Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
File: qsqNwMC5IbCJ8WAmGORVN5enR0I.mft (raw, json)
Hash identifier: UHvSHJRb/4zR1ICj86+f5ui3ElKGJ6cGEkR3eds9Fd8=
Subject key identifier: A7:84:7E:DA:7E:4C:27:78:9A:81:69:FF:B1:C2:EE:64:6E:97:BC:91
Authority key identifier: AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
Certificate issuer: /CN=aaca8dc0c0b921b089f1602618e4553797a74742
Certificate serial: 019CAD59384963C49923326AC0FFD0C7CC07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
Manifest number: 03EA
Signing time: Mon 02 Mar 2026 07:00:31 +0000
Manifest this update: Mon 02 Mar 2026 07:00:31 +0000
Manifest next update: Tue 03 Mar 2026 07:00:31 +0000
Files and hashes: 1: G8uE_YXvAUsbhoJ7QQgS2ptGK4I.roa (hash: BCzWL8FjjNpuELNVuLODI9jH/96WSdwiWl+ywyyb3Cc=)
2: qsqNwMC5IbCJ8WAmGORVN5enR0I.crl (hash: S6BInJTKVLyMxjAtb6svj8h4YJ+CtnX7sTag7UVwxU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:38:49:63:c4:99:23:32:6a:c0:ff:d0:c7:cc:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaca8dc0c0b921b089f1602618e4553797a74742
Validity
Not Before: Mar 2 07:00:31 2026 GMT
Not After : Mar 3 07:00:31 2026 GMT
Subject: CN=a7847eda7e4c27789a8169ffb1c2ee646e97bc91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f5:3b:2d:27:3b:84:0a:00:21:e8:c4:9e:e7:
72:cc:df:80:a6:2f:5b:43:54:06:07:78:c9:34:06:
9f:ab:c6:e4:11:b2:ea:cc:ae:e8:09:18:18:9e:d9:
b7:08:90:2d:78:a9:e2:d9:ce:a3:c4:c3:67:dc:5d:
b4:73:8d:1a:5c:fa:85:2b:ce:29:e4:b3:7a:8d:35:
85:40:b1:d8:81:79:58:b5:cb:48:70:e0:db:bd:be:
58:30:c3:7e:2d:e9:ae:bf:36:c3:c6:68:a7:e3:d2:
25:a8:54:65:69:4d:e4:b2:b9:92:0c:3a:0a:e0:c9:
a6:c8:01:92:ac:c4:7c:1d:cc:7d:07:63:7c:69:50:
77:da:25:3a:ac:df:79:2f:15:a1:e6:c6:a0:2b:09:
eb:6f:97:8d:6c:60:30:c9:21:7e:7c:68:db:d0:37:
4d:f4:9d:4e:d0:0b:a0:25:84:ce:d9:f1:d3:78:0f:
12:9e:24:34:90:d7:31:ba:1b:53:0c:9c:ef:65:3f:
cc:a0:d0:94:b6:9d:6d:a8:8c:4e:a5:87:dd:ee:ee:
31:f2:93:a6:af:31:ae:48:25:78:38:be:d0:64:3c:
a1:07:95:2b:30:90:98:65:f4:71:71:ce:6f:98:ce:
6d:e1:74:aa:f4:c5:87:5a:d5:92:2e:72:86:28:23:
28:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:84:7E:DA:7E:4C:27:78:9A:81:69:FF:B1:C2:EE:64:6E:97:BC:91
X509v3 Authority Key Identifier:
keyid:AA:CA:8D:C0:C0:B9:21:B0:89:F1:60:26:18:E4:55:37:97:A7:47:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qsqNwMC5IbCJ8WAmGORVN5enR0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/eb31db-e654-491e-a141-91d50738d1e8/1/qsqNwMC5IbCJ8WAmGORVN5enR0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:46:93:9e:1c:be:2b:d9:2e:1a:4e:50:86:0f:d2:dd:21:58:
9d:4c:8e:20:63:f6:d7:f8:41:74:1e:ac:4e:d7:43:21:94:8b:
dd:51:79:90:f3:2a:04:7b:81:40:66:9a:c6:4d:a1:3f:9e:71:
ca:e3:27:43:e0:3e:e4:65:47:09:c7:83:7e:65:ae:c1:f6:69:
41:3a:fc:01:f8:02:b2:b7:e4:78:d2:89:6c:87:ec:19:1f:e1:
d3:65:ea:6a:37:87:84:76:15:93:da:bc:f9:50:20:a1:7c:2f:
21:6b:a3:33:ec:0d:42:5a:3d:d0:9a:e1:98:9c:0e:25:27:d6:
9d:e8:25:d5:f0:c3:54:1e:2a:a2:10:e3:a8:bc:02:a4:98:70:
5d:ee:c5:60:2a:b9:a1:05:15:14:f4:1a:1e:4c:f5:ee:3f:c6:
22:f1:3c:21:b5:18:00:c2:ea:d4:8a:31:a7:81:f2:b3:3f:06:
ab:7e:f9:cb:fc:d5:da:3d:9c:a8:cb:77:ee:5e:51:b4:7d:fd:
bb:f9:e6:05:90:8f:88:7b:08:6d:cd:91:68:3d:29:b7:f6:06:
30:32:ef:81:95:43:05:4e:8f:f1:dc:36:13:be:4a:55:47:74:
52:6f:c6:1b:78:0f:05:0e:5e:a8:4d:a6:fa:33:e8:de:3e:7a:
64:15:c8:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:25:25 2026 by rpki-client