Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier: htSVum2rfpAQwJyBsNVOAUNHg4WXRM4ynrDul6pFj3Q=
Subject key identifier: E3:22:48:65:73:61:C4:E0:3D:0D:6B:D2:76:E2:90:5D:D6:99:DA:A9
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer: /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial: 019CAB6C0055CE10419A5D485700B5F5C3CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number: 0E32
Signing time: Sun 01 Mar 2026 22:01:47 +0000
Manifest this update: Sun 01 Mar 2026 22:01:47 +0000
Manifest next update: Mon 02 Mar 2026 22:01:47 +0000
Files and hashes: 1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: ki5ogKmgvmWLqQb8ElbSPtIwN+X2tRcmheG9+aeiClE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6c:00:55:ce:10:41:9a:5d:48:57:00:b5:f5:c3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Validity
Not Before: Mar 1 22:01:47 2026 GMT
Not After : Mar 2 22:01:47 2026 GMT
Subject: CN=e32248657361c4e03d0d6bd276e2905dd699daa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2b:04:6d:21:f5:2c:9d:15:ea:4f:56:d2:e0:
af:fd:f0:31:01:fe:54:b2:2c:6f:26:d1:15:91:3b:
13:6b:9f:be:ed:3b:73:12:84:8b:91:59:1f:fc:67:
b2:84:e8:83:1d:96:65:c9:26:68:01:1b:1f:f3:5a:
74:b2:35:1e:6f:bd:13:c8:1a:99:2a:7e:e7:50:e7:
e5:8a:41:45:17:48:d2:b5:5b:59:0a:8d:0b:ea:64:
90:60:0e:c7:e0:b5:13:ba:76:31:63:40:46:c6:da:
91:b4:cf:ef:06:ff:44:4f:6b:4d:61:df:7e:b2:bc:
ec:7b:5f:83:f7:3b:af:4b:b3:c7:03:ce:b0:fb:d9:
f1:17:d1:11:b1:26:3d:f2:fb:ec:8c:0c:c4:56:b8:
15:e9:43:1e:14:73:91:05:a3:b6:68:2d:f7:ec:53:
dd:51:1b:2d:2b:57:0d:01:53:a9:de:6e:11:97:1d:
60:42:a2:d2:15:76:33:54:1e:33:8a:ee:fe:e2:c2:
e7:38:18:75:d9:31:e0:b5:c4:12:57:21:dc:28:1e:
7b:78:bf:9b:09:40:b2:b8:32:0c:1e:42:0d:52:56:
63:71:d3:d2:51:58:28:f1:ee:79:f1:f8:fb:67:3c:
8c:c8:90:f5:8b:4c:14:43:15:d3:02:1c:44:cd:cf:
47:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:22:48:65:73:61:C4:E0:3D:0D:6B:D2:76:E2:90:5D:D6:99:DA:A9
X509v3 Authority Key Identifier:
keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:4e:39:09:f9:a4:a2:9e:17:3d:2a:51:bf:b9:9d:04:85:cd:
04:b0:05:02:8a:16:ac:5a:0d:18:10:aa:26:c9:0d:5b:6c:47:
02:ac:32:8a:18:64:ca:48:b4:48:62:82:e9:c9:c0:e9:4b:6b:
83:59:86:09:36:0d:35:ba:02:41:f5:d8:1b:38:be:d4:b8:ae:
c6:c0:b3:59:30:9a:c6:e5:06:a3:0b:9b:7c:e9:cc:23:21:23:
62:bc:47:34:35:8a:17:b9:a1:50:8e:b0:48:c7:a1:03:23:cb:
4a:8a:0b:04:7c:82:ed:63:8b:10:7e:85:7e:fb:2f:97:26:1f:
82:46:90:2d:32:3b:26:15:51:b8:23:7f:61:b3:a1:c8:5c:b7:
c3:41:42:8f:57:9d:9a:0f:1f:d8:a2:be:7f:01:34:6e:21:5c:
95:c1:94:3d:3b:34:2b:fd:cb:11:95:3c:21:08:cc:20:bc:f1:
54:4f:86:d2:e1:f3:11:a5:15:2b:cb:5b:97:47:64:79:44:3c:
b0:1c:25:82:27:a2:4c:b3:3d:1b:26:92:69:8d:bb:35:a0:13:
c7:df:b5:20:89:1d:1d:77:38:a4:cd:80:1d:66:b9:22:d5:73:
dc:ca:cb:3b:0b:3d:c9:ad:f8:64:f6:9f:28:6b:89:fd:2d:bc:
84:2d:5a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:43:53 2026 by rpki-client