Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
File: QtzU0b098prdQHW2jymvkHBHRDw.mft (raw, json)
Hash identifier: 0Cx6kQo0tp6mThgYRZdhpU17SS6q6PAGtmFR2r5o4cQ=
Subject key identifier: 58:84:B8:27:CE:D9:30:16:62:44:16:D4:DF:DB:4C:94:63:5F:F3:44
Authority key identifier: 42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
Certificate issuer: /CN=42dcd4d1bd3df29add4075b68f29af907047443c
Certificate serial: 019CAB6AF036B1C99B6E86E6A4F5ED298716
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
Manifest number: 0574
Signing time: Sun 01 Mar 2026 22:00:38 +0000
Manifest this update: Sun 01 Mar 2026 22:00:38 +0000
Manifest next update: Mon 02 Mar 2026 22:00:38 +0000
Files and hashes: 1: QtzU0b098prdQHW2jymvkHBHRDw.crl (hash: OEr679Tj9IgmcTrmAgrsuNIkKDeEpCfFsdsybjqaDNY=)
2: lqPB-_tpvjZaRMURMIYlaL-x7v4.roa (hash: PwPNHJ6WdN+tYHjQQVUmAufUKj9CcNQAjnCYOsVYIJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:f0:36:b1:c9:9b:6e:86:e6:a4:f5:ed:29:87:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42dcd4d1bd3df29add4075b68f29af907047443c
Validity
Not Before: Mar 1 22:00:38 2026 GMT
Not After : Mar 2 22:00:38 2026 GMT
Subject: CN=5884b827ced93016624416d4dfdb4c94635ff344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:77:68:ad:a6:ea:8e:a7:bd:2d:5c:a8:01:22:
a1:c9:92:e2:12:d9:88:87:95:1b:5f:1f:6b:79:cd:
9c:6e:a1:b7:5d:36:91:07:4c:63:17:0f:ea:e5:a5:
e0:55:08:de:86:c5:03:8c:9e:a1:20:18:39:e4:4c:
4c:e1:ea:f5:00:f2:cf:94:8f:a6:c9:eb:17:10:2f:
4c:3a:2a:9f:1e:3f:57:bd:ff:8f:7a:2e:9e:07:e8:
2f:ae:4b:d4:80:d0:a3:04:2f:e9:a7:43:dd:74:39:
8d:de:95:d3:27:4f:bd:5c:1d:34:4d:03:9c:c9:6d:
00:48:53:d1:c2:a0:52:3b:8a:cf:23:19:1d:3f:ce:
91:b6:02:f1:cb:55:ab:94:cb:70:0b:7b:98:51:8a:
3c:af:a8:2b:3f:a5:71:d7:d5:d8:6f:65:df:93:aa:
af:ca:06:78:c5:54:eb:2b:eb:1b:12:95:09:16:70:
c9:3b:cc:4c:85:51:04:19:68:e7:2a:5c:12:97:6f:
da:85:36:93:d6:41:ae:da:cf:fb:58:b0:69:33:da:
27:43:0a:06:02:19:fe:c4:0b:c8:02:22:e1:66:64:
c5:9b:8f:9e:4a:81:76:f7:e0:79:4a:d6:e9:3f:97:
3f:70:4c:07:ce:f4:40:7d:8b:b8:7e:b3:9a:bc:9a:
2a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:84:B8:27:CE:D9:30:16:62:44:16:D4:DF:DB:4C:94:63:5F:F3:44
X509v3 Authority Key Identifier:
keyid:42:DC:D4:D1:BD:3D:F2:9A:DD:40:75:B6:8F:29:AF:90:70:47:44:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtzU0b098prdQHW2jymvkHBHRDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/297f1e-922b-45b4-893f-fb98fe3dbc14/1/QtzU0b098prdQHW2jymvkHBHRDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:88:25:b4:f8:d6:ca:b6:45:0e:21:50:c2:60:12:67:29:49:
9a:e6:ba:09:b0:f1:95:03:6a:ad:8b:3e:5f:5f:95:bb:6f:72:
86:9b:65:20:96:c9:a5:98:de:ad:33:23:60:81:0b:bb:e2:8d:
3b:09:dc:cf:59:0e:d5:db:8f:a5:98:14:11:2f:f9:a3:e0:b4:
52:96:f5:d0:ad:c9:13:1c:4f:a6:f4:b4:d0:34:20:cc:c9:4b:
79:1a:98:d7:9f:0d:82:73:5e:62:bc:cd:b3:f7:9c:b7:b2:75:
07:a7:8d:67:f5:58:62:85:08:96:12:9e:bb:51:50:ec:07:03:
f0:c3:91:2f:02:ed:a8:3f:34:92:d7:ba:0e:2a:06:03:41:1d:
3d:bf:14:fb:64:64:b3:64:b2:2c:34:50:f1:44:fb:8c:8e:bd:
25:df:df:88:db:fe:a1:70:16:2d:cd:ff:ec:78:2e:3f:78:6c:
d7:76:7d:9b:b5:fd:c2:93:f3:e4:9f:f7:19:ab:97:e5:48:29:
68:05:0b:4e:2a:db:11:84:57:5e:fc:d4:49:b8:5c:e7:91:f5:
a0:96:e4:fa:26:28:ad:d7:17:17:6d:e6:1b:a6:74:a6:52:67:
7d:4f:5e:45:0b:db:13:6a:ba:2d:47:22:c1:6e:d2:86:d0:b0:
1f:bd:bc:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:07:08 2026 by rpki-client