Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
File: QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft (raw, json)
Hash identifier: UkH+mPEquHWuOKcEd4u60gZcmjzE9FF0/G4fY1YArpo=
Subject key identifier: 6A:2F:37:25:5E:55:A6:93:4F:E0:F8:4F:18:04:F9:74:CE:68:E6:D6
Authority key identifier: 40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06
Certificate issuer: /CN=405ffc74ae92386afb7ce770f0390e90d4cde306
Certificate serial: 019D2772CD95050BF5D1DEE9541AE294F7C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
Manifest number: 04CE
Signing time: Thu 26 Mar 2026 00:02:08 +0000
Manifest this update: Thu 26 Mar 2026 00:02:08 +0000
Manifest next update: Fri 27 Mar 2026 00:02:08 +0000
Files and hashes: 1: QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl (hash: lQgOn3OrhmXQi9X4S05suR1TOLxwU8pzQt87JZkUz5M=)
2: wMAaF9FeE8vQPeGbyh-_gFZr-RQ.roa (hash: U3G2ZKAfz9i+c+9iabqEffqSxjMJIKuTC8d9C/LqbOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:cd:95:05:0b:f5:d1:de:e9:54:1a:e2:94:f7:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=405ffc74ae92386afb7ce770f0390e90d4cde306
Validity
Not Before: Mar 26 00:02:08 2026 GMT
Not After : Mar 27 00:02:08 2026 GMT
Subject: CN=6a2f37255e55a6934fe0f84f1804f974ce68e6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ed:d1:dd:75:ab:a1:d2:61:26:4e:96:67:6b:
59:55:54:24:01:86:f2:46:0e:78:3b:46:ba:eb:85:
0d:2f:8b:5f:3f:47:17:e8:c3:c5:d5:21:d9:05:2d:
f1:6f:27:6a:75:48:82:5e:db:c2:bc:b5:f7:e4:96:
1b:d9:95:22:48:58:18:17:72:a8:b7:f1:eb:b2:a5:
30:0e:2c:da:bd:70:c1:e6:d9:fb:a8:fe:76:53:d0:
1b:dd:69:8d:1b:38:3c:ee:fc:77:ce:1d:89:99:8d:
93:9f:c8:14:c2:e1:2b:c3:58:66:76:3c:5c:0e:c1:
21:be:40:49:0d:16:f1:33:30:a0:8b:f5:d8:f2:c3:
9e:d4:93:8f:7a:f4:44:e7:a3:b4:5d:78:77:c8:c5:
44:c3:52:e5:ea:c1:d3:f1:b3:1d:d3:da:e4:55:87:
0d:df:2a:cb:d9:53:ae:67:22:c7:d8:dc:26:6b:ba:
8f:cc:7a:cb:ad:6c:3f:5d:55:76:f9:38:77:ab:9d:
96:fe:67:bc:1c:ec:b9:18:01:7b:ac:c0:ad:96:0d:
ba:d4:45:9e:3c:6e:a0:2c:b8:b5:91:0b:d4:3f:ac:
35:87:29:10:0b:26:c6:15:e2:36:f5:d4:0e:83:5c:
42:93:f3:fd:f8:e0:1d:78:33:58:d8:68:a2:82:f9:
99:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:2F:37:25:5E:55:A6:93:4F:E0:F8:4F:18:04:F9:74:CE:68:E6:D6
X509v3 Authority Key Identifier:
keyid:40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:32:75:f1:fe:34:55:4c:83:be:98:46:17:fa:a3:8d:91:9a:
d9:55:f0:2a:4e:33:40:68:4e:b2:3f:34:cd:c0:c6:c9:b1:1c:
8a:0d:b3:a0:99:db:63:e8:8d:8c:1f:b1:dd:38:fa:7e:05:76:
c8:a0:3c:3e:de:32:f2:d6:7a:d7:ff:87:1a:ae:13:b1:e5:e3:
fe:2e:12:89:e8:79:2b:67:c1:a5:61:9d:db:9a:7e:e5:25:90:
f9:2e:d4:a3:0e:84:75:28:78:4c:81:96:5e:bc:e7:d6:61:91:
f6:49:2b:0e:d6:fc:66:7a:25:2c:9a:6e:b3:8d:46:f7:b6:7e:
4e:d7:99:46:ea:f6:16:87:36:86:01:89:8f:40:bb:75:da:dc:
f8:2f:eb:f8:85:cb:bd:54:7b:9d:24:54:b4:a7:f9:a1:a4:7f:
2b:d0:de:a6:8d:5e:72:59:46:af:1e:69:82:1c:29:7a:b0:1b:
9a:ca:9a:92:49:7a:72:5c:d0:9c:c1:ac:04:a6:ce:f8:02:e8:
e7:be:25:bf:d6:f9:9c:53:db:c2:10:d0:0f:d9:94:8c:03:06:
12:c8:09:fd:51:8f:ee:2a:ab:95:27:56:02:39:dc:08:3e:86:
5a:56:a8:97:ab:6f:63:22:b5:5f:cd:9d:bf:db:17:17:f1:57:
d8:9f:27:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:52:26 2026 by rpki-client