Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
File: Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft (raw, json)
Hash identifier: ZU/O3HPs9LB8fy7/iOsOkc5A4xfp7UD1lDuQmDNlKQ8=
Subject key identifier: E3:FA:6F:6E:17:48:C8:D9:0A:81:85:5A:3A:AB:F7:F4:D7:1F:A1:06
Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C
Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c
Certificate serial: 019D2996EC1E265DCABE3C16EC8C3A7F53F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
Manifest number: 0BFC
Signing time: Thu 26 Mar 2026 10:00:49 +0000
Manifest this update: Thu 26 Mar 2026 10:00:49 +0000
Manifest next update: Fri 27 Mar 2026 10:00:49 +0000
Files and hashes: 1: JXLkT6VnIp-SB5I9EMRZOw0DYZI.roa (hash: l3rRARSXe/Kv5HUcutLJRW5ribdNSHw4ggpcG9Mw0ro=)
2: Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl (hash: prYNBMzF3skKj05qwZM3By+QFrEcxzpiODqeFVogpU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:ec:1e:26:5d:ca:be:3c:16:ec:8c:3a:7f:53:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c
Validity
Not Before: Mar 26 10:00:49 2026 GMT
Not After : Mar 27 10:00:49 2026 GMT
Subject: CN=e3fa6f6e1748c8d90a81855a3aabf7f4d71fa106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8c:0e:a7:5a:cb:d8:69:5e:51:4c:00:f4:72:
e4:b3:08:30:cc:d5:33:ec:f9:bb:31:06:1b:e9:dd:
8c:b2:fb:74:3a:6c:c9:b0:2d:ec:43:cc:60:d0:ed:
9c:d3:e9:d0:b8:cc:63:a5:70:2a:a0:91:0c:de:a9:
6b:a4:1d:0c:aa:4c:4f:f1:3a:cc:94:73:59:1a:48:
59:4b:6f:ce:99:a8:7c:16:62:dc:40:0c:ea:74:8e:
dc:1b:07:a7:e5:b2:48:b0:4f:ea:fb:cf:bc:62:4c:
8e:b5:f7:4d:96:b8:5d:63:05:5e:8e:4e:3e:0a:29:
e7:29:35:52:b3:cf:3e:24:df:c4:4b:5e:03:26:4b:
d0:ff:b4:8d:f5:03:29:d6:31:28:45:eb:9b:2c:bf:
f3:2b:75:a1:5c:64:a8:77:dc:6d:fc:97:4c:55:c9:
fe:1d:2f:a3:ff:c5:a0:31:0d:e8:3a:47:46:55:d4:
c1:1b:f1:0c:b5:1f:1f:26:de:8f:21:43:53:da:1e:
2b:f4:fc:f8:64:ef:c3:93:b8:6b:e1:72:06:6f:77:
d8:26:5f:87:fe:03:10:2c:c1:0c:69:7a:66:8b:40:
dc:29:b8:b0:0b:e9:04:4a:d0:f4:17:56:ee:b8:a3:
3b:a3:36:eb:9a:a2:69:8b:b9:11:71:3a:61:98:58:
4c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FA:6F:6E:17:48:C8:D9:0A:81:85:5A:3A:AB:F7:F4:D7:1F:A1:06
X509v3 Authority Key Identifier:
keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:d6:a1:ef:9e:3a:2a:d3:42:a5:fa:b9:b0:a5:8b:02:e2:c1:
bd:cd:ed:0e:13:c6:7d:31:3d:e5:92:23:fb:9e:81:78:10:7a:
8d:ec:d1:b1:c1:a4:6d:58:85:0f:3c:a7:08:c2:c7:0a:e6:9c:
84:7f:37:18:29:01:18:4c:62:a5:3f:ff:dc:b7:c3:54:7b:71:
7c:37:03:f4:c4:29:2e:ab:2d:4a:75:5f:c0:f4:d9:39:73:3d:
ef:2b:24:9c:41:6f:c9:96:31:78:79:da:e4:98:7d:3a:22:34:
97:7b:82:56:89:7c:e3:76:15:20:2f:7a:ef:28:71:f9:39:73:
38:ba:7e:fe:2e:ac:46:89:5e:97:86:bb:64:9c:e3:0f:7d:07:
03:3d:90:de:51:63:b3:77:c4:8e:41:7e:b6:09:3d:fa:22:28:
15:76:1e:d6:18:52:6f:26:09:ab:10:9f:19:75:3c:ca:0a:11:
80:86:9e:62:66:f6:c6:50:ea:ab:51:6a:5a:43:f9:9b:69:68:
35:a7:f7:4e:30:17:66:b7:d9:6a:23:dc:99:d6:3c:b6:9c:33:
43:10:10:d7:c2:2d:d3:a8:86:f9:71:be:96:5c:5e:a9:72:2e:
fa:a5:bb:bc:9c:70:bc:9e:51:c3:8e:67:6a:98:5d:0c:fb:ae:
03:f1:f8:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:54:43 2026 by rpki-client