Identifier:
keyid:FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:40:1b:2c:26:3d:7d:00:de:20:ac:32:d0:c3:c4:af:82:9f:
5c:5c:c2:e2:23:0f:a7:71:25:c6:5c:a8:c0:9a:35:d5:f3:00:
99:8d:3e:59:58:bb:d4:76:df:99:42:03:33:57:9b:24:05:d1:
6f:02:8e:ea:13:5f:a4:11:6b:50:4f:b1:dd:de:93:6d:65:a0:
37:9a:b5:88:0e:5b:ea:af:41:68:89:63:64:3e:7d:ca:5f:a9:
b7:83:ed:3b:5e:74:c5:1a:c3:5a:cc:75:62:79:38:81:0b:f6:
e0:eb:e3:cf:3e:45:b6:a2:fb:22:17:b3:0d:78:53:08:17:b9:
36:73:f4:ee:26:2a:6f:9c:d4:c4:d4:6b:f5:e1:82:34:23:9b:
6b:a6:39:89:6f:bf:65:90:bf:29:42:39:dd:82:73:d4:95:de:
f6:0e:82:b1:04:97:a5:25:52:55:6b:99:06:8d:80:d7:b1:9b:
3c:dd:cf:13:5d:28:14:ee:37:ed:f1:b7:e8:14:04:18:8d:bc:
84:25:52:40:52:8c:13:4d:8c:cd:7c:55:c2:5e:94:a5:a6:de:
5f:f3:af:e9:7d:61:e1:98:b0:7b:08:1b:b9:8f:f0:75:e4:0a:
3a:61:fa:5d:77:26:f7:a4:5d:d0:8f:9c:ee:56:88:1a:34:bb:
7f:e0:99:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:59 2026 by rpki-client