Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
File: Q7iP8e37ZyBmAwJncaquyEuLHrg.mft (raw, json)
Hash identifier: 4lVQpi6oSe5xuxgyKB15JzADr4n5NEWOjmr0FXtuWLA=
Subject key identifier: F7:DD:00:85:4B:32:CC:C3:DF:27:30:5F:1B:52:72:B9:89:78:F1:68
Authority key identifier: 43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
Certificate issuer: /CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Certificate serial: 019D26CD70772E26DCF947B9A1C801C248E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
Manifest number: 1036
Signing time: Wed 25 Mar 2026 21:01:31 +0000
Manifest this update: Wed 25 Mar 2026 21:01:31 +0000
Manifest next update: Thu 26 Mar 2026 21:01:31 +0000
Files and hashes: 1: Q7iP8e37ZyBmAwJncaquyEuLHrg.crl (hash: +0YORqALGRlo8G2q/nT3XsMybsFlufoJtJxp72ZZhqY=)
2: b0XSo4jvDuO8MB_EbsL2q8I7iqE.roa (hash: zA5xuJEEHRh1YzXZne76m8fjU9QyWncSAVrCc1799S0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:70:77:2e:26:dc:f9:47:b9:a1:c8:01:c2:48:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Validity
Not Before: Mar 25 21:01:31 2026 GMT
Not After : Mar 26 21:01:31 2026 GMT
Subject: CN=f7dd00854b32ccc3df27305f1b5272b98978f168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ff:b1:d5:92:51:10:61:33:d7:76:81:85:66:
16:59:66:20:c5:15:5b:78:f1:e6:f5:11:3c:a6:09:
13:5c:a9:ae:1b:18:da:1d:de:f2:b4:fe:45:c0:37:
09:3b:74:c2:48:dc:bf:87:4d:5c:f6:90:9b:ac:41:
1e:8a:9d:21:be:56:1f:6a:2c:55:35:d1:b2:e2:0b:
77:e5:93:f7:c5:ea:ee:31:3f:96:3b:d4:8e:3b:a1:
e7:bb:16:a6:c4:f7:4c:aa:d8:94:00:a0:fd:3c:a1:
69:d3:9b:80:ee:09:7a:d8:38:01:64:ec:ad:73:c5:
c6:7e:d7:7d:0c:ad:bb:57:fc:f7:d1:18:48:32:ab:
fb:4a:a9:b1:71:f8:ff:13:c0:2d:3b:78:fd:93:95:
df:f4:12:87:6f:d2:af:72:e3:e7:6d:7c:b8:86:c1:
b2:8d:87:d3:a6:d1:c8:18:53:9f:cd:59:e7:c9:c9:
f8:d7:74:e1:65:6b:54:97:ad:10:5b:ed:19:55:c1:
ca:73:1f:ec:ce:dd:f7:4c:c0:f4:02:0e:81:21:3b:
f8:ec:78:fe:b2:a9:bb:92:bb:f7:3c:c1:be:a6:e7:
16:37:47:61:75:99:0e:ab:23:d9:76:7d:c5:1e:05:
6d:91:60:7f:8e:ca:66:bb:14:4b:8e:4a:22:d7:89:
ef:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DD:00:85:4B:32:CC:C3:DF:27:30:5F:1B:52:72:B9:89:78:F1:68
X509v3 Authority Key Identifier:
keyid:43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:95:d0:d7:f1:68:42:35:c7:4f:6f:99:0d:2b:40:fb:23:a4:
0d:e8:3a:54:e8:d8:00:4e:c6:f2:e7:c3:f4:ce:90:fe:02:00:
52:a7:cc:b2:db:cf:ad:d2:a7:e7:7b:01:2e:9f:4f:e5:d4:5f:
10:63:b7:e3:76:48:44:15:2d:f8:29:ee:1c:7c:d0:e9:9b:63:
19:93:58:d5:24:45:f9:de:fd:9f:89:a9:f2:9f:cd:1b:f1:f9:
d3:0c:a8:47:fa:64:cd:ae:d4:8e:42:58:a8:c2:aa:43:9c:23:
d1:7b:77:ec:1c:6d:7e:7f:7e:ff:90:27:78:73:28:fc:aa:a5:
bb:d7:d7:50:13:16:8a:4e:a9:c7:c3:a2:89:58:c2:1a:75:bf:
a4:cd:93:25:c2:a1:54:e1:19:98:4d:b6:df:87:32:16:75:bd:
b8:d8:fd:08:14:97:23:ad:39:95:cc:59:67:e2:5d:ac:a5:99:
21:62:18:d0:eb:3f:6d:b1:68:ba:a4:16:33:32:54:f2:5d:72:
6b:a8:30:69:ed:4a:e8:01:02:cb:88:87:47:df:42:85:ab:d0:
c8:32:c1:88:d1:f7:f9:ff:08:0a:70:41:0e:70:d1:5d:2f:1e:
74:9e:5d:49:63:f2:f6:b8:aa:2e:d8:a9:bc:4a:f0:fe:96:3c:
98:7b:c1:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:07 2026 by rpki-client