Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: 4LiaeHoNdwV3iMOyZVUtdFKttkC8x/VQ29J1nsDxO9M=
Subject key identifier: 8C:3C:E6:36:42:86:BD:93:87:58:A2:6B:87:46:C6:61:50:88:14:98
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 019CAAC67231420A29F6D0574DF48BC81ECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0F67
Signing time: Sun 01 Mar 2026 19:00:57 +0000
Manifest this update: Sun 01 Mar 2026 19:00:57 +0000
Manifest next update: Mon 02 Mar 2026 19:00:57 +0000
Files and hashes: 1: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: 7crFUJx3DvjavWY3oCof1QAdSdhwgZ/ZOJyQ2u0Egm4=)
2: vk5Y2YJ09rjiWROVoHQwodUn4yU.roa (hash: vpQeQxzEnsV7qHV8y9P4IV2nzoCx88/TOJF++oD3hVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:72:31:42:0a:29:f6:d0:57:4d:f4:8b:c8:1e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Mar 1 19:00:57 2026 GMT
Not After : Mar 2 19:00:57 2026 GMT
Subject: CN=8c3ce6364286bd938758a26b8746c66150881498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:fd:f1:50:76:1e:e3:ef:13:92:0e:36:9d:ae:
30:69:02:fd:af:22:5a:df:4a:d7:b7:30:3e:9d:50:
bf:ee:09:56:51:5e:ef:11:4e:50:b3:e3:43:af:30:
69:a5:30:2a:9a:e4:28:8d:e4:6a:42:4c:36:5f:97:
c5:c2:75:63:05:ae:bb:85:be:02:18:ad:9f:03:57:
7d:92:7a:fa:94:47:a1:92:96:85:e4:51:72:e8:da:
b9:c1:68:19:cb:31:ad:d9:34:d2:49:04:16:2c:27:
66:47:ca:d0:4b:d9:35:b6:bc:3a:c4:54:5d:38:bc:
6c:44:94:82:47:1f:5e:a7:93:ad:33:7b:de:40:a8:
9e:7b:f6:83:34:68:cc:6d:d4:c8:6b:90:79:c5:8b:
37:2a:f3:65:45:4f:2f:0f:e9:ed:03:45:41:5c:39:
74:46:2f:87:ff:97:ca:03:c8:ca:59:fc:02:ce:b4:
fd:40:5a:a8:fc:9e:5f:4f:47:39:57:3e:43:4e:48:
9f:38:f4:1c:92:87:9b:e3:cc:c2:d9:f5:e9:38:11:
c5:5e:fd:7c:1c:34:92:d8:ce:5b:69:c0:a9:ae:56:
73:3b:ac:6e:23:72:9b:fa:88:99:9f:c6:8b:50:78:
39:1e:7a:7d:35:77:2e:cb:69:84:f8:36:52:e4:30:
cc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:3C:E6:36:42:86:BD:93:87:58:A2:6B:87:46:C6:61:50:88:14:98
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:28:5f:b2:d4:f3:c1:25:ac:dd:12:bb:92:d9:2a:7a:2f:00:
20:fa:dd:9d:11:6d:76:05:ef:5b:76:1c:f0:c2:ec:d3:83:58:
f7:d4:4f:5a:0f:4f:14:40:67:bd:79:2e:87:e0:a4:31:43:9e:
ee:3c:3a:59:60:bb:1b:8a:2c:d6:b2:f8:f2:41:eb:81:f5:7c:
52:5f:1e:94:8e:94:f0:1d:ca:5e:fb:09:eb:7c:4d:1c:c9:bf:
a1:45:2f:0a:df:8e:b7:a2:bb:14:6a:07:66:02:f8:05:4f:ca:
c1:50:b2:2b:a3:9c:c8:77:8a:fc:21:7f:6c:b5:d5:97:f8:19:
9a:d4:05:ec:16:bd:15:0e:bb:91:b6:ee:c3:06:82:4d:41:3a:
32:5c:52:cc:4b:77:e7:5d:6b:f5:50:68:6e:52:fb:f7:75:91:
2d:8b:8b:0f:53:0a:7a:f4:98:8c:21:e0:b3:c3:33:59:39:2b:
b0:2a:e4:fc:4a:36:78:cd:5a:98:47:a6:48:47:cc:4a:31:1d:
23:cf:4c:1c:86:5f:bb:43:08:a0:f5:7b:cb:ee:40:e8:4c:b0:
48:68:7a:a8:5a:04:46:09:e4:f2:41:0e:04:c9:95:1a:f7:7b:
6e:78:46:c2:47:7a:67:99:d6:28:da:f8:22:2d:9d:34:be:f7:
1d:39:ca:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:59:16 2026 by rpki-client