Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
File: QA-ULrBzNco-f70Y8GwVjbN8_Us.mft (raw, json)
Hash identifier: hg3HLU7/N8wmKP/A6lP+V8IcBRpe+P53hphLe4s+dxA=
Subject key identifier: E0:17:27:A9:72:A7:DA:7D:59:1D:E8:75:E5:6F:61:BA:B7:99:BA:19
Authority key identifier: 40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
Certificate issuer: /CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Certificate serial: 019D2704829ED33B10F048D04E4237B9E4E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
Manifest number: 14EB
Signing time: Wed 25 Mar 2026 22:01:40 +0000
Manifest this update: Wed 25 Mar 2026 22:01:40 +0000
Manifest next update: Thu 26 Mar 2026 22:01:40 +0000
Files and hashes: 1: Q6-rH8_VtCkE4JzDebkExXM-L74.roa (hash: Xt/AZnX6ILHCbTKXWO74tBFcuIb/2BGES0mjpiXZkD8=)
2: QA-ULrBzNco-f70Y8GwVjbN8_Us.crl (hash: R00BwLc44KymI3lX5S0uxhEpt3kpG37DBQa0suHSwrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:82:9e:d3:3b:10:f0:48:d0:4e:42:37:b9:e4:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f942eb07335ca3e7fbd18f06c158db37cfd4b
Validity
Not Before: Mar 25 22:01:40 2026 GMT
Not After : Mar 26 22:01:40 2026 GMT
Subject: CN=e01727a972a7da7d591de875e56f61bab799ba19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:30:4e:95:94:c7:4a:10:02:e1:f7:16:32:f9:
23:6c:62:4b:34:5f:a5:7c:b1:4d:fd:bf:b1:77:ff:
b8:50:43:c5:9a:4e:d4:98:60:c2:05:ae:8b:b8:60:
6d:a5:f9:20:ff:0f:1b:7a:65:c8:f0:95:c9:10:51:
77:fd:43:07:10:e7:69:92:d9:e7:f3:24:b8:8a:c1:
79:01:7e:5d:3f:1a:04:eb:e1:cd:eb:5a:47:d3:ce:
9c:17:bd:33:8f:19:95:90:f5:8f:b9:ec:f2:77:67:
f5:a1:31:c9:bf:6f:31:ef:7e:2e:03:82:1c:f9:a5:
7e:d7:46:47:40:c7:50:49:7d:62:c2:e6:25:e8:69:
2d:3f:f9:35:2f:67:3c:ca:17:24:b7:47:21:a9:44:
52:6c:2c:ad:59:86:a9:14:d9:ec:19:df:d6:e2:84:
b1:23:ba:d1:bf:09:5c:eb:02:79:c4:3d:63:fd:2a:
52:be:1c:e1:7c:f9:ca:44:64:cd:82:94:1e:f5:6c:
8c:7b:ab:70:09:a9:a1:ef:df:38:0c:2a:a0:72:bf:
9c:97:85:e3:62:bf:d8:48:af:af:20:62:9e:34:4d:
15:68:f0:7e:7b:62:1a:de:4a:9a:9d:05:1a:ca:72:
94:25:20:7d:c6:ee:7c:3c:65:dc:b6:9a:b1:0b:7a:
b7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:17:27:A9:72:A7:DA:7D:59:1D:E8:75:E5:6F:61:BA:B7:99:BA:19
X509v3 Authority Key Identifier:
keyid:40:0F:94:2E:B0:73:35:CA:3E:7F:BD:18:F0:6C:15:8D:B3:7C:FD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA-ULrBzNco-f70Y8GwVjbN8_Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2098ac-c2de-4362-a255-acd72d2c6cb6/1/QA-ULrBzNco-f70Y8GwVjbN8_Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:02:49:14:4c:f4:da:07:76:66:63:4b:73:9a:96:f9:f5:66:
f0:17:f5:4a:1e:8b:66:97:10:04:f3:cd:61:84:9b:25:78:84:
2f:4d:d2:06:1a:2e:68:ad:9a:94:b9:19:1e:cf:37:2c:1f:86:
b4:b4:61:4c:69:f3:cc:d3:c1:b4:a8:d2:e1:76:a3:78:ff:cc:
f3:ee:3c:76:68:d6:cf:3c:5b:b7:6c:49:a4:99:33:86:85:6b:
69:f9:b4:bc:fa:39:fc:6d:fb:41:60:e8:c2:7b:55:4c:e2:ce:
99:34:90:64:4c:9a:b0:b6:87:d9:de:a8:65:67:86:c6:40:fa:
c3:aa:6c:f5:11:b9:6c:f9:11:cd:a7:95:77:df:a9:37:d2:2e:
bf:cf:fd:6c:f9:2e:6b:bc:43:60:03:ed:e5:65:aa:3a:81:46:
be:78:3d:e1:fa:69:1a:53:99:78:fb:b2:e4:66:7f:f4:7b:63:
04:9b:15:a0:b6:56:9d:44:31:33:08:5d:70:9d:94:ab:9f:af:
c0:c8:e4:8d:86:18:5f:3f:4d:0e:77:3c:82:ca:ff:bc:a8:44:
c4:ec:19:8a:02:78:94:12:84:ca:06:fd:19:bb:ce:83:2e:f0:
cc:42:62:c1:4c:b3:2c:cd:e7:e3:52:8d:9c:10:c6:7a:94:51:
b3:36:26:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:59:54 2026 by rpki-client