Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
File: QEPj9wJFibliregc9EVjBvTTXmg.mft (raw, json)
Hash identifier: g3zduVcXb1mnJkUO/sM+pHxgRZiyMDUyXuAdPtWDfEU=
Subject key identifier: B2:20:BC:73:36:D8:BD:1A:36:26:22:18:BF:FB:BD:63:08:D7:22:7D
Authority key identifier: 40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
Certificate issuer: /CN=4043e3f7024589b962ade81cf4456306f4d35e68
Certificate serial: 019CA8D7E787C5E5385719FD1751C186D312
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
Manifest number: 152C
Signing time: Sun 01 Mar 2026 10:00:47 +0000
Manifest this update: Sun 01 Mar 2026 10:00:47 +0000
Manifest next update: Mon 02 Mar 2026 10:00:47 +0000
Files and hashes: 1: QEPj9wJFibliregc9EVjBvTTXmg.crl (hash: yoJ5yGv7MhsbohjYaxvNo/WVhNLorCDyrUFe1eTQaTo=)
2: w011lYt62c3hWszahC6AWv6giHI.roa (hash: xoQYARNhUnVWQjLbtBlHZU61msSzpQAeDZVvNEmV+D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:d7:e7:87:c5:e5:38:57:19:fd:17:51:c1:86:d3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4043e3f7024589b962ade81cf4456306f4d35e68
Validity
Not Before: Mar 1 10:00:47 2026 GMT
Not After : Mar 2 10:00:47 2026 GMT
Subject: CN=b220bc7336d8bd1a36262218bffbbd6308d7227d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b6:c4:a2:d5:54:4a:b4:e6:42:5f:f5:0c:0d:
c9:a1:de:e7:bd:35:e7:cf:a5:27:0c:88:74:15:ef:
7e:6f:9c:56:9e:fa:06:2a:c8:b5:07:c6:60:19:bf:
68:fa:d6:67:bd:71:d1:cd:c9:58:e4:d1:42:27:ab:
41:56:d1:d4:0f:73:57:82:42:43:5e:7f:f7:cb:80:
b1:5d:bd:b2:89:21:63:07:81:78:bb:a3:39:eb:cd:
bd:3f:37:8f:19:3a:39:d5:75:11:de:bf:03:df:23:
cf:dd:6a:d4:91:62:9d:99:83:36:f9:16:fd:68:4b:
22:54:95:c0:56:bc:1a:a6:d5:0a:e1:6b:05:d1:42:
e9:38:d2:de:3c:15:f2:39:cc:4a:9a:d4:8b:f3:15:
9c:26:f7:7f:9a:ac:c7:6e:84:67:40:46:0d:33:f0:
78:f6:4c:3e:0b:e9:a7:da:76:89:76:d7:99:ff:45:
df:56:39:59:1d:28:92:56:c2:8b:e0:ad:a1:5a:bc:
a2:5d:6b:f6:9f:14:40:54:28:e8:82:3e:3b:99:e5:
ee:bd:63:35:21:39:d5:b0:1a:56:be:be:ba:1e:76:
a8:b5:2d:53:2a:95:8d:41:6a:52:a6:98:40:10:24:
97:7b:fe:7e:dc:c3:2b:1b:6d:95:9b:22:d2:aa:22:
53:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:20:BC:73:36:D8:BD:1A:36:26:22:18:BF:FB:BD:63:08:D7:22:7D
X509v3 Authority Key Identifier:
keyid:40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:bb:df:f6:74:01:36:48:77:03:11:10:fa:90:be:0f:f3:e2:
17:95:e3:14:d9:63:b6:58:dd:b4:4c:9d:4c:25:65:50:d3:8b:
3c:9e:bb:51:7c:a9:0f:14:60:53:28:04:d1:59:7a:ef:58:53:
ad:9c:92:12:28:f4:34:83:ae:97:19:06:13:35:90:69:e3:08:
28:51:f4:74:ff:ce:9a:08:91:b2:88:91:c6:a4:89:d6:e9:ca:
e9:5b:f1:c4:fe:d0:4b:61:9a:bd:73:ee:d9:bc:11:1f:23:f3:
16:da:ef:d5:85:53:da:38:86:16:87:a2:8e:07:90:a2:80:61:
c9:56:88:ec:eb:c7:6b:63:68:72:b1:a6:84:28:9f:cf:3a:16:
4c:1e:e8:60:f1:c0:23:0e:20:58:68:97:bf:76:45:5b:d2:18:
d5:3f:52:93:5f:c6:28:cc:ea:93:88:78:31:df:ff:7b:5d:31:
fb:01:1e:a9:7e:24:8b:65:28:16:71:c5:c9:65:28:ea:6d:dd:
99:c5:db:92:68:11:d1:1f:1c:4d:d0:a3:70:01:31:bb:b5:f7:
25:97:1a:2e:0a:ba:60:67:16:f8:3b:d6:bc:7d:e7:eb:71:f8:
03:52:53:28:1a:4a:9d:b7:f4:0c:be:03:31:6f:fc:20:cd:3c:
79:92:eb:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:17:34 2026 by rpki-client