Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
File: Q1QWsigrRTPDUJwY6VfODINryDc.mft (raw, json)
Hash identifier: QJNMTIeyyvrSvoJrVUHTNmDEhxHbPCgITs67gB+rOlY=
Subject key identifier: C7:2C:3D:EB:5F:C4:86:E4:CD:EB:02:B5:F9:B5:3D:99:79:0B:83:24
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 019D2816AC6FF3546470DAC95711D91112DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
Manifest number: 1076
Signing time: Thu 26 Mar 2026 03:01:07 +0000
Manifest this update: Thu 26 Mar 2026 03:01:07 +0000
Manifest next update: Fri 27 Mar 2026 03:01:07 +0000
Files and hashes: 1: MnDYEmNyAQzBpzR98qjs2sOtO_c.roa (hash: 34lKjvmsvDbzxduruRJbqT8KL81GGIwldVfmoVn9Yyw=)
2: Q1QWsigrRTPDUJwY6VfODINryDc.crl (hash: 2RGCzi4K2oHllMIMBz5nj8a5DczRwSKRheKgqP86pjo=)
3: UG9G_dnWRpZkM8dNOUmzQ9ddYpM.roa (hash: VJHtgY+XTe16MdK4R4BNwcTnWb1T/NjN98Z9wb0GkTk=)
4: vUHrTNIykiSnEmNGusQYaFxAqdw.roa (hash: 1iGnZuZAbpNIqbdvK2c36DPr9j4iU15E9+caM/CdPU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:ac:6f:f3:54:64:70:da:c9:57:11:d9:11:12:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Mar 26 03:01:07 2026 GMT
Not After : Mar 27 03:01:07 2026 GMT
Subject: CN=c72c3deb5fc486e4cdeb02b5f9b53d99790b8324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:26:4f:8b:ba:94:a6:b5:e8:07:17:51:28:01:
00:4a:51:04:d9:3e:99:48:8b:50:d0:ba:7f:0a:29:
8d:5a:a6:3c:f0:4e:bc:42:a3:4d:cb:8a:37:ca:c1:
dd:cd:9a:b0:97:8f:ce:17:db:2f:ba:25:ce:34:dd:
56:8e:2e:e6:e7:65:68:8c:c4:73:48:b9:16:df:27:
ec:71:d8:d9:db:a9:ff:48:1b:a8:fc:d9:b3:ef:75:
ed:8d:4a:d3:91:82:b5:a5:08:31:f1:c5:8c:68:46:
89:f0:43:e2:61:f4:e6:81:8a:ed:37:3a:d7:c8:a4:
dc:1c:ac:f8:56:68:fa:cb:fb:f4:cf:d2:f8:98:41:
18:1b:1d:e0:03:6c:5b:44:10:ef:c9:1c:4e:cf:56:
df:8f:3b:ce:33:b4:78:a6:f3:df:41:ef:7c:83:85:
a0:68:76:d6:c9:79:99:c3:86:c2:fa:d5:8e:cf:b8:
17:77:f4:b0:a5:c1:39:fc:50:7c:87:c1:6c:17:84:
c0:be:71:62:c4:33:c9:78:24:e4:2e:dc:b0:c5:ef:
8d:1c:a0:47:18:26:e6:a1:8d:ec:36:3f:4c:bd:4a:
58:ff:96:54:a5:f7:32:48:f3:c0:56:6d:d1:c7:0f:
da:6b:5e:77:cd:94:db:6d:c7:e5:e5:4e:ba:9e:81:
a4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2C:3D:EB:5F:C4:86:E4:CD:EB:02:B5:F9:B5:3D:99:79:0B:83:24
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:5a:31:aa:59:18:9f:e1:d9:05:aa:03:42:7d:11:ee:a7:93:
ed:58:ec:6a:c7:59:0f:03:dd:28:bc:4f:d8:0b:3c:c2:48:38:
1f:3a:4a:8c:68:b9:ad:e8:e8:62:49:f7:fc:eb:32:b4:57:de:
03:3a:17:7e:40:a2:cc:b4:3f:ce:d2:4b:1e:c2:11:aa:88:b5:
08:1b:51:ea:36:63:e0:34:a2:41:fe:51:d2:3b:c5:50:5c:49:
db:7f:61:43:de:0c:cd:c0:5f:d4:24:20:81:4d:3f:0d:fd:71:
de:bd:85:aa:0e:df:33:ca:66:34:7e:07:fd:3f:87:fa:00:45:
fe:1f:41:11:b3:9e:9d:27:73:52:65:ea:dd:57:b7:2a:f6:45:
b5:e1:74:6f:9e:b9:08:e5:2d:64:17:8b:18:48:a9:41:13:f3:
9c:cd:f7:f3:79:76:bf:32:d1:d2:2d:c1:df:8c:40:34:4b:8f:
78:4b:83:8b:ef:b4:bc:30:09:42:35:cf:79:51:08:04:43:6a:
b3:57:b6:45:f6:95:f1:e7:6d:42:f3:99:70:28:81:77:93:bd:
0c:31:97:a3:94:8d:b5:1c:f0:a0:74:23:b2:a8:4c:0a:de:6e:
b4:d8:d4:7a:95:69:04:f7:73:a2:7f:2c:a5:1d:90:84:38:17:
dc:e0:cd:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:08:40 2026 by rpki-client