Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: /lFoY/t07Z2+H/TmTuzaeaqoZq/FM4DGk+F+uwb3q38=
Subject key identifier: 7A:B8:62:D0:20:61:16:EF:E6:0B:E9:B0:23:D6:61:66:62:77:C0:4B
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 019D37C03493F9F86656F429A8BED3115B3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0FB0
Signing time: Sun 29 Mar 2026 04:00:36 +0000
Manifest this update: Sun 29 Mar 2026 04:00:36 +0000
Manifest next update: Mon 30 Mar 2026 04:00:36 +0000
Files and hashes: 1: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: iEY/YSTQRQA03YTaZiEN3RUYEwVIKY+qLBU8zzkdeOw=)
2: vk5Y2YJ09rjiWROVoHQwodUn4yU.roa (hash: vpQeQxzEnsV7qHV8y9P4IV2nzoCx88/TOJF++oD3hVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:34:93:f9:f8:66:56:f4:29:a8:be:d3:11:5b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Mar 29 04:00:36 2026 GMT
Not After : Mar 30 04:00:36 2026 GMT
Subject: CN=7ab862d0206116efe60be9b023d661666277c04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ca:33:eb:3d:cb:32:08:74:72:7d:b8:3d:3d:
ae:b3:e5:69:ca:c8:5c:09:fc:09:2a:e9:14:2d:38:
40:bd:b8:8b:9c:ba:21:bc:05:52:ce:a2:ac:de:31:
b2:64:92:88:13:86:6b:23:92:f8:35:3b:ac:35:d8:
03:97:dd:fd:60:d1:cd:1b:5f:a9:cd:95:43:57:50:
c5:66:c0:ed:3e:bb:62:a3:e8:a1:da:ff:10:bd:0b:
ca:19:b0:ff:52:4c:89:90:ae:5d:b9:c9:34:22:08:
32:f7:3a:50:33:2e:ea:5d:82:d2:dc:c4:44:ee:30:
3d:41:53:38:09:1b:19:5a:21:6f:4c:68:9e:17:9d:
ab:e6:35:fd:eb:13:59:17:2d:a8:b1:dc:38:6b:d9:
c9:bb:bb:3f:c6:e0:49:42:b9:27:0f:95:b1:c1:ca:
b4:48:5a:e0:4a:18:88:64:1b:1b:37:e2:2d:4b:64:
d3:07:df:de:ae:0e:7b:ca:94:91:88:29:58:46:9a:
50:29:a5:c5:e8:dd:6c:f3:82:99:1a:d8:4c:93:c5:
0e:3a:ba:34:3c:e6:ad:7f:b9:c3:a1:ee:24:cd:a7:
9e:c9:f0:f9:b2:00:a6:b0:b3:ce:50:3a:86:d9:fe:
9d:bb:fe:1b:0e:46:e9:97:98:68:e4:c3:9d:3e:1b:
d7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B8:62:D0:20:61:16:EF:E6:0B:E9:B0:23:D6:61:66:62:77:C0:4B
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:6f:f6:63:6b:30:17:1e:93:70:d6:18:6a:37:d2:8b:6e:e6:
b7:5d:f3:c2:47:38:b5:51:b4:6d:db:26:a1:15:3b:84:cc:16:
22:a8:00:a8:b2:0b:ae:98:15:94:da:f4:ab:e1:0a:a9:f2:a0:
ae:65:61:4c:42:e1:a7:4a:e6:0b:dc:c0:a5:e6:b8:7c:dc:cc:
a3:47:76:92:3e:71:80:60:e5:73:e7:e6:63:e5:da:55:55:a1:
5a:a1:46:81:7a:d1:5a:71:e7:c2:99:c2:6e:a1:e8:19:75:d4:
18:91:c2:4d:57:a9:83:df:a7:d4:e9:0d:96:b5:f7:a5:cf:2c:
e0:ac:2d:dd:8d:a8:e4:ec:5a:17:8d:b8:db:bc:3c:37:f6:ac:
86:66:13:a9:83:6b:14:aa:c1:1d:f4:1f:f4:9f:7f:c0:c6:34:
25:1c:26:88:07:02:43:15:f9:e9:26:b4:6b:ce:02:f6:c1:da:
c1:78:81:bb:7e:39:fd:9c:31:9e:90:de:e2:d2:6e:ac:9d:43:
1f:b7:be:4e:1a:0a:06:59:6d:6c:33:58:da:08:d1:f7:15:5a:
9b:ef:b8:b8:48:ca:6c:66:fe:ee:cb:24:63:69:09:72:a5:5e:
bd:bc:74:67:e0:4b:83:05:9d:85:cc:bf:52:cb:da:82:bb:d9:
c1:82:af:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:52 2026 by rpki-client