Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
File: QqbmQBmAE94SolHwhgMM14xzJRY.mft (raw, json)
Hash identifier: 8ZvRt/gHqlVTEJET1jQ30HqPcJKtS19049Mq0jMQCWg=
Subject key identifier: 42:49:69:94:46:B9:35:E0:EE:FB:9E:78:F7:39:6F:0B:D4:53:5E:04
Authority key identifier: 42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
Certificate issuer: /CN=42a6e640198013de12a251f086030cd78c732516
Certificate serial: 019D386669401A505ED8B8B0BF6822FCF2FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
Manifest number: 181F
Signing time: Sun 29 Mar 2026 07:02:08 +0000
Manifest this update: Sun 29 Mar 2026 07:02:08 +0000
Manifest next update: Mon 30 Mar 2026 07:02:08 +0000
Files and hashes: 1: GEvyRWGXbdbHUTAehbJp3YhlTgY.roa (hash: b/xFEmDMbOi0xEK2SMYux/TUJuKIqsMzgBODuaUhYag=)
2: QqbmQBmAE94SolHwhgMM14xzJRY.crl (hash: yMGmnXgJ2mcksaAk8Nxr0HfQkDXg9F6qzTUH2jR5pFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:69:40:1a:50:5e:d8:b8:b0:bf:68:22:fc:f2:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42a6e640198013de12a251f086030cd78c732516
Validity
Not Before: Mar 29 07:02:08 2026 GMT
Not After : Mar 30 07:02:08 2026 GMT
Subject: CN=4249699446b935e0eefb9e78f7396f0bd4535e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6f:09:41:ae:67:90:00:2a:48:75:5b:d3:ae:
de:d0:1a:04:a4:ce:98:72:41:16:b0:6c:19:98:cf:
aa:85:3d:22:e2:3c:ff:cc:6f:8d:d3:72:be:a2:1e:
04:1f:6d:ab:d4:a1:d3:da:c2:15:0c:c0:a4:53:4f:
26:ef:24:c0:76:6d:ba:8c:bd:04:99:3e:0d:d3:6b:
e3:95:2e:13:23:ae:53:ce:9e:c7:10:9b:a5:5a:bc:
90:3f:99:c6:5a:fb:1b:8a:63:f1:34:c1:cd:71:85:
44:72:a7:37:b8:07:ff:2c:9b:34:95:58:b4:e3:a4:
1e:8e:20:f1:bf:ae:93:d6:dc:51:13:bf:fb:95:7c:
fb:54:6b:56:c4:e4:7d:1b:4b:08:0b:27:09:19:ee:
f0:77:73:93:db:ad:dc:5a:b4:7b:1a:54:81:1c:73:
1c:f7:35:00:84:09:94:89:46:5b:ce:62:f4:75:93:
bc:e7:7c:3a:a1:89:b1:fa:93:81:9b:72:55:a9:19:
07:99:99:22:8d:36:a2:10:de:4b:bb:7b:22:ea:98:
63:84:7b:57:25:48:91:c1:d8:48:08:3c:3c:33:c3:
7f:0a:b1:3a:a3:5a:ef:c8:5e:91:02:b8:d6:f6:1c:
ac:b0:75:a0:96:a4:5e:ac:9f:b4:0b:30:b7:43:f6:
b1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:49:69:94:46:B9:35:E0:EE:FB:9E:78:F7:39:6F:0B:D4:53:5E:04
X509v3 Authority Key Identifier:
keyid:42:A6:E6:40:19:80:13:DE:12:A2:51:F0:86:03:0C:D7:8C:73:25:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QqbmQBmAE94SolHwhgMM14xzJRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ba2f3d-6bd2-4f32-81af-c287670cce51/1/QqbmQBmAE94SolHwhgMM14xzJRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:2f:52:aa:45:59:56:1b:c3:55:1c:23:50:f6:7d:6b:3c:ec:
