Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
File: qlPNLFhKPcFiCLqTsNt0dzs_I74.mft (raw, json)
Hash identifier: 7MqO6QddbhSAdbutDnBHyxv5grh1ROvZOWmieXSQg3w=
Subject key identifier: 6F:C8:2D:24:14:30:17:9B:6E:8E:58:4C:90:32:67:83:29:37:E0:16
Authority key identifier: AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
Certificate issuer: /CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Certificate serial: 019D27725D8B8F51D64E816EF5BB5A582CC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 00:01:39 +0000
Manifest this update: Thu 26 Mar 2026 00:01:39 +0000
Manifest next update: Fri 27 Mar 2026 00:01:39 +0000
Files and hashes: 1: GkaV6j5jPz1mP-Dn9Vke0qIsBRE.roa (hash: D0faA0NAhOg5B8uJp2cs027yC0WcbwJy1xgJBQXojpc=)
2: qlPNLFhKPcFiCLqTsNt0dzs_I74.crl (hash: /uxNqOyd3CMpRCOA6aTbG/R0/c/0FPYJwZGEkYjNv5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:5d:8b:8f:51:d6:4e:81:6e:f5:bb:5a:58:2c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa53cd2c584a3dc16208ba93b0db74773b3f23be
Validity
Not Before: Mar 26 00:01:39 2026 GMT
Not After : Mar 27 00:01:39 2026 GMT
Subject: CN=6fc82d241430179b6e8e584c903267832937e016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a6:1d:ff:76:1a:fc:77:81:d4:3b:5e:da:29:
81:bb:5a:d5:27:30:f9:bf:36:8c:bc:78:8f:a5:1f:
c7:f8:54:1d:e5:fd:37:bc:aa:79:74:68:10:54:50:
95:ad:3a:04:eb:22:ca:4a:2f:9a:2e:02:75:90:b2:
ee:af:e8:62:b4:79:16:35:6f:10:66:e9:12:a4:1d:
a5:35:35:d7:45:5e:3b:bb:98:5f:06:d2:a8:ba:09:
45:86:9c:c6:72:f4:46:67:72:b8:47:67:17:00:63:
e5:08:d8:85:2f:50:b7:91:5b:92:cd:57:50:82:3e:
85:a4:27:15:64:09:eb:d6:b4:56:1c:8f:8f:31:90:
c8:c4:89:47:81:5b:49:72:6c:ec:d4:8b:11:2d:67:
8a:f1:78:4f:89:9d:40:b5:ce:2c:ab:e5:6d:58:29:
c5:10:48:8e:dd:a7:1b:64:82:22:e4:48:9d:67:6a:
02:89:52:b6:f1:80:fb:0b:1a:ea:f6:33:bc:d4:5a:
c3:c6:eb:af:2e:69:5a:96:cb:c1:37:2a:55:a4:a0:
9a:e5:fa:d2:3b:05:d0:ee:e0:d8:ef:99:0a:7f:83:
55:e4:de:7c:bb:e8:a1:f7:5b:05:5a:56:92:9f:57:
d6:e3:3e:c8:8c:71:94:5a:e9:f8:59:24:24:0f:2a:
e5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C8:2D:24:14:30:17:9B:6E:8E:58:4C:90:32:67:83:29:37:E0:16
X509v3 Authority Key Identifier:
keyid:AA:53:CD:2C:58:4A:3D:C1:62:08:BA:93:B0:DB:74:77:3B:3F:23:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlPNLFhKPcFiCLqTsNt0dzs_I74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e670a7-ad78-457e-ad80-007978bdb052/1/qlPNLFhKPcFiCLqTsNt0dzs_I74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:74:bf:13:cf:77:19:92:21:90:39:b8:3a:a1:fa:b3:ae:57:
3f:4b:0a:03:ec:0c:d7:c8:c3:80:ea:54:83:5a:54:63:5e:14:
d6:79:63:71:81:ef:b0:89:a4:07:46:eb:5e:b4:66:eb:9b:7d:
5d:3e:ec:6e:c3:03:1a:84:b8:76:55:c9:f2:98:4f:d0:af:ad:
49:c2:27:11:94:17:46:82:5b:12:8c:91:30:be:8f:a3:13:fc:
f0:7a:b8:ce:bb:55:cd:2e:d5:47:d2:8c:31:12:b0:d4:71:80:
1e:c2:73:67:09:45:1b:fb:87:1d:a4:22:3d:e2:54:c3:a4:b2:
47:fe:c0:20:90:01:33:9d:fb:37:83:8f:5b:5e:b9:53:06:d4:
3d:54:8e:dc:13:45:73:6b:f5:26:75:d7:71:01:54:30:66:54:
cf:b8:cf:09:0c:b0:e8:51:27:cf:2d:90:18:c5:9e:ef:0f:b1:
af:8f:0e:9b:58:3c:48:dd:e5:89:d4:dd:5d:dd:3a:1a:5e:b3:
52:55:2d:83:bf:26:0e:ab:85:b6:0e:a3:fc:6c:16:2c:d1:d1:
20:24:b9:c0:fc:06:a1:d2:cf:9e:f2:10:86:20:52:4c:20:9d:
78:e8:e5:a8:96:30:14:5b:2f:bb:88:01:68:33:50:45:b7:d7:
5f:31:66:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:31:34 2026 by rpki-client