Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
File: QBMclDl36gqT787s000dXRyxgq8.mft (raw, json)
Hash identifier: QHiq7e9bsTsjqU7GGOGZpbwK6POykPKV7mXeXBbKR5Y=
Subject key identifier: 3A:F1:78:C3:E0:7A:71:0E:CA:BA:80:F9:73:EA:B0:31:A6:32:F3:0A
Authority key identifier: 40:13:1C:94:39:77:EA:0A:93:EF:CE:EC:D3:4D:1D:5D:1C:B1:82:AF
Certificate issuer: /CN=40131c943977ea0a93efceecd34d1d5d1cb182af
Certificate serial: 019D382E3B42005CB09BBEDC96E5E0FD23AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
Manifest number: 113E
Signing time: Sun 29 Mar 2026 06:00:47 +0000
Manifest this update: Sun 29 Mar 2026 06:00:47 +0000
Manifest next update: Mon 30 Mar 2026 06:00:47 +0000
Files and hashes: 1: QBMclDl36gqT787s000dXRyxgq8.crl (hash: nZhVGRMPdBdnK/wyaagd4uzb8TujyQSGHNdLupT9o14=)
2: pX1sCsdBvOf1DYSG2Hc1Gk_UAhE.roa (hash: OlL9IE16KIgOlg8PLo6l6wM/j0zMgy8iF5tK7N5oXY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:3b:42:00:5c:b0:9b:be:dc:96:e5:e0:fd:23:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40131c943977ea0a93efceecd34d1d5d1cb182af
Validity
Not Before: Mar 29 06:00:47 2026 GMT
Not After : Mar 30 06:00:47 2026 GMT
Subject: CN=3af178c3e07a710ecaba80f973eab031a632f30a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c1:4e:78:1d:3d:36:b5:22:b4:4e:6d:15:6e:
79:69:b2:71:6f:40:39:50:21:16:1d:1a:38:e0:ad:
90:5a:48:41:65:14:fe:01:8a:03:2f:62:2f:1c:f8:
61:f9:7b:74:75:c7:43:93:df:94:ab:a5:59:d1:85:
9f:7d:b7:4f:45:69:04:fe:6c:d0:63:7a:8b:e2:52:
82:44:c5:f6:2f:b3:07:31:32:8f:36:3f:80:35:93:
ca:ab:65:47:5f:5a:e5:28:16:09:1a:ce:c4:5b:02:
fd:20:af:3a:7c:12:a2:55:75:30:da:2a:86:15:58:
f0:16:57:2a:f8:69:8c:21:af:0b:82:ee:13:6a:a5:
1f:ce:fb:37:6e:94:bf:15:15:ff:35:49:1d:5c:a4:
fa:b1:f3:de:5d:77:fb:90:52:36:1f:5e:09:db:48:
b8:db:21:e2:ce:38:30:4f:67:c6:24:23:ef:7b:7c:
d1:ec:9f:02:f1:6b:51:ea:95:75:19:9a:e1:94:4a:
b8:e1:cb:a2:ad:76:7c:f5:43:d0:18:a5:95:f7:72:
c5:b3:86:e8:14:5d:10:42:49:af:15:7b:e2:d3:0f:
85:01:b3:a5:60:e3:1f:a7:6a:3c:cf:7f:8f:6e:bc:
a3:1e:95:76:eb:df:44:00:ff:f6:47:79:e6:d6:d1:
21:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F1:78:C3:E0:7A:71:0E:CA:BA:80:F9:73:EA:B0:31:A6:32:F3:0A
X509v3 Authority Key Identifier:
keyid:40:13:1C:94:39:77:EA:0A:93:EF:CE:EC:D3:4D:1D:5D:1C:B1:82:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QBMclDl36gqT787s000dXRyxgq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/5c9b74-753b-42e2-b41a-2b649d5ebaf3/1/QBMclDl36gqT787s000dXRyxgq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:00:65:0c:ea:ee:04:79:60:5c:cf:69:62:53:2c:4f:05:30:
d2:6d:78:3f:b1:9d:d1:93:50:03:69:d6:d6:0b:ff:16:c3:2c:
09:c8:db:5e:bb:e4:71:b2:c8:b4:a7:01:88:6b:71:95:35:2b:
f2:77:7e:78:1f:03:7f:b3:65:ce:cb:5a:1d:a7:66:0c:4c:0c:
c0:b0:e6:cf:66:a6:bf:9a:5f:14:ce:87:83:90:fe:f7:2e:fe:
0d:07:e5:e4:35:3c:40:e6:65:a5:66:84:6e:c7:a2:3f:b1:88:
5f:7c:77:2c:e0:ef:fd:a9:cf:53:3f:4d:21:bb:21:03:95:d7:
08:7a:43:e9:d6:a7:f6:06:91:d4:9c:25:80:4a:a1:6c:fc:74:
53:b4:83:a7:b0:2d:9c:d5:b7:55:16:a2:aa:a3:73:29:0f:fb:
d5:b1:8f:b1:87:08:10:64:fb:9e:d2:4a:8f:37:21:96:90:c6:
62:42:02:63:c6:63:ae:64:31:ca:ae:01:93:ee:e7:b1:2b:3d:
2f:71:e5:49:ae:3c:ca:54:30:b9:ee:7d:0b:69:cd:87:07:53:
ce:de:e2:a5:c0:f9:d6:d4:2c:3d:0c:1a:a2:da:87:cb:90:0f:
50:48:e0:0c:24:ec:69:91:7a:5c:e9:1f:09:31:af:cb:64:93:
d8:5f:d1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:58:13 2026 by rpki-client