Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
File: QCzcwN4_54S70vviah2BZWpGfSI.mft (raw, json)
Hash identifier: BKSsa+5WSTeq36YWlnliIedrsRWSx2RumEhKn4Mnn6M=
Subject key identifier: CE:CC:F2:E2:38:4B:8E:92:7F:CE:BE:BA:32:77:96:15:73:F2:35:AA
Authority key identifier: 40:2C:DC:C0:DE:3F:E7:84:BB:D2:FB:E2:6A:1D:81:65:6A:46:7D:22
Certificate issuer: /CN=402cdcc0de3fe784bbd2fbe26a1d81656a467d22
Certificate serial: 019D28F32914AFEC71468B2A2BF424506EBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
Manifest number: 0AF9
Signing time: Thu 26 Mar 2026 07:01:57 +0000
Manifest this update: Thu 26 Mar 2026 07:01:57 +0000
Manifest next update: Fri 27 Mar 2026 07:01:57 +0000
Files and hashes: 1: QCzcwN4_54S70vviah2BZWpGfSI.crl (hash: XMqr4ayBwwK48QZJIU/APn1x+kQUU0dNK3meJBdn2bU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f3:29:14:af:ec:71:46:8b:2a:2b:f4:24:50:6e:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=402cdcc0de3fe784bbd2fbe26a1d81656a467d22
Validity
Not Before: Mar 26 07:01:57 2026 GMT
Not After : Mar 27 07:01:57 2026 GMT
Subject: CN=ceccf2e2384b8e927fcebeba3277961573f235aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:de:31:07:9e:4a:f0:35:0a:32:c9:fd:4e:5f:
8e:67:48:19:e6:45:90:2e:bc:2c:71:5e:b6:9e:6e:
bd:6d:60:c4:0f:10:d0:52:26:35:7e:f6:c4:74:5f:
a1:1c:51:a2:e7:05:1a:cc:87:d7:ff:5d:49:00:d3:
c9:64:ee:d6:5f:30:6d:6a:9a:b9:56:b9:cb:b6:01:
51:cd:08:20:81:ca:45:75:a6:d5:a2:d2:84:77:ee:
3e:7f:bf:dd:2a:27:18:cf:e8:5e:31:ea:9f:94:c3:
6a:cc:c7:14:e3:65:11:07:78:3c:46:b4:48:cc:2e:
f5:c4:4b:87:63:2c:12:83:de:d1:23:52:95:e6:9c:
c0:e7:60:e0:40:a1:7d:4d:86:4e:ea:bd:02:dc:d3:
20:98:6d:79:2b:43:f5:66:d4:2b:f0:64:69:e4:fc:
41:3b:00:a5:7b:96:64:44:b6:18:66:dc:83:85:8a:
59:e1:8d:e1:49:ce:7d:b1:09:df:eb:e9:bb:67:90:
ae:b3:8e:38:f6:bf:f6:62:66:b8:65:79:ef:25:73:
d0:38:f1:ad:5a:0a:a0:3d:0f:e7:85:1b:6c:a0:d7:
ee:8a:46:eb:4d:a5:85:a2:a8:61:c8:b5:18:91:f9:
04:43:f9:78:55:72:54:b8:9c:86:6f:42:9c:88:99:
96:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:CC:F2:E2:38:4B:8E:92:7F:CE:BE:BA:32:77:96:15:73:F2:35:AA
X509v3 Authority Key Identifier:
keyid:40:2C:DC:C0:DE:3F:E7:84:BB:D2:FB:E2:6A:1D:81:65:6A:46:7D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCzcwN4_54S70vviah2BZWpGfSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f05d0d-c1d8-47a6-9d1e-864daca6cfdf/1/QCzcwN4_54S70vviah2BZWpGfSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:13:9b:4e:7e:9b:50:ee:ee:b0:ab:fe:61:8a:0e:9f:96:b6:
30:c7:d3:9b:5c:8e:2d:3f:8d:d4:d1:a8:1e:76:fc:28:90:13:
20:12:b1:0b:7d:78:14:05:45:55:d5:26:31:e5:16:d7:f5:89:
9f:b5:b4:a6:cc:ab:42:3b:08:b0:3d:07:48:c5:54:c5:6f:73:
89:bd:ef:a0:10:96:46:97:66:e1:49:bb:b5:08:ec:29:12:da:
d7:fe:15:c7:3f:3f:90:f9:53:3a:4c:9f:b4:85:42:8d:46:b2:
00:31:6c:77:93:1f:77:9f:90:53:5c:7f:58:23:a6:d8:f1:45:
21:df:db:c8:87:dd:47:8a:f1:24:44:67:71:ee:89:36:15:84:
51:45:b3:bd:ba:0d:78:1c:f3:bc:10:16:8f:6e:d7:5f:5e:1e:
5c:48:55:0a:ba:cd:97:11:e2:b0:1f:ef:71:9e:3b:09:dd:10:
58:cd:fc:24:58:49:85:bb:7e:14:f2:aa:ff:bd:3b:2a:9c:79:
6c:db:e8:fa:22:c5:8f:83:44:d2:69:a5:78:a9:fe:5e:70:8b:
e1:62:96:38:a8:d8:e4:a1:4d:66:95:78:b6:91:c6:fa:d0:fd:
70:2b:b6:8b:54:85:03:98:7c:d6:f9:73:47:09:56:a9:87:6f:
41:66:f7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:20:27 2026 by rpki-client