Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
File: QYHCLrezLZAdElcA4UDrYAncxto.mft (raw, json)
Hash identifier: ej/EXteIDcKEgCqtIYLD9jx9UCLxOB90wvjNkBEuFXk=
Subject key identifier: 76:94:CF:F1:7A:AC:4E:07:08:26:45:9E:F6:69:A8:8A:01:CA:81:6A
Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Certificate serial: 019D27A87BF0BC8B3EE6CEF96084F247DE4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 01:00:46 +0000
Manifest this update: Thu 26 Mar 2026 01:00:46 +0000
Manifest next update: Fri 27 Mar 2026 01:00:46 +0000
Files and hashes: 1: QYHCLrezLZAdElcA4UDrYAncxto.crl (hash: WS8VPOVRXra4Q0KwpvaSvFEnoBRlMNGYTKqj2o42nP4=)
2: amR_0Ln3b6oWcaZ7obIng9Z_o0U.roa (hash: tbRCRQaFz7cg1epOgNM5Qx0T+ZaSIikRXHm5/Cmw7WQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:7b:f0:bc:8b:3e:e6:ce:f9:60:84:f2:47:de:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da
Validity
Not Before: Mar 26 01:00:46 2026 GMT
Not After : Mar 27 01:00:46 2026 GMT
Subject: CN=7694cff17aac4e070826459ef669a88a01ca816a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ae:91:8c:0d:73:9d:ec:e9:2a:05:e8:db:4a:
66:7f:89:82:a4:5b:61:9a:cd:d5:8d:80:fc:5e:c5:
00:12:30:de:78:7d:84:71:28:56:bb:58:d5:06:fc:
19:3d:20:6a:de:f9:b5:38:4d:56:90:74:f3:48:38:
d0:6f:07:72:c4:3d:a7:42:2f:6d:ef:02:3b:1e:bd:
42:73:8e:bd:cd:6a:10:18:c4:a2:6a:54:d6:df:be:
23:cb:f0:f7:76:5f:f0:5b:39:cc:14:91:5c:6f:ca:
e4:49:f9:cd:d3:22:9d:7f:7b:62:03:43:ab:87:56:
d6:76:ef:40:23:9d:0d:4c:be:7e:42:77:2f:75:48:
86:f7:1a:e0:2d:00:e4:77:f5:27:18:2b:01:af:2f:
75:ea:27:aa:93:f1:19:6d:57:f0:18:2d:58:2d:a6:
58:ce:3a:4d:88:11:77:e7:8e:94:28:a9:d9:06:30:
ea:87:08:ca:33:22:0d:ba:32:ec:08:21:34:a8:26:
6a:d3:ba:2b:32:d4:03:09:22:ad:e2:b9:5c:e7:5d:
10:a9:ef:8d:ee:2a:9b:41:43:88:d2:dc:b6:f5:98:
9d:78:20:f1:22:66:b9:6e:5c:73:24:04:3d:fd:08:
fa:dc:2f:87:b2:a4:cb:49:9a:44:f8:27:6b:e4:24:
fc:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:94:CF:F1:7A:AC:4E:07:08:26:45:9E:F6:69:A8:8A:01:CA:81:6A
X509v3 Authority Key Identifier:
keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:df:b8:8c:1e:32:14:01:2f:00:23:9e:9d:44:ac:5a:4e:e2:
1f:26:08:6c:80:ac:c5:3d:85:90:07:84:da:25:2a:a9:79:d6:
1e:d1:e1:ce:6e:ba:f6:5e:16:cc:29:21:98:05:3b:db:03:fc:
48:5b:63:8c:66:8f:d2:31:b3:be:70:13:d5:cb:d7:9a:b4:4d:
84:d0:f3:33:0c:17:7e:3f:c9:34:8b:05:cf:96:ed:2d:a1:74:
71:23:91:72:24:fe:a4:d5:71:ca:82:3e:f1:22:36:7c:6c:4a:
6e:5c:f6:1d:27:8a:20:3d:46:d6:9d:7f:1c:58:e9:7d:ea:28:
b0:99:27:bd:91:f4:3f:6e:14:d7:94:79:ab:fc:79:1d:01:48:
1e:52:e7:82:94:33:2e:71:5a:cf:97:17:a5:16:39:ce:8b:3f:
75:52:64:cf:85:15:f7:6d:ba:df:ad:f5:0c:18:fc:4e:eb:84:
89:ef:e9:6c:37:c6:7c:c3:da:76:96:e2:33:83:f1:f5:33:a5:
05:b2:7d:a3:6b:53:e0:39:2d:c8:ff:52:8b:8e:22:e0:06:c9:
14:c2:05:45:12:35:45:e7:31:f1:6d:4f:13:18:e5:37:83:3a:
5a:e8:81:82:a4:e5:65:4e:d4:1b:ff:62:8f:2f:bf:e4:50:01:
77:0a:ca:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:25:27 2026 by rpki-client