Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
File: qxSu-APVDXALuYUq6LsrtAkmFqU.mft (raw, json)
Hash identifier: Aq6GuYgvYudpPjrANA0znXthkzw5ZgBe8B7rdUZoGzM=
Subject key identifier: 3E:CA:08:CE:DA:BD:B7:18:7C:E3:C6:61:7B:06:84:47:D2:EA:C1:DD
Authority key identifier: AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5
Certificate issuer: /CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5
Certificate serial: 019D38D34364FA7A635EDA2171C0BE5C6C87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
Manifest number: 0FA7
Signing time: Sun 29 Mar 2026 09:01:02 +0000
Manifest this update: Sun 29 Mar 2026 09:01:02 +0000
Manifest next update: Mon 30 Mar 2026 09:01:02 +0000
Files and hashes: 1: qxSu-APVDXALuYUq6LsrtAkmFqU.crl (hash: y7F6QBh+WJpUvMEe0Jm2lhQN51g3mZGsC6J2W/ydjzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:43:64:fa:7a:63:5e:da:21:71:c0:be:5c:6c:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab14aef803d50d700bb9852ae8bb2bb4092616a5
Validity
Not Before: Mar 29 09:01:02 2026 GMT
Not After : Mar 30 09:01:02 2026 GMT
Subject: CN=3eca08cedabdb7187ce3c6617b068447d2eac1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:71:b7:10:66:5a:15:7a:34:aa:55:69:d4:d7:
1d:f0:73:74:72:bb:1d:5e:f7:00:44:7b:ba:7c:88:
aa:d9:8e:b7:f5:75:11:a0:30:19:91:47:e2:8e:a0:
26:b3:6d:c2:6d:b2:f3:c7:4f:71:88:61:bd:b4:1a:
cb:3d:e9:cc:1f:0d:3a:e8:be:1a:36:72:97:66:05:
7a:e7:06:19:01:3c:e0:27:31:a4:97:48:47:ca:a7:
bf:e6:ab:15:9e:77:09:84:a7:ed:3f:4d:1f:9a:fc:
64:8c:d9:8f:98:a1:67:21:8a:e0:52:44:50:61:4f:
39:c0:86:8f:da:02:90:ac:3b:11:37:f0:0a:07:56:
1a:ab:3f:2d:3f:56:a1:7e:d9:3f:cd:2b:44:80:5c:
d6:08:ff:a3:c5:5a:fd:5a:87:3f:5e:83:de:e9:d9:
67:d7:52:60:88:f4:bc:80:14:99:9b:1e:a3:79:f3:
11:7d:09:a7:3e:75:1f:ed:fc:97:5c:89:9f:4f:5a:
8f:b8:06:4d:68:cd:08:61:c5:b4:c9:47:bd:13:97:
76:09:2d:60:0e:b3:42:7b:dc:a6:2b:09:95:5e:7c:
71:38:0d:cd:44:e8:04:79:eb:b4:4b:c7:95:82:a7:
4e:47:1b:a4:5b:dd:b0:0a:20:49:36:e3:70:f8:4e:
b3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CA:08:CE:DA:BD:B7:18:7C:E3:C6:61:7B:06:84:47:D2:EA:C1:DD
X509v3 Authority Key Identifier:
keyid:AB:14:AE:F8:03:D5:0D:70:0B:B9:85:2A:E8:BB:2B:B4:09:26:16:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qxSu-APVDXALuYUq6LsrtAkmFqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f32c2a-c054-417d-8e0c-c00bacfffce5/1/qxSu-APVDXALuYUq6LsrtAkmFqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:0e:7f:3f:53:09:0d:cd:51:ff:4a:77:53:cc:1c:0f:ba:0f:
