Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: RIBBe9xlM1U8Poe5ZtP3Pvdpuc8qy4c1QPULg5YHM2M=
Subject key identifier: E7:C9:00:CA:99:1E:C1:2B:77:B2:00:20:0E:DD:72:0F:2A:EA:80:BA
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 019D24A7C7931CA6F13E9B8B01DB55F773B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1890
Signing time: Wed 25 Mar 2026 11:01:08 +0000
Manifest this update: Wed 25 Mar 2026 11:01:08 +0000
Manifest next update: Thu 26 Mar 2026 11:01:08 +0000
Files and hashes: 1: 5u7ZZD9lOFoFzJauPRF9LoR4JqU.roa (hash: 6383aOZyG4GruUyJbTAEn/2+zHT/N7r0tO3vmVgZ0+Q=)
2: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: zatkaVPWoruOpXiUFGqTVFT3wyt6LgosSkS/1yv3ZQc=)
3: QxEip3wlOXriAz7nnAs_AC0I9NA.asa (hash: iXtb4Nzk+e2nFY3GJNhD9F09a2bTSvaIp01d/mdO65Y=)
4: nSYkP6ZYsP2PGbTEn1voEjCMK7M.roa (hash: MNQbu//jCX54OfF7YJFip/dm1osxFxhLcTi2nI/vQws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 11:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:a7:c7:93:1c:a6:f1:3e:9b:8b:01:db:55:f7:73:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Mar 25 11:01:08 2026 GMT
Not After : Mar 26 11:01:08 2026 GMT
Subject: CN=e7c900ca991ec12b77b200200edd720f2aea80ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d8:ed:c2:66:2b:a1:fe:85:73:70:56:df:19:
6f:2d:73:5b:92:11:1b:8d:c7:40:62:50:b4:4b:10:
85:1a:24:d6:1d:30:52:b9:c5:06:da:76:39:33:92:
cc:cc:6f:fd:4b:98:63:40:f4:96:29:60:73:b1:b0:
29:0e:ae:30:0a:25:73:f0:2d:8f:61:ad:e6:69:19:
0e:ba:fc:ca:d6:4f:13:bd:ff:97:cb:6b:51:bc:79:
24:d5:4e:79:12:02:a1:f7:74:69:6e:d4:d3:62:2b:
5d:d6:03:73:b6:7b:fb:9e:0e:60:41:05:14:5f:a0:
3f:66:dc:2d:d2:96:70:d0:5e:d1:32:84:7c:95:6f:
4e:ef:90:05:7b:2a:59:71:24:b7:60:34:b9:76:d3:
fa:a8:d6:0c:36:e7:fc:aa:85:03:55:60:53:30:2a:
d5:38:23:16:e8:20:95:b2:ed:75:f0:a1:5a:94:f9:
ac:65:8d:b7:8a:c9:5b:49:56:5d:ab:de:c1:5a:9b:
4e:e6:56:75:b0:c7:e6:2e:42:d2:bc:36:1a:70:38:
fe:df:5f:ef:f1:0f:1f:52:be:1a:41:de:89:54:34:
c3:6f:c0:83:92:51:ec:ef:14:54:19:f5:60:cf:68:
53:bb:8e:49:29:89:e2:3b:96:d3:79:23:97:76:35:
0a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C9:00:CA:99:1E:C1:2B:77:B2:00:20:0E:DD:72:0F:2A:EA:80:BA
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:05:c0:8e:e3:4e:df:0e:52:83:d7:59:74:de:01:41:16:fe:
d6:53:5a:3a:50:83:97:76:75:2d:d7:9b:b2:89:f6:52:30:f0:
68:9d:82:7d:0a:bc:b0:8d:d2:77:ea:a1:28:29:47:6f:4e:66:
06:04:44:0e:fb:1e:bc:58:db:41:91:14:a6:ec:d7:98:e4:93:
f1:61:ee:8f:49:f0:5c:09:59:7d:32:c9:99:78:86:1c:76:e7:
af:9e:7d:15:32:a2:b6:54:fe:16:ec:30:e4:52:14:64:b6:68:
7b:1d:a0:a4:c5:1f:6f:a5:99:9f:64:8c:11:80:ca:71:a4:da:
fb:4d:73:41:01:9a:a6:0e:38:8d:8a:e2:0b:ca:c8:6b:db:6b:
bb:8c:8e:04:92:c6:f8:0d:14:a9:f6:96:32:6f:a8:0c:b7:22:
8c:e6:fe:9a:e3:5d:e8:1a:3f:60:a5:31:4b:86:c9:b1:55:8b:
8b:e4:22:90:bf:28:4c:af:2d:13:95:29:c1:0e:78:1d:93:7c:
0c:bd:2f:38:04:1b:e3:2d:9b:8c:e8:a1:74:d7:69:de:18:36:
ed:12:d5:83:df:1a:8e:7e:7a:8f:54:b3:e9:bf:1c:7d:89:4c:
c7:48:ac:3e:7e:11:4c:15:2f:8e:fe:a5:fb:11:11:55:de:e5:
54:60:d7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:50 2026 by rpki-client