Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: Fq5W0Ox8oPdxrcIW+irHupPoWBxG/x43sqhUzILd6Uo=
Subject key identifier: 6E:1F:A0:2A:D3:DE:2C:32:17:CB:4F:AC:48:84:02:47:97:9C:94:EA
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 019CA90EA81AC18C709AE71EAD6F60C2E0EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1850
Signing time: Sun 01 Mar 2026 11:00:35 +0000
Manifest this update: Sun 01 Mar 2026 11:00:35 +0000
Manifest next update: Mon 02 Mar 2026 11:00:35 +0000
Files and hashes: 1: 5u7ZZD9lOFoFzJauPRF9LoR4JqU.roa (hash: 6383aOZyG4GruUyJbTAEn/2+zHT/N7r0tO3vmVgZ0+Q=)
2: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: TzeK6rfWjoD+QDgda4yOW3HkZM5avdTjfOpYARgOHNg=)
3: QxEip3wlOXriAz7nnAs_AC0I9NA.asa (hash: iXtb4Nzk+e2nFY3GJNhD9F09a2bTSvaIp01d/mdO65Y=)
4: nSYkP6ZYsP2PGbTEn1voEjCMK7M.roa (hash: MNQbu//jCX54OfF7YJFip/dm1osxFxhLcTi2nI/vQws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:0e:a8:1a:c1:8c:70:9a:e7:1e:ad:6f:60:c2:e0:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Mar 1 11:00:35 2026 GMT
Not After : Mar 2 11:00:35 2026 GMT
Subject: CN=6e1fa02ad3de2c3217cb4fac48840247979c94ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:10:16:34:f2:45:de:ba:fb:e4:a2:b3:0b:91:
ae:c7:49:ec:f1:a7:85:e9:a3:93:11:96:b4:15:72:
82:b4:cb:c1:a5:96:4f:b2:f5:52:50:38:f7:6c:d9:
a0:51:75:e7:fa:02:f3:12:ae:ba:7e:4e:3b:b0:a8:
b6:f7:05:03:a2:51:5c:22:43:a4:78:4c:26:18:bf:
7a:25:39:02:d5:17:d1:13:8d:b4:2b:5f:08:5d:8c:
a5:e4:a2:20:57:d0:56:2a:1f:9b:ae:3f:fe:49:15:
86:7f:73:fa:25:f2:a0:99:51:de:3b:e1:24:0c:95:
db:07:b9:11:ce:df:d9:30:9f:c8:a9:f6:02:dc:b9:
b8:4b:8a:9a:da:19:f6:2e:82:a2:75:31:07:ae:3c:
d3:b9:b6:f5:8f:34:5d:18:d3:3b:60:25:de:05:c5:
31:46:bc:fd:16:54:c3:9d:a7:b7:8b:d5:3f:c7:96:
a2:80:28:c8:99:64:d3:90:b1:23:3b:08:77:92:b1:
b2:ef:74:ab:3d:86:85:42:c3:78:41:cf:be:15:ef:
9c:47:aa:96:84:93:96:46:ff:ad:80:0c:ed:88:2b:
6c:76:1b:e6:42:ac:17:11:84:4d:ab:e7:8e:c1:31:
7f:0e:bb:c3:f8:00:f0:fd:80:10:84:75:54:6a:06:
74:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:1F:A0:2A:D3:DE:2C:32:17:CB:4F:AC:48:84:02:47:97:9C:94:EA
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7e:d1:02:24:60:5b:15:84:a8:85:30:91:72:bc:3d:36:6d:
21:07:3a:ee:21:93:69:64:2f:05:24:f1:ee:05:73:49:1f:fc:
dd:b1:07:0d:2e:f5:75:f3:76:79:1a:17:17:b1:c8:6e:53:d9:
20:e1:45:41:09:8c:0a:e1:a8:e9:bc:e2:47:1b:64:d5:79:c3:
9a:07:86:f4:34:10:57:71:ae:25:c0:a8:ce:a3:a1:be:b7:cd:
81:24:d0:5d:e0:ec:de:4f:b3:de:2e:be:8d:e2:4b:5f:f4:94:
9a:d8:eb:db:70:35:2a:fb:77:0d:3b:e7:c3:26:7b:2f:ef:0e:
1a:d9:88:47:dc:04:e8:22:ed:0b:8a:f3:9c:83:82:fd:d4:b1:
3d:3f:75:94:1d:5f:f5:55:f0:aa:da:a5:5c:a3:4e:ae:d9:6d:
22:11:ae:dd:29:60:fa:be:94:3c:ce:5c:cf:f1:2b:70:55:6b:
c7:2d:62:0c:61:c6:5e:b1:23:fb:a4:9e:59:3d:55:dd:4e:9d:
89:b5:55:42:55:9c:6b:9b:c9:ba:d0:47:f6:37:aa:bf:0e:d3:
0e:50:dd:9f:38:16:9e:37:a1:e3:dd:81:60:e4:b8:7d:7c:55:
6c:55:8b:69:09:1b:e4:f4:b1:07:69:3d:a9:ef:df:7c:07:e4:
83:5a:a0:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:23:35 2026 by rpki-client