Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft
File: Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft (raw, json)
Hash identifier: dMGFVK69Kz4INJ6emRdfXM87oQPEZ2QKxoGbzdbcvbk=
Subject key identifier: 28:C9:CC:C7:23:DD:C6:44:1D:4C:FA:E2:29:9B:89:DF:95:29:79:F2
Authority key identifier: 43:B8:B1:3F:7E:2E:49:7E:D1:C7:B0:A3:41:7B:DD:F1:9B:CC:61:1A
Certificate issuer: /CN=43b8b13f7e2e497ed1c7b0a3417bddf19bcc611a
Certificate serial: 019CB1DB2F756CEB9EAC7BF2EC41B4FA8665
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft
Manifest number: D1
Signing time: Tue 03 Mar 2026 04:00:57 +0000
Manifest this update: Tue 03 Mar 2026 04:00:57 +0000
Manifest next update: Wed 04 Mar 2026 04:00:57 +0000
Files and hashes: 1: Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.crl (hash: VwQQy5xjS7D+TjnHH341ygF4K2N9CSNSD1tBSE3k7lA=)
2: dSgf7Rj9MRB36B06KCH4XtB0J-E.roa (hash: 50BV1O3krfrNrPmzDGVH6bT0c5/ZuT9nFLY2UgtP04I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b1:db:2f:75:6c:eb:9e:ac:7b:f2:ec:41:b4:fa:86:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b8b13f7e2e497ed1c7b0a3417bddf19bcc611a
Validity
Not Before: Mar 3 04:00:57 2026 GMT
Not After : Mar 4 04:00:57 2026 GMT
Subject: CN=28c9ccc723ddc6441d4cfae2299b89df952979f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ee:5a:bb:7c:71:a2:00:73:c7:fa:44:b6:67:
48:0f:fc:fb:24:ce:aa:3c:2f:5d:98:80:75:e7:af:
cb:3c:39:89:09:8e:dc:94:68:07:6c:38:0a:64:9e:
92:ea:13:6d:f2:17:9c:a1:17:fe:89:2c:f5:b0:c1:
a7:e8:e4:85:65:29:d7:ae:7e:b4:62:29:1f:91:85:
32:e1:e1:1c:bd:ed:8a:46:25:03:3c:da:86:dc:a7:
8d:a7:56:66:25:e3:7f:56:3d:7f:b4:56:81:9b:a7:
06:58:4e:5f:58:61:75:e9:2e:e3:2a:ec:a6:d7:15:
2f:94:69:59:07:09:85:a1:a5:98:56:5f:7d:83:d5:
5d:f3:06:77:29:c4:b6:22:23:cd:71:ba:c0:cf:70:
cb:fb:57:14:97:5d:a1:a9:34:63:27:d9:73:8e:2c:
b3:7e:bb:dc:d4:5a:af:c0:38:3a:1a:56:4c:4c:fb:
e3:d8:12:c5:12:26:7a:77:84:1a:60:43:1a:7b:99:
b7:1a:b9:6c:ee:24:e4:b9:9e:36:38:d5:07:bf:0e:
55:e5:78:bc:63:b7:7a:64:98:04:c6:b7:a1:73:61:
31:ad:6b:2c:c8:6d:0d:83:30:90:ab:b7:3a:10:90:
5a:8e:a5:52:a6:9e:29:07:06:84:b4:11:48:06:16:
85:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C9:CC:C7:23:DD:C6:44:1D:4C:FA:E2:29:9B:89:DF:95:29:79:F2
X509v3 Authority Key Identifier:
keyid:43:B8:B1:3F:7E:2E:49:7E:D1:C7:B0:A3:41:7B:DD:F1:9B:CC:61:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1ac3a0-4716-4be0-8ba2-fa84f3974990/1/Q7ixP34uSX7Rx7CjQXvd8ZvMYRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:4e:4a:47:f6:d7:bb:0c:ad:62:c3:a1:ed:13:ce:17:f2:f8:
af:71:e3:8c:5c:77:b1:67:eb:88:36:c6:20:36:06:7e:f9:68:
e7:9c:86:bb:87:02:05:23:e7:d2:67:49:75:fc:4b:be:7b:a1:
b5:43:01:84:44:cb:bf:4d:5a:0d:d0:87:2c:5d:b9:ab:df:c8:
0f:33:ba:0b:a2:5d:22:fc:fa:3d:36:85:07:18:11:dd:32:db:
8f:3f:90:ef:f7:46:56:49:90:3f:97:77:d6:52:54:b9:c4:88:
0a:bd:8b:9e:b0:da:b6:55:b7:93:2a:66:02:0a:67:f0:6f:e3:
2f:f2:89:6e:9b:b2:d8:07:6a:4c:28:65:da:39:28:96:fb:3c:
a1:65:0e:b3:74:b9:8b:5b:f2:01:2f:c5:8d:03:12:5d:1d:22:
aa:c3:27:83:2c:91:9a:54:63:c9:12:72:47:ef:ec:0e:97:6b:
2b:ee:ed:dc:82:f1:5f:dc:eb:14:58:df:c5:88:ea:07:d0:f1:
58:46:6e:ed:b2:97:ba:28:63:89:54:c2:11:47:e7:a1:87:2e:
02:be:72:8d:9c:12:5c:e0:39:58:4b:67:74:46:97:66:fc:c7:
f1:5b:4f:0e:02:93:f3:2f:e4:8d:47:a6:49:a6:fd:e7:d9:5a:
6c:4c:6d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 08:32:52 2026 by rpki-client