Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.mft
File: QUZdOIpCMlXUiDLQc2m2vHcD6io.mft (raw, json)
Hash identifier: OtJBGxD7xvmen1CGH7roBC7b3ozwWmvr6DUFNGruJbY=
Subject key identifier: 62:FE:31:F8:B2:48:3B:89:E7:90:85:36:76:62:34:C1:B1:BE:FE:CB
Authority key identifier: 41:46:5D:38:8A:42:32:55:D4:88:32:D0:73:69:B6:BC:77:03:EA:2A
Certificate issuer: /CN=41465d388a423255d48832d07369b6bc7703ea2a
Certificate serial: 019D254C3F36B4CD48AEB03B42DE06E43A33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QUZdOIpCMlXUiDLQc2m2vHcD6io.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.mft
Manifest number: 01AC
Signing time: Wed 25 Mar 2026 14:00:47 +0000
Manifest this update: Wed 25 Mar 2026 14:00:47 +0000
Manifest next update: Thu 26 Mar 2026 14:00:47 +0000
Files and hashes: 1: QUZdOIpCMlXUiDLQc2m2vHcD6io.crl (hash: mLegBYClNA3r7S25xrquTIPSBo3PzSYfY+YE90zRff4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.mft
rsync://rpki.ripe.net/repository/DEFAULT/QUZdOIpCMlXUiDLQc2m2vHcD6io.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:3f:36:b4:cd:48:ae:b0:3b:42:de:06:e4:3a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41465d388a423255d48832d07369b6bc7703ea2a
Validity
Not Before: Mar 25 14:00:47 2026 GMT
Not After : Mar 26 14:00:47 2026 GMT
Subject: CN=62fe31f8b2483b89e7908536766234c1b1befecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:13:76:a8:67:ee:b1:a6:57:dd:e0:14:32:f0:
8a:24:a2:59:8c:6b:97:58:a3:b4:45:c6:20:16:a2:
98:d0:33:c6:e7:4a:f7:89:91:c1:38:f8:c6:08:b6:
ca:8d:7b:ce:70:14:6c:da:aa:03:c4:5a:eb:0e:1a:
6a:da:31:8a:13:49:03:e3:69:6a:25:ce:5c:04:57:
4c:37:c3:12:2d:1e:85:be:9b:0f:34:4b:0d:a3:57:
6a:0f:e9:5b:df:37:10:b5:b6:2b:d7:e9:5e:e0:30:
d4:af:c7:b2:6a:29:32:d5:c2:c9:87:b5:7d:d2:d9:
dc:d5:c8:2a:b0:cc:69:57:ea:fa:98:0d:5d:4d:99:
c9:ab:43:77:4f:18:39:23:3f:4c:06:16:d6:29:f8:
0f:e5:f3:89:f9:2e:ec:8f:13:2d:56:54:71:27:b8:
9f:96:fb:f7:28:44:25:57:5f:c4:37:ae:ad:84:a3:
d4:3c:4b:2b:0a:3a:1d:30:fd:1d:f7:81:de:27:f1:
e5:d3:84:91:ff:7b:3c:c6:6c:89:67:c9:b4:5d:07:
2f:62:81:17:ec:43:3b:51:da:51:2e:98:e6:1f:05:
27:90:ea:4c:84:f9:33:36:de:34:fb:4a:54:e4:01:
3e:1b:ff:11:3d:15:93:a9:af:1f:ff:2b:dd:b4:59:
f4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:FE:31:F8:B2:48:3B:89:E7:90:85:36:76:62:34:C1:B1:BE:FE:CB
X509v3 Authority Key Identifier:
keyid:41:46:5D:38:8A:42:32:55:D4:88:32:D0:73:69:B6:BC:77:03:EA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QUZdOIpCMlXUiDLQc2m2vHcD6io.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3b0e72-043c-4dfb-b636-15a5306c2efd/1/QUZdOIpCMlXUiDLQc2m2vHcD6io.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:ba:c4:10:87:7e:c5:ed:b2:70:cb:08:b9:26:e6:86:cf:e4:
af:6f:f2:b2:4d:f1:17:e0:df:9e:7b:d0:17:ee:45:3c:82:b1:
b1:8a:7b:e1:5d:c7:62:7e:6d:77:4d:32:2b:a6:cb:d7:2a:e4:
d8:ad:b7:28:bf:fa:7d:d7:88:8f:bf:17:ce:3e:59:9e:b7:49:
da:90:12:fa:31:11:c7:3f:0f:43:99:00:58:99:49:14:59:0b:
48:fd:66:73:19:db:10:a4:a3:94:fd:5f:d1:10:e6:92:3f:93:
78:36:f7:55:95:47:39:f2:97:42:92:ef:4e:98:76:74:77:d7:
67:45:dd:de:ad:91:73:b0:0d:c1:07:5a:1a:6d:b0:2d:2a:a8:
07:8f:ae:f0:82:ee:80:9f:08:3e:ed:8f:91:8c:31:97:7b:c5:
9f:bf:b5:ad:b0:0c:9d:b5:1e:f7:83:83:4f:15:3f:4d:b4:b5:
20:9a:21:e4:b4:86:8f:1b:06:3c:f3:06:15:5c:ee:e0:61:a2:
45:6c:53:ec:12:11:5c:47:2e:d0:60:76:0c:ba:d2:4c:c2:e6:
7e:9f:d2:13:eb:3d:23:9c:14:8b:92:bb:92:13:7c:77:9a:5b:
69:88:2e:44:60:bf:ba:38:1d:09:a4:f4:7f:7f:81:2b:36:0a:
48:01:f3:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:34:52 2026 by rpki-client