Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: +0+MXE5cdTHQjS+cIKja65aunKzjwxiNKyPRmbz4R6U=
Subject key identifier: D3:C0:1B:A6:D3:54:30:A4:CA:99:DE:CE:E8:A6:FC:FD:19:C5:E4:94
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 019CAD59C27C1865E06C28233FD96A4B3471
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 17D7
Signing time: Mon 02 Mar 2026 07:01:06 +0000
Manifest this update: Mon 02 Mar 2026 07:01:06 +0000
Manifest next update: Tue 03 Mar 2026 07:01:06 +0000
Files and hashes: 1: GEvyRWGXbdbHUTAehbJp3YhlTgY.roa (hash: b/xFEmDMbOi0xEK2SMYux/TUJuKIqsMzgBODuaUhYag=)
2: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: Xg7tRjT8bnfljFCC+cd9dHZqo5SQzMABpR/dVhbI0t0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:c2:7c:18:65:e0:6c:28:23:3f:d9:6a:4b:34:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Mar 2 07:01:06 2026 GMT
Not After : Mar 3 07:01:06 2026 GMT
Subject: CN=d3c01ba6d35430a4ca99decee8a6fcfd19c5e494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3e:cc:8a:41:67:6a:be:9b:d6:04:02:f8:37:
50:e4:63:08:ed:38:e9:78:a9:a5:d6:f3:d3:9e:1e:
02:22:cb:27:91:b7:0a:9d:59:6b:60:7d:a7:35:24:
91:61:5d:f3:2e:43:cf:ff:51:61:25:d9:9f:72:0a:
67:fa:84:5b:49:1a:1a:78:e2:44:22:86:d4:a6:77:
f1:a1:48:3d:cc:9b:3d:5c:9f:5f:96:42:38:fb:7d:
f0:fb:15:7d:1d:12:55:ce:1b:62:a2:0d:75:ee:c5:
b6:37:d7:41:eb:f1:d9:13:c4:78:23:28:86:26:a2:
e0:c0:09:82:5e:87:9b:69:f4:7e:eb:86:c5:b2:66:
07:2c:29:d8:c6:55:f7:69:cb:ab:ae:03:fe:01:1a:
c2:5a:70:53:fb:85:a3:93:ac:28:82:42:5b:2b:a1:
bb:2e:ad:d9:82:4e:82:83:63:bd:c6:26:92:7a:60:
db:4c:35:6b:46:39:03:f9:bd:67:8a:30:b1:be:77:
9a:9a:c5:3f:55:50:35:e9:46:fd:68:2b:8c:23:0e:
3c:96:0c:5f:57:f5:29:d0:7c:1a:8d:f7:b8:2a:d3:
b0:45:f6:ea:33:a0:bf:65:31:c5:3f:82:6e:0b:ec:
5e:02:0e:38:f4:d9:30:27:35:0b:02:97:98:60:2d:
52:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C0:1B:A6:D3:54:30:A4:CA:99:DE:CE:E8:A6:FC:FD:19:C5:E4:94
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:52:14:16:c6:a0:83:7f:5d:2e:3c:77:3b:4c:6c:b9:58:48:
48:95:e5:6d:61:7d:89:62:33:9e:8c:6e:53:11:41:36:64:68:
93:bd:7e:91:19:b3:61:92:ad:b9:63:e0:1d:46:d1:d1:7d:87:
6e:cb:53:bc:f3:13:61:c2:a9:d9:20:92:26:21:5e:a4:5b:92:
9a:b9:7f:87:38:bf:e4:05:a3:85:38:66:79:07:8f:b8:00:8e:
aa:25:26:42:9c:75:02:a7:fa:29:a2:0d:71:47:32:76:9b:70:
ae:f4:d1:e6:86:d3:64:d1:47:19:08:07:dc:60:7b:53:bf:f9:
e8:f4:8c:cb:83:be:07:ce:57:c0:f6:45:e5:36:f7:9b:a7:d7:
a6:a6:3c:4d:a5:97:5e:2a:8a:52:24:29:67:11:9c:24:54:ff:
1b:fc:4d:b4:d8:7f:ec:9f:d4:e5:7b:9d:f0:71:62:8d:0a:70:
01:d6:d8:08:e6:54:bd:b4:b5:ac:9a:f8:65:6d:30:26:2c:b9:
88:98:2f:50:69:8f:a5:1e:68:72:e1:82:66:77:c1:15:3d:44:
92:99:3f:e5:3d:6a:3d:73:97:bf:ab:38:a7:46:7c:7f:c4:67:
90:2a:0d:91:bd:89:6a:24:1f:58:af:d2:46:b1:04:8c:d3:ca:
16:2a:5b:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:25:22 2026 by rpki-client