Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
File: QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft (raw, json)
Hash identifier: hq+oXnk4YJrdk9/a5OM9u33MMjAF9MDzDU81FshjtT8=
Subject key identifier: 0A:BF:C9:1F:5A:7C:29:38:4A:CB:FD:6F:D1:99:39:C4:01:80:C5:50
Authority key identifier: 42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
Certificate issuer: /CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Certificate serial: 019CABA1B5B7872B43AB2B32F5A15CD91BEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 23:00:27 +0000
Manifest this update: Sun 01 Mar 2026 23:00:27 +0000
Manifest next update: Mon 02 Mar 2026 23:00:27 +0000
Files and hashes: 1: QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl (hash: i6moiR2uA9AONR0re64Q3y0risHhjGMzezXIuxbWWSs=)
2: vvBOQ04V9GOEp_xWifhOTx36DlE.roa (hash: kyJgbX8RGqWByplGJZ1fz/UdnF/eQPqYIRllvHcTi70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:b5:b7:87:2b:43:ab:2b:32:f5:a1:5c:d9:1b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421b4cd40bae47d48f51c9cccc607cce57ce00f7
Validity
Not Before: Mar 1 23:00:27 2026 GMT
Not After : Mar 2 23:00:27 2026 GMT
Subject: CN=0abfc91f5a7c29384acbfd6fd19939c40180c550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ac:d8:1f:fd:00:7e:1f:e7:36:80:c8:43:23:
be:a3:9f:bb:0f:05:97:2a:01:6c:cd:0d:c1:33:70:
30:ac:a6:7b:dc:c4:b7:82:04:c4:bf:8d:ad:8a:fe:
28:62:2d:fd:b1:10:32:76:4f:7f:b3:f4:ce:19:ad:
92:7d:fd:35:b2:44:27:16:c9:9d:ae:c5:de:18:c0:
e6:a7:0a:69:90:ce:c4:14:1f:9d:35:a7:c2:7b:a9:
cd:25:0b:7e:06:53:a3:35:54:e9:df:ef:c3:68:9d:
25:ca:91:b4:97:f4:02:a2:63:d5:a0:96:2e:8a:71:
f5:fe:e5:e1:55:68:21:c0:5f:ed:a6:c0:97:11:45:
53:df:35:0f:15:61:40:42:c8:98:bd:f7:da:2a:98:
0c:e3:75:31:dd:2f:45:e8:da:a9:50:55:42:31:18:
15:c7:b8:db:e4:e1:97:3e:01:5c:f6:66:6a:7a:03:
8a:ad:57:60:c6:00:75:51:0e:b5:79:93:a4:6f:b6:
89:04:f8:1d:56:13:a0:7a:76:fb:97:3f:20:37:11:
7d:bd:30:c8:36:0e:ba:91:7c:9b:bd:43:9f:be:c7:
cc:91:3a:3c:5e:20:eb:b0:0c:32:7f:04:24:79:32:
f2:b7:c3:73:05:b7:2c:74:84:59:81:21:64:9f:14:
26:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BF:C9:1F:5A:7C:29:38:4A:CB:FD:6F:D1:99:39:C4:01:80:C5:50
X509v3 Authority Key Identifier:
keyid:42:1B:4C:D4:0B:AE:47:D4:8F:51:C9:CC:CC:60:7C:CE:57:CE:00:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhtM1AuuR9SPUcnMzGB8zlfOAPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8513cd-aac7-466d-a031-84ccf3420286/1/QhtM1AuuR9SPUcnMzGB8zlfOAPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:6a:bd:67:f4:93:d7:c2:2d:db:d1:2f:ba:80:17:dd:aa:aa:
ee:2e:ab:54:b6:d4:71:15:e5:ea:0d:09:98:42:0e:20:90:f0:
b0:c4:68:5f:a7:49:e4:b4:cd:bb:d2:a5:9c:7f:3f:d5:93:f6:
86:33:19:25:de:50:1d:83:dc:13:5f:20:0e:aa:c5:4f:58:3a:
b2:39:e4:2a:08:93:bd:4b:d3:b8:45:26:eb:bc:e6:fc:df:71:
7b:5e:d0:90:85:19:b2:25:84:2e:fd:25:0f:46:d6:d8:c1:e5:
1a:84:39:c0:c3:82:12:48:3c:24:a7:7c:db:f4:db:6f:55:ed:
5c:f6:98:60:9a:9a:34:eb:5a:80:e9:63:86:24:1b:88:b4:12:
fc:65:17:af:a0:61:eb:50:e2:0e:2a:7b:72:93:59:00:19:ab:
64:24:96:cc:78:fa:95:d5:60:3b:78:0c:58:92:85:bd:7c:e7:
f8:8f:51:b0:3d:80:5d:fa:7a:ab:46:c8:44:66:8a:50:03:70:
df:a2:eb:ca:b5:f3:28:e5:2e:10:34:10:08:41:00:23:7b:08:
14:bd:f6:cb:95:dc:51:77:44:7c:02:f9:67:88:a4:f0:80:57:
4b:90:4c:f7:f1:98:a9:68:3b:bc:ba:c1:41:9a:ce:bd:03:59:
83:9d:4e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:21:14 2026 by rpki-client