Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
File: qvHI3UCIS0nwiAZNPBANKhiahHQ.mft (raw, json)
Hash identifier: Myzw2wf7i+Jt4i/aU+6HxOwZQi64b2GH7cDECOgTMMg=
Subject key identifier: 3F:00:7D:A2:A7:88:69:9E:13:A4:E6:3F:6B:56:60:47:D9:A0:23:35
Authority key identifier: AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
Certificate issuer: /CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Certificate serial: 019D28BB1BF06398283F6D86FE602E775936
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
Manifest number: 04E4
Signing time: Thu 26 Mar 2026 06:00:43 +0000
Manifest this update: Thu 26 Mar 2026 06:00:43 +0000
Manifest next update: Fri 27 Mar 2026 06:00:43 +0000
Files and hashes: 1: TPinzjQGStjo9WplkE5Cz7wKV1E.roa (hash: PHy3g+7P0F5Q3MN1sN50m0Ft2cJh+htWlf3pquiUF5Y=)
2: qvHI3UCIS0nwiAZNPBANKhiahHQ.crl (hash: VUmGAjxejRH2tgbQ0YkgadYlpYH40+7CjWGSB8upFf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:1b:f0:63:98:28:3f:6d:86:fe:60:2e:77:59:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf1c8dd40884b49f088064d3c100d2a189a8474
Validity
Not Before: Mar 26 06:00:43 2026 GMT
Not After : Mar 27 06:00:43 2026 GMT
Subject: CN=3f007da2a788699e13a4e63f6b566047d9a02335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8a:34:e1:5b:12:03:32:08:a2:f8:df:ec:0d:
87:8e:65:a0:81:d1:42:80:17:34:52:8a:5c:54:0c:
eb:e9:08:77:32:95:5f:a9:d6:87:45:9f:9b:ef:62:
3f:08:d1:8b:3b:23:33:39:3b:9c:44:f9:69:b4:4b:
2c:ed:d1:d2:e3:df:3b:ac:71:47:ad:10:df:01:89:
0e:d3:a5:f0:25:42:ee:c6:99:d2:3b:17:f0:c6:cd:
ee:71:cb:d3:0e:52:6e:82:9a:99:d4:c1:26:d1:d8:
ee:44:bc:38:0e:1a:f5:1a:1f:33:ea:71:97:78:19:
0e:6a:2f:5b:f4:60:84:ec:d9:3d:7b:f4:85:1f:bb:
a9:d2:e4:a8:78:a6:5b:22:75:a7:39:34:25:6a:63:
9d:51:78:d8:08:41:65:14:9e:4f:49:a0:fc:64:a2:
90:b8:f2:2b:c1:cf:65:6f:41:08:de:a7:2a:72:73:
5e:7b:bb:8c:c6:b7:8f:7a:91:a3:de:83:59:90:53:
88:86:10:c3:c8:eb:e2:f2:c5:39:42:01:93:b8:b6:
5e:8c:05:26:a2:0e:1a:41:fa:43:a9:f4:11:54:63:
65:e8:2c:1f:db:58:85:30:05:70:93:09:c9:d2:3c:
10:a9:cf:be:0d:db:9b:0b:af:97:1e:28:12:9e:bc:
e5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:00:7D:A2:A7:88:69:9E:13:A4:E6:3F:6B:56:60:47:D9:A0:23:35
X509v3 Authority Key Identifier:
keyid:AA:F1:C8:DD:40:88:4B:49:F0:88:06:4D:3C:10:0D:2A:18:9A:84:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvHI3UCIS0nwiAZNPBANKhiahHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33900c-e6ce-444e-bc96-3b339d081f83/1/qvHI3UCIS0nwiAZNPBANKhiahHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:b6:69:11:23:48:ab:47:01:07:c7:ce:f1:2a:e7:c0:51:6a:
20:8e:5f:cc:5e:1b:41:33:02:57:bf:a9:9a:86:ac:2f:40:5b:
9a:02:c5:21:32:2e:d2:1e:a6:c3:af:d7:45:6f:71:5b:5d:3b:
75:d8:17:99:d7:2c:c5:5e:af:0c:99:55:12:75:c9:b9:eb:8f:
4c:5b:ba:0a:7e:2f:ec:a2:5f:57:aa:c1:80:94:6f:e0:ef:9a:
9b:f5:7c:ce:05:66:1b:00:c2:70:63:70:fa:1c:d5:53:24:2e:
63:1f:1e:14:32:e1:14:41:9c:38:3c:db:ee:1b:42:fe:ae:dc:
95:be:da:52:61:1c:5c:1a:20:c4:aa:66:dd:d1:28:d1:71:95:
e2:b0:4f:b2:42:f8:ca:d3:4c:9d:4c:48:a7:91:83:a9:6d:61:
f1:22:f4:3c:ed:f1:7b:70:0a:2c:6e:5f:78:ed:30:f7:05:16:
7d:d2:ab:00:fe:61:d7:b8:07:54:39:8e:e4:5a:da:93:a8:d0:
dc:a5:9e:61:00:ae:08:5c:b1:e8:15:74:30:14:22:68:de:af:
79:e8:88:82:4f:de:90:d4:f9:ff:3a:d7:f8:2d:55:2d:6c:6b:
28:60:e7:77:1c:f8:64:60:9c:41:83:fb:92:f1:56:74:02:b3:
5e:2f:50:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:37:01 2026 by rpki-client