Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
File: Qkq4x890A7ViChuBPmrR2g2stE0.mft (raw, json)
Hash identifier: Y8/PlT4HGUGxLjcAjx3gxIogQ7cC2ZO7At6ti5fKPjI=
Subject key identifier: 55:D5:D1:5D:E2:6E:F8:E2:7B:E3:88:AA:69:19:49:2D:CB:A9:3B:E7
Authority key identifier: 42:4A:B8:C7:CF:74:03:B5:62:0A:1B:81:3E:6A:D1:DA:0D:AC:B4:4D
Certificate issuer: /CN=424ab8c7cf7403b5620a1b813e6ad1da0dacb44d
Certificate serial: 019CAA8F75D32AC2EBCDE63E875A6BFF0A84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 18:00:54 +0000
Manifest this update: Sun 01 Mar 2026 18:00:54 +0000
Manifest next update: Mon 02 Mar 2026 18:00:54 +0000
Files and hashes: 1: Qkq4x890A7ViChuBPmrR2g2stE0.crl (hash: nY00hxiWJ1ZcLPJ6ewnFp+du4OFbaSCOFvcWTxJzDyM=)
2: dzTzYf-TKYJMVkOvvaBfstjTJ9w.roa (hash: ZIgS2/isxUOPCfVNIh153dBZ1pmUGjEqXD0BSekDaHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:75:d3:2a:c2:eb:cd:e6:3e:87:5a:6b:ff:0a:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424ab8c7cf7403b5620a1b813e6ad1da0dacb44d
Validity
Not Before: Mar 1 18:00:54 2026 GMT
Not After : Mar 2 18:00:54 2026 GMT
Subject: CN=55d5d15de26ef8e27be388aa6919492dcba93be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ea:92:db:8f:ce:05:be:9d:4c:3c:aa:39:95:
8a:51:fa:98:16:84:7b:62:94:64:1d:da:60:4b:4e:
9d:f2:ba:78:e1:3a:8f:f5:bf:cb:86:3a:bb:01:85:
53:25:46:14:9e:25:d3:44:4d:c9:df:92:4c:fe:10:
6e:89:dd:e5:57:aa:99:b3:58:34:49:e8:cf:1f:7b:
20:06:f3:a3:6f:24:e7:a0:1c:25:95:28:30:f6:59:
df:40:55:55:db:5e:96:63:69:e2:c9:04:7f:ad:4d:
1a:2b:52:51:fa:0d:da:78:e9:a5:46:f3:22:0c:a9:
68:f0:c6:5a:77:67:91:0c:c8:e3:fe:4a:08:c4:a8:
01:c3:ce:c3:48:c1:2b:28:34:f5:c9:ae:b1:54:0c:
bc:68:09:19:b1:40:7b:45:32:ca:d1:db:83:4c:eb:
8d:00:82:0d:0e:d1:54:be:33:84:4d:a1:fc:2a:34:
63:a2:9d:ca:d1:30:bb:57:66:a0:38:54:0f:1f:53:
67:c3:9e:43:df:dd:ba:09:e4:e2:f9:76:f9:c8:20:
26:89:b5:f1:51:c5:c0:3d:04:d0:23:0d:0f:4d:a9:
3b:e2:ea:4a:cd:d7:45:81:81:72:d4:39:c9:f2:87:
74:66:b7:31:e0:f6:fd:24:1e:d2:c3:eb:0c:8d:9d:
7b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D5:D1:5D:E2:6E:F8:E2:7B:E3:88:AA:69:19:49:2D:CB:A9:3B:E7
X509v3 Authority Key Identifier:
keyid:42:4A:B8:C7:CF:74:03:B5:62:0A:1B:81:3E:6A:D1:DA:0D:AC:B4:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qkq4x890A7ViChuBPmrR2g2stE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3b3215-5721-4345-841b-2ad9308f1f6c/1/Qkq4x890A7ViChuBPmrR2g2stE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:73:66:94:12:29:b6:93:3a:45:85:aa:25:54:33:34:ca:f7:
d1:ea:ab:c1:ed:10:99:2b:55:24:0e:d2:18:a2:ef:3d:ef:be:
7b:18:80:0a:e0:86:5b:f7:69:30:0f:a9:78:b0:c3:6f:80:e7:
b2:23:ba:d7:b6:4b:97:2e:c7:45:94:44:4e:73:e2:d9:27:8e:
d8:43:f6:a4:93:f5:d5:e9:69:38:b2:17:3d:71:8d:b6:c0:76:
27:64:32:ae:a7:5c:76:55:da:1c:52:98:37:1d:7b:a0:1f:f0:
ac:64:e0:9a:45:99:e1:79:91:a2:94:53:73:44:36:a1:f7:09:
b3:5c:03:df:20:c4:6c:a9:05:d0:61:fe:b4:30:4c:cb:bf:6f:
34:16:e6:99:d8:21:10:a0:61:f3:9c:69:6a:ca:cd:d8:56:50:
12:ef:9c:56:fc:8b:e2:bf:51:cf:4a:12:22:5d:4d:93:e7:01:
38:24:49:e9:02:bc:ae:88:5c:42:1b:83:79:e9:2a:c7:a7:c7:
ab:1b:46:14:48:b3:a2:50:a0:e6:98:7a:2b:94:13:53:fb:5b:
a2:99:89:4b:88:5a:33:64:0b:4f:b0:c8:29:00:11:35:f0:75:
e5:09:13:2d:9b:a1:03:99:68:38:70:2f:7c:fe:12:06:7a:cc:
ae:25:20:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:40:13 2026 by rpki-client