Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
File: QsMDcZht9dVk7mcHRxe2agL_VxI.mft (raw, json)
Hash identifier: MHYYJclcaGu8GZehIo/JSe5HVijFNIUQKGggNCdrjJw=
Subject key identifier: B9:2C:E9:2F:E1:60:84:3F:C5:DF:0B:64:16:F7:C8:8F:5E:47:3C:77
Authority key identifier: 42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
Certificate issuer: /CN=42c30371986df5d564ee67074717b66a02ff5712
Certificate serial: 019CACB48E4B0D613C71BCA5963C1D3EC340
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
Manifest number: 1738
Signing time: Mon 02 Mar 2026 04:00:39 +0000
Manifest this update: Mon 02 Mar 2026 04:00:39 +0000
Manifest next update: Tue 03 Mar 2026 04:00:39 +0000
Files and hashes: 1: QsMDcZht9dVk7mcHRxe2agL_VxI.crl (hash: xaKKmt7Y2YRA5E3gsVr7fN3PXh06u6O1A2uNIcWxMxQ=)
2: kIdKfcVB8xoU-jL0GS61sHZEdFc.roa (hash: 0PfvIN3m+RMyfBShY3gPVZh53Z/48yCnaRs0eMSULZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:8e:4b:0d:61:3c:71:bc:a5:96:3c:1d:3e:c3:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c30371986df5d564ee67074717b66a02ff5712
Validity
Not Before: Mar 2 04:00:39 2026 GMT
Not After : Mar 3 04:00:39 2026 GMT
Subject: CN=b92ce92fe160843fc5df0b6416f7c88f5e473c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:48:ea:49:ce:79:01:fc:40:f1:81:85:6a:3f:
f8:d4:ca:2e:74:bf:41:7a:39:40:b5:75:e0:5f:71:
45:bd:87:c5:3b:0e:c1:62:02:aa:a2:55:f6:9d:04:
17:3e:c8:25:4b:c1:65:31:d1:98:83:68:e8:9d:d6:
f1:13:e2:2e:a2:91:41:c9:5b:8e:c5:f2:29:2b:98:
0c:50:e6:d6:b2:48:30:d8:5a:ce:cc:a0:9d:97:88:
14:d4:b9:22:a8:8c:76:63:5f:e0:94:95:98:4b:c1:
fe:02:df:8d:18:5d:39:4d:15:60:aa:69:3c:b6:0a:
d9:d2:51:78:5c:d9:25:3d:6a:0f:36:2a:90:dd:eb:
7c:71:2e:0a:0f:d4:b4:ae:3c:54:fc:62:59:6a:3c:
4c:62:07:2d:e8:59:21:ca:9c:94:a7:c6:d4:5e:bc:
e1:8e:1e:ab:27:b8:d3:b3:50:43:17:40:7f:bf:56:
11:91:a3:af:af:89:dc:e1:46:4c:38:7e:9d:4c:ce:
ca:05:d6:15:ab:cb:f1:e0:15:85:26:45:99:67:1a:
a6:ad:75:17:cb:45:0e:ad:ee:e1:27:00:89:4a:58:
fb:32:4b:f4:df:a9:ca:41:de:ba:d9:59:2a:33:48:
be:0d:59:a0:b9:4d:62:9f:98:91:c5:68:b7:45:0c:
70:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2C:E9:2F:E1:60:84:3F:C5:DF:0B:64:16:F7:C8:8F:5E:47:3C:77
X509v3 Authority Key Identifier:
keyid:42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:b2:6e:0f:7f:7b:78:18:75:c1:07:a0:01:a2:4d:80:f8:44:
d9:ed:ea:7f:d9:32:03:76:89:e1:91:6c:e7:91:14:4f:be:4b:
1c:85:b8:cb:6f:7f:20:77:01:33:ee:55:7c:e9:8f:6f:aa:4c:
50:b0:07:d3:be:0f:01:cf:c7:1b:d0:cc:1e:40:c5:52:e9:60:
10:2e:e3:1f:ff:b0:20:f0:47:3c:61:85:82:12:35:dd:82:76:
94:92:59:cf:fd:23:33:12:61:14:a6:b7:83:b1:d5:71:95:13:
35:b0:f9:c5:36:92:41:77:7e:cc:f3:92:7a:05:28:13:e5:a2:
f4:e5:81:f8:42:4b:a1:69:25:80:75:b0:99:59:7a:0f:19:6f:
4c:07:47:0f:77:34:76:ee:7d:87:87:1c:99:b3:f2:c2:d5:e0:
87:eb:7d:1a:13:16:aa:6d:1a:46:a8:6d:ba:20:b0:01:ea:6c:
08:dd:8b:f4:00:7f:46:db:ce:9d:b1:25:6c:be:30:f0:48:14:
2c:b5:c2:b1:66:29:f6:f4:c1:93:e9:9e:16:78:18:79:e3:e9:
8e:05:5e:7a:f2:26:3b:8f:5d:e3:3f:c8:b5:db:9d:e4:c2:aa:
15:f5:bf:bd:03:98:0b:b3:10:7b:57:fe:b4:c2:2d:7f:e7:40:
69:34:8c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:03:00 2026 by rpki-client