Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
File: QucVYSpqaXFPXj8uTLxI_OhKb1I.mft (raw, json)
Hash identifier: DtgP3IbAmBNl6lvHxcyRBUEagr2m7Xe5yI18H+PWGYQ=
Subject key identifier: F4:70:AC:AB:DD:EA:FB:57:65:EB:EE:1A:61:F9:A3:9D:1C:CE:97:5C
Authority key identifier: 42:E7:15:61:2A:6A:69:71:4F:5E:3F:2E:4C:BC:48:FC:E8:4A:6F:52
Certificate issuer: /CN=42e715612a6a69714f5e3f2e4cbc48fce84a6f52
Certificate serial: 019D2583DFF752FB967136491BF55F11418A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
Manifest number: 1882
Signing time: Wed 25 Mar 2026 15:01:32 +0000
Manifest this update: Wed 25 Mar 2026 15:01:32 +0000
Manifest next update: Thu 26 Mar 2026 15:01:32 +0000
Files and hashes: 1: QucVYSpqaXFPXj8uTLxI_OhKb1I.crl (hash: GBuNuqP0h7ZtR1JT7FYE+Y1GpeAhK9orgfkhlMoQyiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:df:f7:52:fb:96:71:36:49:1b:f5:5f:11:41:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42e715612a6a69714f5e3f2e4cbc48fce84a6f52
Validity
Not Before: Mar 25 15:01:32 2026 GMT
Not After : Mar 26 15:01:32 2026 GMT
Subject: CN=f470acabddeafb5765ebee1a61f9a39d1cce975c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e0:a6:6a:68:62:46:7a:77:cb:7d:10:6c:a7:
a3:9c:2f:4c:40:46:4d:b7:94:e3:4c:70:e9:e5:76:
9d:a3:88:bd:27:9b:81:60:d6:ea:c4:80:62:85:2f:
0a:c6:02:f1:9b:48:0b:ea:42:fa:ae:81:a0:95:c8:
7f:f3:44:7d:2d:a7:69:d7:99:98:88:a3:4b:3c:a2:
9e:5c:91:2a:12:09:50:1e:d9:17:bb:31:9f:10:de:
3c:c6:1a:25:8e:9e:e0:06:3e:fe:03:39:4d:c2:4b:
34:cb:6a:2d:19:73:b8:b0:15:1f:c1:db:1f:54:8d:
56:63:fb:1a:28:08:9c:7e:3d:8f:db:66:d9:b5:b5:
5e:38:f9:72:cd:af:38:61:4a:d8:20:57:33:cc:c8:
ad:c4:b4:6f:ac:17:63:2f:40:2c:c6:17:2d:b8:4e:
26:7d:63:21:e7:60:bf:e6:1c:d7:5d:49:02:4d:17:
b8:e7:49:83:4e:c1:8f:6c:33:d5:62:18:db:eb:0b:
be:07:77:fe:fc:c2:f6:b1:58:5e:5c:f5:9b:39:01:
9e:3e:8a:16:ab:fa:9c:7a:b5:5f:35:bc:83:ab:b9:
6c:f0:e5:6b:bc:b5:7e:f5:bd:cd:c3:0a:e5:75:4d:
48:0a:64:e1:26:70:5d:b4:9a:04:27:32:5c:7a:40:
1b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:70:AC:AB:DD:EA:FB:57:65:EB:EE:1A:61:F9:A3:9D:1C:CE:97:5C
X509v3 Authority Key Identifier:
keyid:42:E7:15:61:2A:6A:69:71:4F:5E:3F:2E:4C:BC:48:FC:E8:4A:6F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QucVYSpqaXFPXj8uTLxI_OhKb1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/6fb9c3-6c9c-439e-8cca-d99a2198a68d/1/QucVYSpqaXFPXj8uTLxI_OhKb1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:71:5d:84:90:8a:2e:7a:eb:91:f7:e5:bf:f2:dd:e2:34:51:
f2:26:23:b2:24:50:26:fb:ca:35:78:94:83:4a:3b:72:f8:ff:
ec:72:b9:7f:83:f3:99:8f:a3:66:8a:74:9a:dc:80:25:a6:20:
a7:39:f3:6d:16:47:2c:18:37:49:28:b5:65:c7:fe:7e:b1:53:
7d:0d:84:20:93:d3:95:e7:4f:91:f0:9d:05:aa:f4:f6:5c:72:
17:24:13:e8:e7:8d:86:c1:8d:b3:62:23:01:ef:02:f8:ae:56:
f9:a8:21:75:d9:01:f1:ff:c4:ab:ed:59:21:61:18:90:f5:b1:
cc:c0:80:c0:3c:6f:a7:b6:ef:1b:38:f7:bc:32:d0:ed:75:b1:
29:02:52:90:97:7f:08:c0:46:43:e1:af:ec:ba:1d:14:72:a1:
97:ca:a2:e5:c4:1b:ae:ed:a7:1e:61:d3:48:a9:10:48:7e:11:
5e:23:80:c3:61:32:e2:27:aa:87:c2:80:97:03:c5:19:41:80:
00:45:d6:d9:7e:8b:67:e3:91:4b:93:81:d8:f6:dd:46:bc:8d:
ac:04:e7:ee:c7:9e:db:d5:ed:b1:9b:4a:5b:be:0a:46:60:da:
7d:5a:41:29:74:a7:90:8c:79:e2:27:c5:36:8a:91:56:b5:78:
8b:62:24:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:38 2026 by rpki-client