Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
File: QIVi4riWGyLinHYtbJkDMbo2Zm8.mft (raw, json)
Hash identifier: Zqc7QjAzC6hpKtTD5KjG089pKmai7gPzXPu67svB/cE=
Subject key identifier: 6A:91:2C:22:C3:57:1E:C1:02:21:43:C5:04:D1:54:AE:E2:65:23:26
Authority key identifier: 40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
Certificate issuer: /CN=408562e2b8961b22e29c762d6c990331ba36666f
Certificate serial: 019CAAFD954EEE54DEA9400485FFB23D7181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
Manifest number: 14FF
Signing time: Sun 01 Mar 2026 20:01:11 +0000
Manifest this update: Sun 01 Mar 2026 20:01:11 +0000
Manifest next update: Mon 02 Mar 2026 20:01:11 +0000
Files and hashes: 1: QIVi4riWGyLinHYtbJkDMbo2Zm8.crl (hash: u+8vu0cU+YwRBDHyz/B0X6tYQ8cjZI1ICjMq8m+hC8c=)
2: fJkHv2XKmgf3wdAAPhmkHMSymi8.roa (hash: moVcLbH6Jw6NJ/DI/9GEobHmBwmywaAnRhkWYEC9LnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:95:4e:ee:54:de:a9:40:04:85:ff:b2:3d:71:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408562e2b8961b22e29c762d6c990331ba36666f
Validity
Not Before: Mar 1 20:01:11 2026 GMT
Not After : Mar 2 20:01:11 2026 GMT
Subject: CN=6a912c22c3571ec1022143c504d154aee2652326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:50:55:28:e5:61:88:cc:b5:61:6c:6b:c0:ae:
ea:cf:9e:ab:08:91:a6:4f:03:03:66:ad:de:69:e9:
9d:1f:94:c5:d5:3d:3f:c4:64:e7:3b:ea:0c:2d:83:
09:1a:8d:1c:fe:f9:3e:2d:04:0d:09:61:83:48:b6:
ea:a5:28:63:ac:98:71:73:ad:76:86:68:86:0b:39:
81:91:9b:e5:94:9c:8f:9d:4b:55:a4:1d:e0:1f:c7:
7b:7e:5d:4d:73:21:7b:55:a1:e1:ba:e0:b6:4a:86:
aa:7d:2b:6c:f1:17:d0:7e:f4:43:be:f2:3b:20:6c:
ee:b4:a9:94:3a:21:f5:e3:24:23:ad:6f:5e:f8:de:
91:d6:c3:9b:d2:a7:cd:81:25:e9:cf:d5:3b:59:48:
5b:a7:6c:16:58:14:5b:1c:9e:4d:90:da:bc:07:ce:
b2:18:88:e5:71:20:11:c4:0e:20:ad:2e:1e:2c:8d:
df:76:c1:9d:08:19:11:ff:21:62:86:65:10:2d:4f:
ce:38:70:04:45:fe:47:c2:f3:a1:50:5b:96:32:6c:
6e:38:89:2e:c5:a5:b2:39:7f:f4:58:83:ae:83:d0:
03:0c:fb:56:d4:e0:46:6f:d5:c7:d3:6b:2b:37:a6:
70:45:2f:49:29:75:4f:c9:ad:0e:db:40:2d:44:53:
5e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:91:2C:22:C3:57:1E:C1:02:21:43:C5:04:D1:54:AE:E2:65:23:26
X509v3 Authority Key Identifier:
keyid:40:85:62:E2:B8:96:1B:22:E2:9C:76:2D:6C:99:03:31:BA:36:66:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIVi4riWGyLinHYtbJkDMbo2Zm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/52a6de-7232-49b1-91c7-cfdfcd4ee0f2/1/QIVi4riWGyLinHYtbJkDMbo2Zm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:89:92:04:26:74:76:7e:43:ff:b5:b5:0b:3f:f6:cb:a1:f0:
11:47:67:c4:db:16:cf:40:32:60:cb:f2:de:f0:fa:7b:34:9e:
c0:3b:94:24:b3:94:96:c6:b8:7b:b0:1e:d5:ff:3d:21:79:5f:
e7:6a:0a:6f:80:e3:6d:e0:ce:ab:3b:5e:b3:20:62:2b:ad:c2:
e0:42:ca:89:af:d5:d4:d3:d1:fc:25:14:9d:7c:b9:96:e9:bd:
04:d1:82:e7:cb:4d:9c:34:41:5c:10:96:af:5e:ba:43:20:57:
e0:be:b2:cd:70:e0:89:5b:a4:ec:6c:7d:9b:08:a9:94:03:75:
ec:09:cd:28:cb:1c:ee:f8:7d:b4:11:11:db:98:e4:8a:11:a0:
b9:15:dc:ec:36:b2:c8:7a:4d:e2:dd:86:fd:61:60:2f:9b:60:
37:9a:6a:57:f8:9c:33:2f:89:f0:5f:d2:00:99:dd:ce:e7:8f:
34:c1:bf:cc:7e:03:86:cd:49:78:a6:17:d0:de:18:30:68:92:
79:d7:bf:2f:6f:32:cb:00:f1:ed:d5:44:ed:7e:57:1b:fd:be:
e3:e8:16:82:49:71:01:77:34:6f:fc:4a:b3:8e:a4:1e:10:90:
ca:42:f6:20:a7:8e:16:3a:c5:0a:34:67:9a:74:2c:bb:50:be:
da:87:85:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:28:45 2026 by rpki-client