Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier: h7ZJcxc3tl5PD0kr3ZHnqiQZ0xeDh9BDuwX5HsGrndA=
Subject key identifier: 05:F6:E4:30:81:BB:4C:91:92:B1:55:0E:F1:99:90:6A:3F:46:19:1B
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial: 019D2704E0BCEC1F2BC944AFE3FA5FD00953
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number: 0E72
Signing time: Wed 25 Mar 2026 22:02:04 +0000
Manifest this update: Wed 25 Mar 2026 22:02:04 +0000
Manifest next update: Thu 26 Mar 2026 22:02:04 +0000
Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: B1yT9qlqE+yf8z0CyCsqVQbVyoXb8GudTdD4Na6czGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:e0:bc:ec:1f:2b:c9:44:af:e3:fa:5f:d0:09:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Validity
Not Before: Mar 25 22:02:04 2026 GMT
Not After : Mar 26 22:02:04 2026 GMT
Subject: CN=05f6e43081bb4c9192b1550ef199906a3f46191b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:44:75:8d:aa:d7:2a:99:16:8c:5c:44:aa:78:
b4:b7:68:72:74:da:43:7a:6d:81:c7:d8:ac:a8:bf:
20:db:e3:d8:59:23:a7:41:a2:83:c3:bd:95:a7:f0:
12:dc:85:7f:e4:86:3f:ce:bf:0a:9b:cf:14:03:4d:
37:c8:e9:e6:9f:0a:d8:87:19:c5:9d:1c:3b:67:9b:
fd:eb:1f:b0:5b:92:ea:1f:b5:33:21:2d:75:99:40:
5e:6a:7d:a9:35:db:0b:cd:cd:8e:eb:85:6e:84:84:
6c:7b:13:95:77:d0:fd:91:2b:5e:af:ad:8d:84:30:
47:fe:93:40:59:8e:18:7d:0a:b5:79:e8:47:40:93:
2c:e8:a7:52:24:bc:2e:2a:88:b0:55:e6:f3:28:aa:
38:12:7c:bc:c7:78:0d:cd:6a:ff:9a:84:3e:b1:d0:
3f:cd:44:0c:ae:42:40:66:2b:75:16:86:ee:28:76:
28:b6:c5:b4:d4:90:58:1b:05:e3:36:69:62:96:94:
76:15:fd:1d:25:de:03:c0:e3:76:11:2a:f0:bd:24:
8d:cb:02:5a:2d:ec:52:08:71:ad:8e:c5:76:77:69:
92:72:cc:c7:10:8b:ad:fe:1e:b2:9c:0f:1c:3a:f8:
61:3d:38:2a:e4:da:51:55:93:21:c4:80:07:07:30:
42:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F6:E4:30:81:BB:4C:91:92:B1:55:0E:F1:99:90:6A:3F:46:19:1B
X509v3 Authority Key Identifier:
keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:d6:c7:10:c3:16:90:87:df:a8:18:a0:c1:a7:a0:05:e4:29:
06:b9:be:a2:12:d3:1e:11:ba:8b:4f:95:31:92:17:67:90:53:
87:44:4d:55:f2:c7:71:36:7d:69:06:7f:a2:74:d4:92:4a:b2:
2d:b8:ee:8c:b5:93:02:ca:07:8a:46:92:f3:86:53:95:ba:91:
1a:ab:07:d8:77:97:32:f5:41:90:fe:01:1e:df:13:9f:5b:c0:
51:c6:40:f0:3d:0a:37:d5:d6:c7:32:7c:ea:71:04:28:58:f5:
d5:b6:a4:24:43:6e:bc:d5:c3:7a:96:fd:76:ce:ae:5c:21:31:
a0:c2:fb:7e:4f:93:54:f2:d0:01:75:b9:fe:d4:7c:4f:28:5f:
08:03:fb:7b:d9:49:31:e3:5e:52:df:4e:29:b7:7c:ff:16:88:
1f:e5:5e:1a:4c:d1:58:db:c0:16:70:e6:5a:9e:a3:e1:d4:14:
fd:eb:a8:72:0b:c6:6c:6b:ab:96:86:d8:75:e4:b5:cc:2c:61:
18:ba:06:f9:51:45:18:b6:88:81:d3:03:8e:56:8e:c4:73:e3:
44:53:2f:bb:6e:32:86:cb:41:d7:8e:11:d6:5b:6c:e1:e0:05:
cf:23:43:b3:4d:b5:9d:3e:57:df:cb:3d:f6:eb:39:4a:78:5d:
7e:f6:3a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:55:33 2026 by rpki-client