Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
File: QdD5FclU2DtKG_GEz7wTjEftpR4.mft (raw, json)
Hash identifier: 54LFWlP7JrsL6H4efxZopfb9iCxgVShqyiTC38UhKRI=
Subject key identifier: 99:0A:B0:00:38:A0:3E:47:43:FF:A6:54:48:2F:CC:18:19:4D:F3:88
Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Certificate serial: 019CA9B3BE3D2D594E0D3CFDB40F0F9EB2C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
Manifest number: 14D8
Signing time: Sun 01 Mar 2026 14:00:54 +0000
Manifest this update: Sun 01 Mar 2026 14:00:54 +0000
Manifest next update: Mon 02 Mar 2026 14:00:54 +0000
Files and hashes: 1: QdD5FclU2DtKG_GEz7wTjEftpR4.crl (hash: nyV2iCsg9PNmBiS27CAcVZBk45U7Kc27Xe9OXOig5ws=)
2: fpHmAafjOGhBaMS1gbhoimd-T64.roa (hash: tNORG3Af35zgXnyNJfcnl9XFHgufLnvK+eM/0nmyONM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:be:3d:2d:59:4e:0d:3c:fd:b4:0f:0f:9e:b2:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Validity
Not Before: Mar 1 14:00:54 2026 GMT
Not After : Mar 2 14:00:54 2026 GMT
Subject: CN=990ab00038a03e4743ffa654482fcc18194df388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:83:82:9b:39:15:65:37:93:3b:3a:89:50:1e:
f2:e9:ea:ed:25:24:88:8d:68:3b:5e:c1:7d:b5:ad:
50:06:d9:f0:08:8d:cb:1b:e2:62:3c:92:57:a9:3b:
2e:c7:1e:46:e5:16:58:d7:11:2d:19:f3:8c:2d:d8:
df:17:90:9e:74:ab:6d:4c:e5:58:a6:eb:76:e2:3a:
48:6f:39:89:99:88:09:c8:6a:02:ec:28:b8:49:b1:
72:09:29:08:6b:ca:c1:27:fd:ce:be:2f:90:d3:37:
21:22:ac:b2:32:93:1e:11:32:a5:ba:88:ac:7e:0a:
2d:67:33:6f:cb:91:3a:85:cb:fb:35:26:11:4b:06:
e7:8e:bb:15:d3:1f:63:e8:d3:a7:f7:16:f6:e1:34:
9e:ef:aa:7c:76:77:ad:f3:8b:b0:10:66:4b:8a:f6:
a1:3d:fa:6e:17:8e:1a:86:6d:6a:a3:f6:45:d1:04:
bb:81:ec:d2:0e:ce:f3:dc:39:e1:4a:32:91:d8:d0:
a5:a7:67:62:a6:ea:8b:c8:29:75:11:21:a9:8b:e6:
cb:cb:29:9e:0a:26:79:02:00:22:fe:e7:58:aa:26:
14:a0:02:cd:99:05:04:1a:b3:97:51:f8:99:ca:29:
4c:1b:40:cc:e4:c5:ed:c3:1e:39:81:ee:3e:cd:14:
46:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0A:B0:00:38:A0:3E:47:43:FF:A6:54:48:2F:CC:18:19:4D:F3:88
X509v3 Authority Key Identifier:
keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:a8:ba:a7:d3:7e:8a:48:54:6f:a1:8c:b0:6e:f1:a1:c9:71:
0c:dc:7f:bf:d3:55:5f:70:05:52:07:4f:04:34:ba:49:45:5c:
8d:ca:95:89:68:e7:f9:03:30:54:1e:db:5d:d6:89:e7:2d:86:
3d:34:32:30:e1:d8:04:a5:e0:66:c9:48:e5:69:2f:93:a1:98:
4e:30:77:eb:3b:40:8a:34:82:a1:24:9c:2b:59:f0:b7:4a:c1:
4e:a6:56:6a:3b:5e:f0:41:c9:ed:54:da:d2:a8:35:7f:c0:30:
8c:94:e1:ca:74:4d:c9:60:b6:a4:03:d4:3a:3a:25:00:58:44:
07:d0:0f:72:4d:8b:61:d6:f0:a0:4a:de:2f:a0:78:7e:e5:09:
cd:15:f2:b3:4c:ff:ae:35:64:34:af:f7:4b:e6:dc:50:69:dc:
f4:da:82:f3:51:4a:e3:4f:9c:a8:db:a0:72:56:e2:2a:15:17:
a5:51:f5:99:b0:8a:4d:8b:af:fe:e5:dc:93:0b:07:c9:62:6d:
38:c2:38:51:51:84:5f:aa:5b:8b:8a:be:b2:bf:6d:46:69:db:
86:97:be:3b:2f:6d:e3:6b:9f:99:6c:15:63:dd:36:2a:a0:bb:
b7:d8:7a:4b:e6:a0:12:b5:5a:79:fc:a3:d7:4b:f2:30:c3:5a:
46:d0:be:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:46:36 2026 by rpki-client