Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
File: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft (raw, json)
Hash identifier: uvinFllZF1XX2Ve8rvZo8aoV3e2vgrrUWCyaFK60xEo=
Subject key identifier: 33:A3:F7:F2:41:1A:8D:A0:F5:B6:CF:78:D3:35:C7:B1:79:8D:7A:DB
Authority key identifier: 42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16
Certificate issuer: /CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716
Certificate serial: 019CAC7E1F6FD001073AAD9D5DCC16582644
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 03:01:12 +0000
Manifest this update: Mon 02 Mar 2026 03:01:12 +0000
Manifest next update: Tue 03 Mar 2026 03:01:12 +0000
Files and hashes: 1: NMKwSUUrM8k8eQKWjQoXhVr67Q0.roa (hash: CYXCafl1+25dso4rJFuju+aK/xutXRo5p4nK7eGdbTw=)
2: Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl (hash: WtYwJZCetp9huQPbdPVMKJpaKPctpJnTolGbQNdMCuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:1f:6f:d0:01:07:3a:ad:9d:5d:cc:16:58:26:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424fd1a3a0258dcca67fc9dddbf4e36157e6a716
Validity
Not Before: Mar 2 03:01:12 2026 GMT
Not After : Mar 3 03:01:12 2026 GMT
Subject: CN=33a3f7f2411a8da0f5b6cf78d335c7b1798d7adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:96:ea:bc:b5:50:2c:94:23:e4:19:35:55:83:
82:f9:0e:5c:4c:4f:37:d8:93:8c:6b:6f:b5:a7:12:
c8:96:7a:7e:b9:a4:cd:c4:89:8b:c7:b7:d7:0b:c7:
ba:3a:61:9e:25:cf:c9:6f:d1:a2:a2:c0:98:2d:d7:
2e:e3:60:8a:61:be:db:72:98:64:59:c3:29:28:82:
cf:27:82:cc:40:c9:ee:4d:77:51:46:5d:cb:ad:1f:
ad:00:b6:c3:64:58:91:dd:63:e3:b6:37:f6:ad:3e:
d5:b5:b4:4f:e0:2d:da:c4:58:1a:36:1d:ad:8a:20:
c2:82:18:0f:0a:f3:8e:52:29:df:cb:ac:8f:73:79:
99:e7:fd:6a:b9:83:09:c5:cb:29:9a:24:3a:fe:ab:
56:a2:67:fc:f2:d4:9f:91:54:74:69:03:f5:a7:b3:
42:46:e1:96:7e:12:44:f6:59:69:4b:aa:1b:88:8a:
8c:93:2d:ac:43:b3:20:52:ca:fe:f6:9e:a3:fc:40:
d2:b2:9f:d7:bf:08:01:40:29:03:99:95:0f:66:cd:
66:3c:9d:af:e6:7a:c6:ac:69:f4:ec:43:3e:08:3e:
4c:cb:4d:b1:50:9d:80:c5:fa:72:fe:42:aa:2d:5b:
8e:75:c4:43:45:fa:49:af:03:e9:34:09:1f:f0:00:
b0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A3:F7:F2:41:1A:8D:A0:F5:B6:CF:78:D3:35:C7:B1:79:8D:7A:DB
X509v3 Authority Key Identifier:
keyid:42:4F:D1:A3:A0:25:8D:CC:A6:7F:C9:DD:DB:F4:E3:61:57:E6:A7:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/913752-b8dc-4dff-8667-747b0e57ab5e/1/Qk_Ro6Aljcymf8nd2_TjYVfmpxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:6c:42:97:84:0a:d7:f5:c7:12:ba:46:f2:8a:f1:ac:a9:6a:
e2:d7:5b:6a:25:ad:65:b6:95:da:31:c5:fc:18:7e:9b:f2:fc:
c9:db:07:35:c4:b6:18:01:e4:db:e6:75:45:38:6c:6a:22:2f:
cc:a1:f7:ba:4a:54:40:d9:60:8d:52:6e:10:cd:9d:c3:b4:8f:
15:41:07:fa:87:bd:8b:c5:ea:cb:eb:4c:9f:91:87:6f:b6:d5:
77:31:cc:9d:35:5f:76:d3:a1:bf:96:31:53:f3:26:e8:7f:cc:
f6:56:ab:8d:c5:fa:cb:69:ef:e0:7e:7a:e8:5e:78:cb:39:a2:
be:bc:83:63:a2:79:33:db:63:f1:70:06:e3:63:98:e2:23:5f:
4f:44:d7:1e:2f:69:5e:24:60:0d:37:3b:cf:5e:9d:79:36:03:
d0:df:ec:76:d1:26:91:a8:3f:49:c8:b2:6d:a0:05:17:94:2a:
45:7f:d7:76:ea:e1:f4:a4:f8:c1:5c:86:b8:a0:40:af:a0:46:
8c:e9:fa:9d:11:74:61:da:3c:98:a8:00:1c:19:2f:29:3f:35:
ba:6d:e5:ef:8c:ed:57:86:72:1a:41:ee:57:71:29:ac:4e:04:
eb:30:f6:f6:db:d4:ec:a0:e1:29:d0:bd:ef:1b:9b:1e:ec:81:
ac:6e:32:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:17:04 2026 by rpki-client