Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
File: QA8uoVe7tTqwJgEazlzRNg7y930.mft (raw, json)
Hash identifier: T/mmyg3BmZhvdu1H0t/kazIf5VIAoXDUDo2XlEbmM00=
Subject key identifier: C3:DA:C6:7F:67:9A:A8:B3:16:47:9B:AF:FC:25:2A:BB:B1:A2:6A:41
Authority key identifier: 40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D
Certificate issuer: /CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d
Certificate serial: 019D28F235EE2564F425B53850507846040F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
Manifest number: 17DC
Signing time: Thu 26 Mar 2026 07:00:55 +0000
Manifest this update: Thu 26 Mar 2026 07:00:55 +0000
Manifest next update: Fri 27 Mar 2026 07:00:55 +0000
Files and hashes: 1: 4oXgZ-1Ye2fC1cFU0rvhklNnNQI.roa (hash: b9MP0rdkmPkjLsxKnX60/w1PVwahqRg3qlsqfmJHgCk=)
2: QA8uoVe7tTqwJgEazlzRNg7y930.crl (hash: ywDRuoL4dVRayjEdsB5blrViAtM9oc6VwOjfwPbYAjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:35:ee:25:64:f4:25:b5:38:50:50:78:46:04:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400f2ea157bbb53ab026011ace5cd1360ef2f77d
Validity
Not Before: Mar 26 07:00:55 2026 GMT
Not After : Mar 27 07:00:55 2026 GMT
Subject: CN=c3dac67f679aa8b316479baffc252abbb1a26a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:01:e4:b2:15:43:0c:16:d1:68:03:a7:9a:eb:
ae:e5:7b:07:7e:9d:95:b1:14:7f:37:62:c7:1c:ca:
43:02:a6:4f:91:7b:ee:86:82:1d:18:c5:3d:ea:a4:
5c:78:e5:9d:d4:a7:09:01:81:85:46:5f:74:90:8d:
4f:d5:37:e4:5f:5b:bd:c8:02:7c:00:e8:64:c5:ad:
01:67:18:18:56:f3:11:bd:d0:76:83:0b:bf:ca:6f:
65:6a:dd:a3:d1:5e:4d:70:d3:66:1d:f9:b5:1b:72:
6b:67:89:c5:b1:d8:f4:6f:78:75:98:65:9d:c6:da:
03:1c:df:47:44:49:e3:14:a9:8b:62:6b:bb:01:24:
84:cd:45:15:7d:71:d4:4a:76:84:8c:d1:ca:9a:74:
ce:c9:40:15:ef:34:86:ba:dd:13:21:21:4e:94:bd:
dc:e8:84:fd:22:f3:02:83:16:f2:0d:12:1c:a4:c6:
24:f7:71:8f:3e:d6:cb:78:60:1c:16:77:92:d3:6f:
6b:36:fa:cd:e7:f7:f6:ee:ce:2e:84:ac:dc:11:b8:
6b:b0:63:18:f1:4d:3c:a2:91:dd:3a:6e:ff:55:03:
0e:2e:20:28:40:90:82:02:08:ee:57:d1:6a:59:7e:
c2:fc:fe:50:a0:ec:52:87:20:bf:65:81:52:c8:9a:
d2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DA:C6:7F:67:9A:A8:B3:16:47:9B:AF:FC:25:2A:BB:B1:A2:6A:41
X509v3 Authority Key Identifier:
keyid:40:0F:2E:A1:57:BB:B5:3A:B0:26:01:1A:CE:5C:D1:36:0E:F2:F7:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA8uoVe7tTqwJgEazlzRNg7y930.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4bfd56-880d-499b-8724-d7971f1e599d/1/QA8uoVe7tTqwJgEazlzRNg7y930.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:e2:b3:84:ce:1b:ac:33:49:8f:05:53:74:d7:a6:90:63:c2:
fb:51:b7:47:57:b7:58:ef:a6:dd:b4:53:29:9f:06:2c:ad:3e:
ea:40:41:e5:11:ff:11:cd:32:19:db:d8:4e:43:d2:7e:8b:aa:
cd:9f:06:99:4c:e6:41:90:87:30:2c:13:dc:5b:c3:37:ab:02:
49:79:ca:f0:82:d4:89:c4:15:fb:2c:84:d5:5f:d8:82:cc:5d:
ba:1f:a0:3b:d6:c2:78:d6:4c:98:7c:c9:6b:9c:5e:81:ab:a7:
55:a6:72:8f:bc:59:d7:fa:48:4a:4c:40:b7:61:fe:7b:e0:f1:
69:76:34:5f:ac:a4:a0:82:84:e0:fd:8a:48:8b:72:b7:aa:75:
9a:f0:9a:90:ca:55:5d:9e:7a:1e:60:56:2a:24:f2:33:5d:c4:
ad:fd:1d:aa:45:cf:33:97:42:bd:8c:5b:f1:71:f4:47:5e:dd:
7d:b2:aa:bc:71:4e:75:5a:ea:bc:1d:8a:68:fc:b7:50:18:3c:
f7:34:a0:9e:5b:de:2e:d4:28:3a:83:c7:b7:4b:73:f7:ec:b1:
83:bd:6e:3c:3f:55:60:c6:ff:15:ac:cd:77:b5:f9:b9:9b:7a:
6b:5a:a1:6f:6f:78:2d:3d:ae:52:2e:48:0b:2f:74:86:24:61:
88:26:21:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:10:07 2026 by rpki-client