Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
File: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft (raw, json)
Hash identifier: xmOGpoumOE9NwGY+hSe/qJLM/hZNXztqJ9eUYByiGXw=
Subject key identifier: 83:A8:20:31:67:AE:3C:78:40:50:3E:43:E2:91:0C:51:A5:46:13:3E
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 019D27E0009EC8EAFAAEE9AFB61C3F2E2964
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 02:01:24 +0000
Manifest this update: Thu 26 Mar 2026 02:01:24 +0000
Manifest next update: Fri 27 Mar 2026 02:01:24 +0000
Files and hashes: 1: QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl (hash: 5LbKnXkHZF8wwsJFeFfY1oG18t48875px7nfNOqgu5c=)
2: aS8mVetVV64JjwlhI8fk4CgYJuY.roa (hash: 5ScmfISq4FtoPsxtoa+DY1bHZcOcz3J826X0cZ02V54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:00:9e:c8:ea:fa:ae:e9:af:b6:1c:3f:2e:29:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: Mar 26 02:01:24 2026 GMT
Not After : Mar 27 02:01:24 2026 GMT
Subject: CN=83a8203167ae3c7840503e43e2910c51a546133e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c4:ab:53:a6:4e:88:4e:7c:93:27:e1:43:f6:
04:ba:fc:0f:10:2b:95:b6:5d:62:f6:35:40:0e:c8:
d3:5a:d9:5f:e4:81:95:a9:57:3e:71:4b:4c:c9:5f:
48:47:67:6e:b7:a1:3b:00:64:71:9a:56:ec:13:ae:
02:4f:11:46:f9:5b:cd:73:3a:32:72:83:a6:bb:ea:
1a:3f:c2:f6:3d:4a:0a:6d:38:f4:dc:31:d0:13:6d:
80:c2:20:fb:bd:6b:65:4a:10:29:64:17:42:b1:4e:
e3:db:cd:e2:1f:6c:6c:a2:e8:48:f2:53:13:bf:9c:
bc:6d:5b:85:df:83:d8:bf:f8:2c:ec:1a:9a:75:86:
84:16:38:f7:c7:c0:22:72:5c:0a:a3:8a:57:93:35:
26:b3:db:7c:a5:79:9a:71:9d:5c:8a:fe:f7:b2:63:
33:75:e1:94:52:b7:65:b5:ba:27:d6:e0:71:73:c9:
94:e8:60:26:ee:bf:34:ec:e5:16:2a:ac:14:61:86:
b3:9b:17:27:79:58:21:d6:4d:d0:ed:ec:0c:5c:d8:
04:cf:7e:e5:7c:63:5b:d9:f1:a0:2c:8d:34:a0:3d:
a8:99:36:4a:ee:41:5a:5a:94:94:f2:ac:27:35:60:
62:4c:3b:3b:81:34:16:03:6d:58:c2:92:ac:aa:78:
30:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A8:20:31:67:AE:3C:78:40:50:3E:43:E2:91:0C:51:A5:46:13:3E
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:99:60:78:f2:53:e8:5b:a8:c5:02:9e:21:ae:2b:19:a7:29:
56:59:36:b9:1c:bc:fa:9e:30:fb:2c:2f:ad:65:fd:9d:c7:4d:
9a:63:67:0f:cf:b6:ab:fa:a4:a1:8a:39:ba:d0:70:c4:bf:3d:
45:2f:23:5d:76:89:eb:bf:30:6c:54:41:d9:ce:0f:2e:70:f8:
a0:ef:fd:94:db:f6:7b:80:7a:81:f6:e2:4d:96:10:59:be:f6:
00:01:25:75:a9:c0:fb:a2:02:c5:99:f5:4e:22:0a:33:8a:81:
91:51:0f:41:3c:db:34:ed:94:be:c8:95:87:48:93:91:17:26:
ed:88:7b:e5:55:f6:b5:c5:74:06:bd:0f:02:7a:be:95:a9:7c:
5c:a0:8d:3c:a9:cf:1a:cc:96:d5:8f:f8:c9:41:13:bc:38:52:
8b:4d:72:99:8b:0f:f5:a4:7e:56:3a:c8:1e:3a:86:20:b7:7b:
01:df:79:f2:dc:25:27:7a:58:17:46:c7:02:44:bb:b7:19:99:
98:7b:ba:e7:a5:ae:30:1b:30:db:1a:f9:62:12:69:75:b5:e7:
a8:52:d6:a4:fa:f0:21:05:e6:48:7d:87:f4:b0:3c:7e:0a:de:
5d:d6:a3:db:d3:31:20:f0:ac:64:c7:64:55:52:0d:10:90:6f:
d0:d7:6d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:20:55 2026 by rpki-client