Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
File: bqGhD32UTazB3sBBqqVZ1SK_uus.mft (raw, json)
Hash identifier: CgljFmlI0qjbkqVViZ2kJlcgeW3vdLHyAnhpsKKrRiM=
Subject key identifier: D2:21:63:6E:FB:13:A6:8A:5F:CB:41:E3:C5:B9:C9:9C:2B:7D:7F:2D
Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Certificate serial: 019D284D361F2A5A44B98D50908B8DE2F00D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
Manifest number: 15FD
Signing time: Thu 26 Mar 2026 04:00:41 +0000
Manifest this update: Thu 26 Mar 2026 04:00:41 +0000
Manifest next update: Fri 27 Mar 2026 04:00:41 +0000
Files and hashes: 1: SNun1a2zT4vpVsj5URXeOY95E_k.roa (hash: s7UgHAFz2IiBfVzY5/DYD6jONt8Pg1fhCLkKP3Umvp4=)
2: bqGhD32UTazB3sBBqqVZ1SK_uus.crl (hash: OtlfjwxUZsI/c4mHVPFV49i4hw8mLXKBWLK7+DiXzm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:36:1f:2a:5a:44:b9:8d:50:90:8b:8d:e2:f0:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Validity
Not Before: Mar 26 04:00:41 2026 GMT
Not After : Mar 27 04:00:41 2026 GMT
Subject: CN=d221636efb13a68a5fcb41e3c5b9c99c2b7d7f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:eb:c1:76:f3:e2:7b:18:d0:32:59:e9:26:3d:
00:59:01:03:3c:2a:4e:70:7e:9b:da:64:b1:c1:ee:
28:f8:72:94:6c:ec:26:13:55:b5:b7:88:7c:02:9f:
25:df:dc:0d:e8:9b:e5:ad:62:69:0d:e5:12:9c:ed:
a6:ad:21:e6:06:18:c4:6a:e7:a1:d8:1e:4b:c8:2e:
b7:f1:0a:9b:4c:dd:c5:2b:ca:20:34:41:74:69:6d:
68:87:22:bb:34:c1:65:0a:ce:ab:d3:7d:2f:1b:7e:
e8:70:4c:c5:34:e9:6c:80:89:e3:e7:78:06:ef:6c:
89:b2:dd:89:8a:e6:ae:6e:08:03:8e:10:65:51:7d:
ff:bf:f7:29:35:8d:61:67:7f:77:53:9c:e0:4f:5b:
47:14:d5:5a:a1:db:ac:3a:cb:51:1d:00:9c:6d:a2:
c3:49:70:26:3f:74:eb:bd:fd:ff:66:fb:15:d6:ec:
e4:e4:00:e5:59:eb:ee:ac:cd:68:3b:ae:dc:da:b9:
4d:bc:5a:76:4b:1e:86:d7:ea:b1:87:77:5c:3f:ad:
4c:aa:40:b3:f7:74:72:08:48:50:c0:93:d5:4f:a8:
57:b8:4f:cc:5d:62:b5:80:d4:86:28:a2:04:78:8d:
1e:4f:79:30:e2:6f:06:ff:40:a4:1d:99:d5:21:ed:
b9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:21:63:6E:FB:13:A6:8A:5F:CB:41:E3:C5:B9:C9:9C:2B:7D:7F:2D
X509v3 Authority Key Identifier:
keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:aa:66:17:64:73:0e:bc:c0:4d:2d:b1:40:e9:a4:b7:8f:c7:
87:1e:5f:bd:07:3a:09:0f:f5:4c:01:ba:3f:33:2a:a0:f2:5e:
fd:21:48:b4:e8:1b:a1:65:da:2e:5a:37:da:db:66:f1:ac:d9:
a6:3e:cd:11:ba:3c:30:8c:c1:fa:3f:2f:43:6f:d3:8d:ef:c0:
30:a5:df:6c:c6:94:90:bb:8f:c4:f0:c0:6b:12:da:8a:f9:3c:
83:b2:61:cc:f7:40:d6:09:a6:c4:fa:ea:d4:fb:ba:7d:ee:91:
61:af:54:48:2b:b0:79:d4:f4:db:5b:fe:4b:99:be:85:34:09:
59:b7:4d:c7:45:66:c5:db:f2:74:8b:56:3d:25:d0:28:e2:be:
e6:03:80:33:63:4c:0b:12:5d:66:f2:a1:2d:72:5d:e0:26:a2:
1b:5e:c2:45:6c:de:6b:f7:5a:6e:eb:99:7b:21:57:62:ff:10:
56:63:37:fa:c7:e5:35:91:72:38:9d:98:90:85:73:d5:a1:37:
63:2b:a1:5c:22:43:9a:7b:1b:d6:da:5c:82:b5:ae:02:39:34:
5f:84:c2:14:6c:4a:25:6d:9b:14:98:a5:2d:24:4d:bd:ee:1d:
2f:a8:12:d7:21:ac:f9:93:c3:d2:b9:09:60:f3:01:e5:2a:c9:
89:09:1f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:21:04 2026 by rpki-client