f9:eb:b6:d9:a3:ce:18:8d:26:d9:ca:d3:67:e1:5d:1b:9a:5f:
4f:58:f4:2c:fe:f2:25:62:e5:ff:f1:50:16:51:27:4f:e8:81:
73:c0:4d:45:54:ea:3f:f7:52:af:27:55:9f:df:a0:55:69:51:
99:18:5f:b0:cf:20:e9:8b:e9:dc:7e:d4:f3:8f:18:a6:78:24:
07:4b:8d:16:c8:cf:11:81:5a:b9:11:20:51:d9:2f:ea:28:b8:
94:86:d9:b9:9f:1c:a8:99:56:f3:15:db:b9:4b:0a:71:f6:4d:
c0:71:ab:f0:33:fb:ff:5a:cd:4d:63:f4:ca:1f:c2:3c:1a:21:
c3:97:2f:4a:5e:55:43:c5:2e:6d:30:89:ed:30:7a:d4:1b:4b:
c3:7d:c8:7c:68:27:b2:d8:93:ff:48:c6:27:d8:4f:99:64:0b:
c8:d8:7d:2e:1c:db:15:5a:94:25:86:37:d5:b8:58:52:29:07:
1b:9e:b2:60:a3:d8:e8:57:e5:26:9a:5f:82:6f:c7:e3:1e:cb:
d5:72:4a:78:29:87:69:fa:e8:b5:db:d6:21:59:80:b6:9f:27:
fa:a5:12:c1:76:f8:2c:fc:3e:3e:f4:c6:16:ce:b9:18:21:cc:
62:ba:fd:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZmlAGlBe2Liwv2gi/PL/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyYTZlNjQwMTk4MDEzZGUxMmEyNTFmMDg2MDMwY2Q3OGM3
MzI1MTYwHhcNMjYwMzI5MDcwMjA4WhcNMjYwMzMwMDcwMjA4WjAzMTEwLwYDVQQD
Eyg0MjQ5Njk5NDQ2YjkzNWUwZWVmYjllNzhmNzM5NmYwYmQ0NTM1ZTA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArG8JQa5nkAAqSHVb067e0BoEpM6Y
ckEWsGwZmM+qhT0i4jz/zG+N03K+oh4EH22r1KHT2sIVDMCkU08m7yTAdm26jL0E
mT4N02vjlS4TI65Tzp7HEJulWryQP5nGWvsbimPxNMHNcYVEcqc3uAf/LJs0lVi0
46QejiDxv66T1txRE7/7lXz7VGtWxOR9G0sICycJGe7wd3OT263cWrR7GlSBHHMc
9zUAhAmUiUZbzmL0dZO853w6oYmx+pOBm3JVqRkHmZkijTaiEN5Lu3si6phjhHtX
JUiRwdhICDw8M8N/CrE6o1rvyF6RArjW9hyssHWglqRerJ+0CzC3Q/axPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEJJaZRGuTXg7vueePc5bwvUU14EMB8GA1UdIwQY
MBaAFEKm5kAZgBPeEqJR8IYDDNeMcyUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9iYTJmM2QtNmJkMi00ZjMyLTgxYWYt
YzI4NzY3MGNjZTUxLzEvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9iYTJmM2QtNmJkMi00ZjMyLTgxYWYtYzI4NzY3MGNjZTUx
LzEvUXFibVFCbUFFOTRTb2xId2hnTU0xNHh6SlJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdS9SqkVZ
VhvDVRwjUPZ9azzs+eu22aPOGI0m2crTZ+FdG5pfT1j0LP7yJWLl//FQFlEnT+iB
c8BNRVTqP/dSrydVn9+gVWlRmRhfsM8g6Yvp3H7U848YpngkB0uNFsjPEYFauREg
Udkv6ii4lIbZuZ8cqJlW8xXbuUsKcfZNwHGr8DP7/1rNTWP0yh/CPBohw5cvSl5V
Q8UubTCJ7TB61BtLw33IfGgnstiT/0jGJ9hPmWQLyNh9LhzbFVqUJYY31bhYUikH
G56yYKPY6FflJppfgm/H4x7L1XJKeCmHafrotdvWIVmAtp8n+qUSwXb4LPw+PvTG
Fs65GCHMYrr9CQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:11 2026 by rpki-client