Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
File: qklDGDthG-Ogd1OCUJSQBIsK1zg.mft (raw, json)
Hash identifier: RCAMLsgeX3vBUb59uJEjNJHb0erQP9LifAjtg0Had9k=
Subject key identifier: D4:6D:CF:71:2B:69:BB:00:59:76:53:54:C1:E9:60:1E:62:1E:38:93
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 019CABD8EAAEBA1FE574D95A6514AF371484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 00:00:45 +0000
Manifest this update: Mon 02 Mar 2026 00:00:45 +0000
Manifest next update: Tue 03 Mar 2026 00:00:45 +0000
Files and hashes: 1: 979-UeeMesUYtKwgSXJYqxuZCeQ.roa (hash: Gy12Ft/uLr8x9z8NPGEB7zTkTDi5D4+71v/AaSEGb9w=)
2: qklDGDthG-Ogd1OCUJSQBIsK1zg.crl (hash: Sf39QqWqXyhN4sRUq9ZYq0Oa3dHwo58AUfdIVBT6WQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:ea:ae:ba:1f:e5:74:d9:5a:65:14:af:37:14:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Mar 2 00:00:45 2026 GMT
Not After : Mar 3 00:00:45 2026 GMT
Subject: CN=d46dcf712b69bb0059765354c1e9601e621e3893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:77:f0:80:57:9b:12:f1:e9:51:c5:05:51:00:
65:7e:f0:4c:ab:da:41:5d:03:37:f6:76:d7:26:fa:
cf:2e:6e:23:a8:a3:56:69:70:d9:e9:d0:8b:54:78:
be:a5:11:25:9c:b9:48:ea:8c:17:2c:ee:7d:ff:0f:
8a:bd:ef:d6:78:eb:41:33:6a:2d:b8:35:43:08:9e:
79:9e:7c:35:fe:e1:eb:bf:d9:73:84:63:2b:e5:8a:
1b:eb:ec:d5:57:fe:37:38:9a:53:4a:11:c5:49:52:
1f:31:1f:c2:bc:ae:c7:05:78:ee:d8:1f:12:1c:c2:
bd:6e:b3:93:bd:28:16:72:c1:5b:57:14:1d:58:b8:
64:8c:83:be:0e:e2:49:cb:8e:cb:62:56:98:74:b7:
b1:ad:c9:ea:b9:99:50:d9:39:cb:ac:93:c2:d7:d6:
41:bc:4a:9b:5f:cb:39:ed:f2:1f:28:da:d5:0f:4d:
b0:1f:8e:d5:3b:64:b3:02:5c:6b:ce:68:74:64:c9:
ee:cc:3c:1c:00:43:bf:8f:09:e2:ae:e8:d5:ff:25:
c7:95:5a:1b:13:a7:69:f5:db:b9:7f:9a:37:f7:a9:
8e:13:dc:55:bf:42:ce:7d:ee:4a:98:c9:df:7c:dd:
32:58:8a:e9:22:97:5d:ec:3d:12:1c:13:20:bb:4f:
5e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6D:CF:71:2B:69:BB:00:59:76:53:54:C1:E9:60:1E:62:1E:38:93
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:03:20:c9:a9:3b:c0:1c:1d:2c:49:63:1b:a1:a0:77:ec:c6:
76:34:ed:e1:c7:0c:c2:63:15:18:e5:94:14:2b:5c:ea:e0:e2:
c1:bd:69:59:d4:11:1a:44:fd:55:f8:77:5c:76:03:fc:9f:a4:
43:1b:08:af:87:98:11:5e:eb:06:c0:6d:23:59:e8:23:b7:44:
0f:ad:17:a2:39:30:d7:c8:ff:bf:ec:71:8f:6f:89:89:da:ba:
da:a8:e4:05:c2:ce:ac:8a:f2:30:18:c0:34:d4:d9:67:ec:ec:
95:3f:db:92:73:18:84:e7:3b:c3:c2:6c:c1:b3:95:16:84:04:
6d:03:2d:93:6b:74:f9:17:98:50:a2:57:a5:a7:26:72:95:f1:
f8:6f:b6:cd:c4:42:56:7c:21:f8:8a:4f:b9:86:cf:9a:b1:1a:
86:5d:42:65:7e:14:f4:eb:84:02:4c:98:29:81:f5:97:c1:1b:
ac:28:dd:c1:0b:a9:5c:78:84:20:94:d2:f7:1a:81:32:36:10:
58:1b:77:92:2b:09:47:05:74:5a:12:f5:59:46:92:36:53:c4:
34:dd:4b:e1:19:5b:5c:73:d0:70:0b:96:a5:99:be:1d:13:e1:
86:88:4d:4b:c9:d2:8f:bd:9c:2d:2a:94:32:e7:09:7f:1f:52:
ee:13:09:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:57:01 2026 by rpki-client