8f:79:0f:2b:56:ad:3b:45:c0:ee:a5:a3:d4:81:70:88:97:df:
ad:b2:20:36:45:85:d1:95:c2:0c:33:f8:9f:6d:d9:ed:34:7b:
48:f1:f3:a1:31:f1:6f:ca:8c:ca:a8:e8:f8:da:e3:97:ec:58:
05:cb:5b:44:13:fa:4d:d1:cd:98:fa:ea:e2:a8:11:9d:10:17:
0d:8d:5c:db:27:a0:32:12:36:66:49:97:38:aa:64:e3:e5:a7:
86:5f:60:dd:b3:6e:27:3d:e6:4c:94:74:69:19:e1:29:27:2a:
0a:93:73:d5:2b:5c:2d:06:be:fe:c4:04:2f:bd:46:17:e6:56:
c0:74:0c:ad:46:10:04:fd:f8:0e:52:92:d3:9a:83:1f:f7:0a:
58:93:ca:ed:4d:e8:6f:17:5c:93:43:9b:e5:7e:f7:ef:a6:3b:
c5:a9:d0:2e:21:72:5c:2c:19:99:ef:f7:75:f1:4d:94:df:4d:
80:cb:bd:07:ea:4d:27:03:8b:b3:e1:70:70:cf:a9:2f:c2:6c:
37:bf:12:1e:6f:9f:19:4e:ec:69:95:05:49:c3:1a:2d:02:74:
9a:99:24:82:30:dc:5f:97:c0:f2:a6:1b:90:e8:82:bc:85:7a:
d5:8d:6f:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0400Nk+npjXtohccC+XGyHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMTRhZWY4MDNkNTBkNzAwYmI5ODUyYWU4YmIyYmI0MDky
NjE2YTUwHhcNMjYwMzI5MDkwMTAyWhcNMjYwMzMwMDkwMTAyWjAzMTEwLwYDVQQD
EygzZWNhMDhjZWRhYmRiNzE4N2NlM2M2NjE3YjA2ODQ0N2QyZWFjMWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43G3EGZaFXo0qlVp1Ncd8HN0crsd
XvcARHu6fIiq2Y639XURoDAZkUfijqAms23CbbLzx09xiGG9tBrLPenMHw066L4a
NnKXZgV65wYZATzgJzGkl0hHyqe/5qsVnncJhKftP00fmvxkjNmPmKFnIYrgUkRQ
YU85wIaP2gKQrDsRN/AKB1Yaqz8tP1ahftk/zStEgFzWCP+jxVr9Woc/XoPe6dln
11JgiPS8gBSZmx6jefMRfQmnPnUf7fyXXImfT1qPuAZNaM0IYcW0yUe9E5d2CS1g
DrNCe9ymKwmVXnxxOA3NROgEeeu0S8eVgqdORxukW92wCiBJNuNw+E6zcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD7KCM7avbcYfOPGYXsGhEfS6sHdMB8GA1UdIwQY
MBaAFKsUrvgD1Q1wC7mFKui7K7QJJhalMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXhTdS1BUFZEWEFMdVlVcTZMc3J0QWttRnFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mMzJjMmEtYzA1NC00MTdkLThlMGMt
YzAwYmFjZmZmY2U1LzEvcXhTdS1BUFZEWEFMdVlVcTZMc3J0QWttRnFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mMzJjMmEtYzA1NC00MTdkLThlMGMtYzAwYmFjZmZmY2U1
LzEvcXhTdS1BUFZEWEFMdVlVcTZMc3J0QWttRnFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVw5/P1MJ
Dc1R/0p3U8wcD7oPj3kPK1atO0XA7qWj1IFwiJffrbIgNkWF0ZXCDDP4n23Z7TR7
SPHzoTHxb8qMyqjo+Nrjl+xYBctbRBP6TdHNmPrq4qgRnRAXDY1c2yegMhI2ZkmX
OKpk4+Wnhl9g3bNuJz3mTJR0aRnhKScqCpNz1StcLQa+/sQEL71GF+ZWwHQMrUYQ
BP34DlKS05qDH/cKWJPK7U3obxdck0Ob5X7376Y7xanQLiFyXCwZme/3dfFNlN9N
gMu9B+pNJwOLs+FwcM+pL8JsN78SHm+fGU7saZUFScMaLQJ0mpkkgjDcX5fA8qYb
kOiCvIV61Y1vVg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:59:54 2026 by rpki-client