Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
File: QgOHyUE02aCP_TJjCWdwOtxYK2w.mft (raw, json)
Hash identifier: XImnRgWt3ihNJRISivO62xXuqlpLmvsnNSNqzKc3eRc=
Subject key identifier: E7:29:5F:45:DB:75:D8:49:0F:80:E9:90:47:A7:CD:42:24:50:C8:9D
Authority key identifier: 42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
Certificate issuer: /CN=420387c94134d9a08ffd32630967703adc582b6c
Certificate serial: 019CABD9DA320C10529B648285D86E83ACF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
Manifest number: 0F68
Signing time: Mon 02 Mar 2026 00:01:46 +0000
Manifest this update: Mon 02 Mar 2026 00:01:46 +0000
Manifest next update: Tue 03 Mar 2026 00:01:46 +0000
Files and hashes: 1: QgOHyUE02aCP_TJjCWdwOtxYK2w.crl (hash: LVQ6QbpXzzBjghsNqZWTAzZlf6WiJI7dqLH2pDtZpXA=)
2: oLlYP-c7d1IiKVSrcUMhwmbY61s.roa (hash: AU8NC+uYOmw2IhzeeedIVabaHATngMqK3THaOWJcgZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:da:32:0c:10:52:9b:64:82:85:d8:6e:83:ac:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=420387c94134d9a08ffd32630967703adc582b6c
Validity
Not Before: Mar 2 00:01:46 2026 GMT
Not After : Mar 3 00:01:46 2026 GMT
Subject: CN=e7295f45db75d8490f80e99047a7cd422450c89d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:11:dd:a2:2e:d8:76:14:20:43:1c:6f:51:73:
b5:d8:88:f7:33:74:16:57:5d:61:62:c7:82:29:f2:
ab:b2:14:aa:df:8f:de:27:b9:48:5b:4b:f1:f3:02:
6f:1b:2f:bf:51:63:8a:c6:c8:6d:b9:1e:6d:69:a4:
57:00:8c:42:73:5d:ee:56:3d:64:35:32:68:b2:23:
f9:d9:af:cd:f2:5d:3c:05:87:60:d3:0d:a8:dc:bb:
cc:c8:e6:ae:c9:3a:d5:05:49:8a:f8:e4:31:18:75:
3b:da:6f:4a:39:16:d8:f5:8d:c8:0b:cb:9e:28:87:
43:60:dd:72:6f:bd:5f:4f:3c:44:05:17:75:f4:fe:
f2:48:ac:9d:7a:ee:12:2c:3d:ae:4b:2e:67:09:cd:
70:2c:d0:bd:53:38:be:3a:d2:c1:e2:a2:3a:9d:56:
4f:af:83:59:1b:3e:31:20:9d:ca:2b:f0:a2:cd:cc:
df:61:dc:44:94:8a:c3:6a:88:86:3d:9f:4e:43:40:
68:39:65:ef:34:59:f7:61:3f:db:f0:fa:e2:84:91:
72:36:c8:e3:98:fd:52:02:d0:dd:86:87:17:b2:5b:
3b:a3:d8:eb:b2:57:de:f0:38:c4:8b:c3:c9:e4:f0:
b8:3a:83:47:e8:9e:11:5e:e2:f9:d3:93:c3:f8:6b:
39:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:29:5F:45:DB:75:D8:49:0F:80:E9:90:47:A7:CD:42:24:50:C8:9D
X509v3 Authority Key Identifier:
keyid:42:03:87:C9:41:34:D9:A0:8F:FD:32:63:09:67:70:3A:DC:58:2B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QgOHyUE02aCP_TJjCWdwOtxYK2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a38a87-0159-490e-b69c-376f4b4d9da6/1/QgOHyUE02aCP_TJjCWdwOtxYK2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:c6:27:64:59:53:79:ed:25:fa:ee:6d:ac:2d:a7:50:a3:f2:
4c:31:2e:68:7d:ca:55:d1:6f:d4:cb:2c:18:06:4a:32:b1:ef:
b6:ed:54:5f:5e:d3:ff:80:a9:9e:6b:ab:4d:87:80:45:6a:b8:
3b:a7:c2:29:22:b0:14:a4:75:ee:1c:0f:16:c5:74:88:35:6f:
5f:b1:65:0a:c0:5e:a7:38:e4:ff:d8:55:9c:12:e8:58:24:64:
aa:b3:71:c2:14:90:3c:37:d5:86:08:05:c5:3c:8c:9d:66:23:
03:a8:ea:be:f8:e7:b9:5f:4f:20:1f:b3:29:7e:d8:77:e9:89:
1f:a0:c5:04:9a:ad:e6:79:1b:9e:5a:64:6e:ae:50:52:99:f3:
db:2f:91:d9:81:b3:1f:ad:74:85:b2:20:fb:28:23:93:16:97:
8d:0c:1d:ec:cd:54:11:3c:d2:b4:7b:50:64:c2:fd:bb:48:31:
d3:69:27:82:40:5c:fe:b6:58:9f:ac:5d:1c:89:48:ee:d5:bd:
f8:27:7a:96:a7:e7:4e:99:f6:28:e9:43:f7:f9:06:88:c5:60:
ed:f8:11:75:16:c6:84:ca:13:83:3d:12:31:89:03:a2:ba:85:
1b:3d:58:26:d3:de:04:35:e6:ec:f0:7e:31:88:66:91:d9:7e:
6b:8d:ff:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:22:19 2026 by rpki-client