Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
File: QTe22qILXgYYYrb7meI2rCwuNPg.mft (raw, json)
Hash identifier: lcOB6f88qLrf8xBWxIFPvobzIAXRRjzzuDVxadFyQ/U=
Subject key identifier: CE:D7:D7:78:36:74:5D:73:57:93:FD:37:BE:33:3E:47:1B:13:6C:29
Authority key identifier: 41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
Certificate issuer: /CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Certificate serial: 019D2A72C0BFDEE50DC5A61CB980841392CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
Manifest number: 0856
Signing time: Thu 26 Mar 2026 14:00:56 +0000
Manifest this update: Thu 26 Mar 2026 14:00:56 +0000
Manifest next update: Fri 27 Mar 2026 14:00:56 +0000
Files and hashes: 1: QTe22qILXgYYYrb7meI2rCwuNPg.crl (hash: 6ntHNlVz2c+nSBiz5IUlGxXlTo+T1VFEj761xTOtU9s=)
2: cnMksPM8qHUJS7PE1xwm-IJZIEs.roa (hash: F0Xawui/3p0KQ1PsdF0IPS6D5QX+wIN0HvSrMKPyjOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:c0:bf:de:e5:0d:c5:a6:1c:b9:80:84:13:92:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4137b6daa20b5e061862b6fb99e236ac2c2e34f8
Validity
Not Before: Mar 26 14:00:56 2026 GMT
Not After : Mar 27 14:00:56 2026 GMT
Subject: CN=ced7d77836745d735793fd37be333e471b136c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e9:d0:24:ec:06:b7:47:a7:04:08:46:c2:7f:
34:8e:7c:9f:85:27:d5:37:53:2f:1c:b4:2b:14:29:
20:62:dc:95:db:cd:30:86:a5:03:01:15:0d:82:e9:
55:38:25:3b:c4:14:5e:f5:69:cd:cf:8a:cb:69:5f:
d6:30:cf:08:19:fa:79:2f:e0:a7:7a:a3:4a:31:7e:
22:27:33:83:66:7c:0e:e5:93:3a:20:d4:a9:bd:a2:
83:f5:da:1e:7a:49:dc:69:c7:81:e8:62:74:4c:15:
42:a1:39:c9:c8:08:d6:12:9a:54:2d:68:2e:1f:6e:
cc:ae:76:8a:1f:5d:53:9a:b9:af:58:e2:f8:d1:5f:
b3:cd:21:48:b8:ab:4d:8d:a9:e7:54:bd:d2:a5:df:
ed:4d:3c:ba:3d:c1:9b:94:92:cd:ab:24:30:bf:bd:
8e:ee:e3:88:b5:3f:53:9e:b5:c3:2b:34:3a:57:46:
81:82:ac:7d:3a:67:ba:dd:ce:ba:00:50:17:19:3e:
1c:fe:7c:95:e0:74:c8:34:fe:6b:e1:3e:38:d8:ac:
f1:41:23:de:2e:0f:3f:ea:ec:45:76:2f:9f:2c:52:
16:70:4d:e4:75:48:88:82:01:9c:aa:37:bc:c8:f9:
6f:02:ad:f9:4a:ff:bb:6d:e5:b6:c2:d4:17:25:88:
9c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D7:D7:78:36:74:5D:73:57:93:FD:37:BE:33:3E:47:1B:13:6C:29
X509v3 Authority Key Identifier:
keyid:41:37:B6:DA:A2:0B:5E:06:18:62:B6:FB:99:E2:36:AC:2C:2E:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTe22qILXgYYYrb7meI2rCwuNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/03fd42-6589-46ba-a673-0b02a4732479/1/QTe22qILXgYYYrb7meI2rCwuNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:bb:b6:ec:a5:0d:e9:8e:7d:5d:26:84:8e:19:19:11:20:a4:
a2:d2:5f:8d:9f:8d:31:49:e8:2a:d9:0c:de:8d:92:1e:b0:78:
55:95:14:38:84:67:ed:63:bd:44:e5:71:cf:22:30:6c:70:a1:
b6:90:11:fc:b6:14:65:5e:ab:40:f6:a0:be:2b:5f:5c:35:2c:
0b:04:75:a2:78:a9:92:fa:44:fd:77:71:d5:2a:8c:d8:09:46:
5b:c8:ce:98:fd:ea:2d:07:4a:c7:ad:14:30:68:99:3f:0b:4a:
b0:8f:e5:94:3b:bc:13:69:ff:e6:20:74:f0:09:49:6b:85:4c:
5c:ae:5d:b3:c9:ba:ef:10:97:76:50:78:47:7b:61:47:c2:74:
fe:a8:e9:2a:c3:2c:ec:98:04:01:9f:4f:0d:f0:d7:37:ad:6f:
a0:59:3c:62:79:20:19:9a:91:7e:4c:12:9c:95:7c:a9:9e:69:
4c:c2:57:f9:ed:6f:15:ed:45:c9:dc:79:a0:98:ad:ef:47:92:
7b:75:e7:fa:d3:ca:9e:49:0e:6a:05:cd:95:8f:ca:cc:96:69:
73:60:13:56:b1:8d:47:b0:4f:b6:6f:b5:87:8b:2d:b9:26:80:
cb:c5:7e:66:1a:1f:f6:41:8e:8f:c8:21:2e:5c:dc:cf:8c:58:
45:c2:88:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:24:18 2026 by rpki-client