Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
File: qGBXhZ0WYOjYcpee5tamssQzowU.mft (raw, json)
Hash identifier: uMZVIHc5H+o8vZjo5uUPdlxYTlxapOmsd0vbea8HmbM=
Subject key identifier: 75:B2:63:39:B1:D4:9A:51:99:78:44:E2:3B:24:F4:F9:F2:04:83:54
Authority key identifier: A8:60:57:85:9D:16:60:E8:D8:72:97:9E:E6:D6:A6:B2:C4:33:A3:05
Certificate issuer: /CN=a86057859d1660e8d872979ee6d6a6b2c433a305
Certificate serial: 019D33E35B33571A93C1FE99050FEE8DD09D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
Manifest number: 1890
Signing time: Sat 28 Mar 2026 10:00:31 +0000
Manifest this update: Sat 28 Mar 2026 10:00:31 +0000
Manifest next update: Sun 29 Mar 2026 10:00:31 +0000
Files and hashes: 1: qGBXhZ0WYOjYcpee5tamssQzowU.crl (hash: LeDRp3IBsmIYSoviMA4vfcDyXX7+tZW0NWVqLKqV6h4=)
2: urEdR1rkKC37QLchd2Eu3Uvae7w.roa (hash: kKj8ZOJ0MJkO16pSik4xWptNoglu7DaHV1OVMMkcbVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:e3:5b:33:57:1a:93:c1:fe:99:05:0f:ee:8d:d0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86057859d1660e8d872979ee6d6a6b2c433a305
Validity
Not Before: Mar 28 10:00:31 2026 GMT
Not After : Mar 29 10:00:31 2026 GMT
Subject: CN=75b26339b1d49a51997844e23b24f4f9f2048354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:eb:26:ff:d3:83:8f:cb:f4:45:52:c2:8d:e5:
ee:bd:91:93:b8:65:ad:e3:d2:66:99:90:68:46:f7:
b1:07:2c:5a:d2:33:e7:a0:48:2e:5c:88:5d:9d:aa:
08:c7:c0:ae:49:38:23:7e:3a:69:90:3a:59:62:e7:
07:b1:fc:aa:d3:3a:a1:a4:19:fb:26:f3:7d:2a:77:
7b:86:44:6b:ee:b2:20:75:c8:8c:3b:f0:77:41:16:
b9:13:3a:29:52:12:30:d2:0c:d2:0f:60:41:7f:3e:
98:d4:52:26:de:95:6b:53:7d:06:cb:17:50:49:83:
bf:9d:87:3f:8f:02:95:18:a4:8f:99:63:0a:2f:7a:
79:d2:a6:6a:3a:1d:e3:ae:da:a8:ab:26:e6:b2:df:
55:08:b8:aa:1f:a0:e5:e5:ac:c3:a1:2b:0a:ab:41:
35:0a:74:63:b9:41:eb:3b:56:52:66:03:f8:24:02:
26:78:b1:ab:1a:4d:8e:57:44:42:74:df:f1:57:bc:
ac:1d:59:89:c7:c3:fd:3d:40:8c:85:b5:ee:2b:79:
4f:fd:a3:ea:c6:e4:54:22:4b:eb:86:40:28:0b:8c:
34:99:76:c5:8b:d1:d1:6b:3e:38:08:57:23:a2:ce:
08:ca:50:45:0e:1d:9c:be:55:d2:cc:26:97:37:8c:
dd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B2:63:39:B1:D4:9A:51:99:78:44:E2:3B:24:F4:F9:F2:04:83:54
X509v3 Authority Key Identifier:
keyid:A8:60:57:85:9D:16:60:E8:D8:72:97:9E:E6:D6:A6:B2:C4:33:A3:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGBXhZ0WYOjYcpee5tamssQzowU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/21345b-4de7-4086-9abf-d4edc20cc1ac/1/qGBXhZ0WYOjYcpee5tamssQzowU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:6e:f5:e4:73:ee:9c:31:d8:ab:9c:6e:77:05:9b:b8:0f:de:
8e:55:06:e3:4a:07:09:47:28:54:cf:6d:7b:ae:f1:ca:73:60:
c2:77:98:bd:bc:23:81:a8:f9:20:4c:de:7d:48:83:c2:2c:fe:
64:46:e5:3e:bf:e9:98:ae:31:38:8d:71:2f:5d:5e:27:e1:62:
0b:40:84:ea:e1:a6:49:94:bd:e6:b0:82:cc:2d:fa:36:79:43:
c0:12:08:6b:3a:63:f2:b0:5a:62:31:06:f1:6a:20:2a:ab:57:
f3:53:d2:9e:d5:d0:5b:80:18:e7:e9:9f:c3:dc:b5:33:2b:05:
80:5c:6b:28:27:93:2b:c2:14:77:3f:94:b6:29:b1:b8:37:39:
9c:99:2a:d4:ab:a0:65:37:18:15:a3:60:27:f3:1d:34:19:2c:
0d:5d:6d:9e:d4:82:5b:b0:d4:78:44:f6:e6:0e:1f:5a:a1:8a:
fd:59:5e:8a:76:a4:17:f4:72:d3:7d:54:ef:6c:10:76:5a:a5:
3e:b4:5a:3c:7b:53:d6:7f:86:0d:cd:b7:97:65:16:1a:03:cc:
a2:df:bc:b9:65:d2:07:76:c1:f8:9f:a2:a7:8e:28:58:80:b0:
eb:df:d8:72:b8:8c:8c:81:c3:98:4d:1b:71:9e:b1:fc:10:fe:
ef:19:5a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 12:21:08 2026 by rpki-client