Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
File: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft (raw, json)
Hash identifier: dL1yWwLypNAx5FjPfPJ2tIrjBrGSa7vRf2WYrVn1Ojc=
Subject key identifier: EB:6E:1C:91:5A:95:A0:6A:DE:7A:BF:6F:CF:75:A8:39:F3:90:C1:DB
Authority key identifier: 43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
Certificate issuer: /CN=43cf416193a1c2ed3056b647e5a46503148e3824
Certificate serial: 019D27723BEC9A43F263D75153D36E59589B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
Manifest number: 0946
Signing time: Thu 26 Mar 2026 00:01:30 +0000
Manifest this update: Thu 26 Mar 2026 00:01:30 +0000
Manifest next update: Fri 27 Mar 2026 00:01:30 +0000
Files and hashes: 1: Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl (hash: 4m5gqu2Pu32KAkVBBfW3tw65N096Y06w0DlRiZ8X0BI=)
2: uRy6lNHq57rdX7_VPdepBDiNmnc.roa (hash: 65Rm9CIooU3CDnzNITl4VhD3i1B6DOi7f6KdO4ec990=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:3b:ec:9a:43:f2:63:d7:51:53:d3:6e:59:58:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43cf416193a1c2ed3056b647e5a46503148e3824
Validity
Not Before: Mar 26 00:01:30 2026 GMT
Not After : Mar 27 00:01:30 2026 GMT
Subject: CN=eb6e1c915a95a06ade7abf6fcf75a839f390c1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e6:ff:fe:5b:cf:00:28:6d:cf:00:0a:bb:1a:
89:23:f9:40:a1:01:7d:ef:8b:89:4d:ac:40:6a:f2:
0e:42:60:41:70:82:b2:6c:95:4b:2b:d0:0c:5e:14:
e6:26:e1:75:5e:b0:a2:06:3e:8c:42:97:ad:2f:5c:
cf:81:67:58:59:83:71:8c:ef:ed:78:63:41:dc:6e:
f8:97:5f:55:20:46:d4:4a:84:a0:55:6f:3f:97:cb:
5e:8e:43:fc:19:5d:0d:63:36:c3:7f:5c:96:5f:32:
ef:57:c6:c5:05:8a:7f:35:cc:30:1b:68:ae:75:c2:
8a:76:bf:ee:24:76:bc:31:ac:0f:62:e4:23:07:1e:
d1:9c:0a:84:25:95:48:14:54:d0:f9:8f:44:cb:82:
94:9b:96:6d:ec:7e:6b:1b:bc:aa:e2:d9:a8:a3:9e:
5f:b9:c8:96:d7:11:5f:f6:e0:57:37:b6:81:3a:f5:
01:ef:a3:c7:21:e6:02:ca:09:e5:1c:52:05:f4:be:
7d:76:71:28:cd:7a:4c:16:13:e7:4e:58:a5:d0:88:
6a:f8:c4:7d:4c:5c:0e:18:9e:ca:1a:e0:b3:51:d5:
d5:14:42:b0:27:e1:f8:e8:22:2d:54:0a:d4:02:e5:
6b:42:e3:d1:61:3c:42:ff:a4:b1:8c:53:4a:17:4c:
5f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6E:1C:91:5A:95:A0:6A:DE:7A:BF:6F:CF:75:A8:39:F3:90:C1:DB
X509v3 Authority Key Identifier:
keyid:43:CF:41:61:93:A1:C2:ED:30:56:B6:47:E5:A4:65:03:14:8E:38:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aa31cf-bb31-497c-a577-09b969d160fe/1/Q89BYZOhwu0wVrZH5aRlAxSOOCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:ed:4d:63:de:8b:e2:2c:7c:e8:ca:66:62:13:af:da:bc:9f:
82:d6:fa:0b:90:30:37:b0:a7:72:58:d2:a8:62:aa:2e:96:1c:
71:f9:29:a2:00:49:49:fb:2a:49:03:ca:0a:97:4f:e8:7d:05:
ba:de:5e:da:6c:2d:3c:d7:a6:e3:1d:c2:17:f0:44:b4:77:69:
24:af:ad:4e:06:10:01:02:0e:db:7d:21:dc:bb:b8:d2:a8:08:
35:87:e1:96:f0:2e:42:b2:51:43:77:c8:ba:cc:b4:2b:2b:13:
ae:51:17:e0:33:75:a3:c0:e6:58:2b:34:93:9a:36:0c:31:8d:
61:65:0b:75:b0:0d:9f:4f:aa:d9:23:01:ee:61:db:9d:25:c6:
10:80:5c:06:d4:90:0a:38:0f:52:ac:db:6a:2d:c8:4a:23:9f:
78:77:a6:fb:b0:f8:a2:75:da:1b:02:d2:58:a1:7a:d3:fc:32:
cf:26:94:3d:cd:06:aa:a8:4d:af:ba:55:9b:e2:0c:56:6e:f3:
c6:a4:5b:36:9d:c6:ed:f9:fd:d5:3c:2d:ee:4e:9c:4a:41:86:
1b:b8:73:7e:0a:af:64:f3:86:f7:ab:47:7b:29:d1:f6:0b:67:
03:b1:a4:2c:6f:e0:5c:a0:4e:60:d0:9e:6f:77:1d:91:d9:71:
19:e9:92:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:40 2026 by rpki-client