Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
File: QgOHyUE02aCP_TJjCWdwOtxYK2w.mft (raw, json)
Hash identifier: XYBYVQbAgCg7/5c9MSFQf3oE36MoNAS9LGFoHwbbj4Q=
Subject key identifier: 76:AA:09:C0:62:36:29:05:B9:E7:84:43:02:FB:FB:F9:8A:71:98:0C
Authority key identifier: 42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
Certificate issuer: /CN=420387c94134d9a08ffd32630967703adc582b6c
Certificate serial: 019D9962E6A89C6A96C94CF32CC46AE50985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
Manifest number: 0FE3
Signing time: Fri 17 Apr 2026 03:01:28 +0000
Manifest this update: Fri 17 Apr 2026 03:01:28 +0000
Manifest next update: Sat 18 Apr 2026 03:01:28 +0000
Files and hashes: 1: QgOHyUE02aCP_TJjCWdwOtxYK2w.crl (hash: ye3vdqSID7hQzwISLrQ32NWoNrUnOWCsC/QZy6s7GBg=)
2: oLlYP-c7d1IiKVSrcUMhwmbY61s.roa (hash: AU8NC+uYOmw2IhzeeedIVabaHATngMqK3THaOWJcgZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:e6:a8:9c:6a:96:c9:4c:f3:2c:c4:6a:e5:09:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=420387c94134d9a08ffd32630967703adc582b6c
Validity
Not Before: Apr 17 03:01:28 2026 GMT
Not After : Apr 18 03:01:28 2026 GMT
Subject: CN=76aa09c062362905b9e7844302fbfbf98a71980c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:95:ad:f0:44:9d:ee:f8:3f:ca:46:25:b0:03:
cc:c3:2b:1e:a1:be:15:19:cd:e2:1c:1b:60:68:5a:
da:b6:1f:88:ec:90:6f:d8:c8:cc:b7:44:52:18:f5:
db:33:b7:9e:87:86:3e:66:13:30:53:03:67:45:f6:
72:a0:2b:6d:83:79:84:30:c8:8e:7f:15:87:92:db:
91:d1:ce:90:75:0c:c1:3f:fb:e2:12:5c:06:4b:8a:
fe:fe:83:56:8d:b1:1e:41:42:c1:fa:c0:ee:61:8c:
89:7c:6a:87:e0:c8:f7:0e:e6:40:7f:bc:28:cb:bd:
b5:92:5f:fe:13:35:f8:6a:fb:b3:dc:1f:f2:85:ed:
6a:50:6a:71:87:6d:40:20:7a:88:4b:60:fe:f8:36:
f5:8e:51:66:b5:15:62:2c:3b:71:9e:53:a4:ed:f3:
01:94:4f:2b:ae:2b:5e:53:09:cd:1b:a5:c7:41:36:
a2:92:9a:78:b8:7a:8a:7a:d8:54:37:31:04:22:62:
1c:b9:d4:a2:b6:20:12:dd:ba:78:e8:2a:9e:44:26:
9c:1f:5d:be:6a:60:d1:57:2d:68:a1:69:48:34:9c:
73:eb:b1:e0:44:3f:ba:41:6a:5d:74:af:38:1e:53:
48:bb:8f:47:15:c8:36:01:95:11:9a:06:2b:ac:e7:
f1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AA:09:C0:62:36:29:05:B9:E7:84:43:02:FB:FB:F9:8A:71:98:0C
X509v3 Authority Key Identifier:
keyid:42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:c1:75:ab:eb:fc:46:a1:9f:3e:a6:2b:3d:17:17:29:13:9e:
e6:17:0b:51:f8:3c:90:d4:a4:b6:51:4a:d5:f5:35:c1:3e:9f:
ca:9f:51:58:29:72:9b:bf:9f:6a:77:ad:b9:ba:8f:22:7c:e3:
0c:78:69:db:61:a2:15:fb:92:ce:73:18:1d:d9:7b:ed:7d:65:
a9:9a:c6:f6:d9:0a:c3:a7:19:6c:f1:ff:b3:d0:66:e5:9d:24:
63:c4:40:84:45:99:2f:53:b9:83:ea:5a:4e:a5:97:c8:3d:07:
91:05:91:2f:6c:54:1c:91:35:56:6e:f6:ed:6c:61:3b:bf:4a:
51:d8:1c:36:b9:16:b5:d8:de:7e:c0:03:de:59:6f:8d:58:da:
41:38:08:04:38:71:54:da:f9:b4:e8:6c:73:54:b1:1f:8e:5c:
85:9f:85:f2:9f:2a:92:cf:49:cb:fb:88:d3:22:c1:ef:c9:e3:
34:0d:68:7f:6d:d2:54:d3:8a:69:9d:d4:7a:d8:7f:af:da:b7:
08:2e:32:3d:95:1f:46:80:1d:09:50:21:cc:c2:18:b5:51:71:
56:d0:2e:c8:53:95:17:18:8e:31:2a:33:bc:f9:12:56:1f:4a:
ca:f7:25:73:33:73:17:f4:ed:6c:63:08:55:7b:44:b7:7f:7f:
35:78:b7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:14:52 2026 by rpki-client