Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
File: QzFPMPOkU_9JIh2VStgCijBKAVA.mft (raw, json)
Hash identifier: /8zTBPbRK8H5bxzOSrXQMbaZ83UHUE5fGXcU9wHp6Zs=
Subject key identifier: 74:50:E7:4D:5A:23:93:EE:5B:D4:17:56:02:8F:F0:4A:C5:DE:2D:9E
Authority key identifier: 43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
Certificate issuer: /CN=43314f30f3a453ff49221d954ad8028a304a0150
Certificate serial: 019D38D2EBC5073DC07A2A659F0213A88096
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 09:00:40 +0000
Manifest this update: Sun 29 Mar 2026 09:00:40 +0000
Manifest next update: Mon 30 Mar 2026 09:00:40 +0000
Files and hashes: 1: QzFPMPOkU_9JIh2VStgCijBKAVA.crl (hash: dn23HsMs0XnnTjcQ/6/6EwYHCM3cgy9jLsKwrb0WER8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:eb:c5:07:3d:c0:7a:2a:65:9f:02:13:a8:80:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43314f30f3a453ff49221d954ad8028a304a0150
Validity
Not Before: Mar 29 09:00:40 2026 GMT
Not After : Mar 30 09:00:40 2026 GMT
Subject: CN=7450e74d5a2393ee5bd41756028ff04ac5de2d9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:70:4c:62:40:6d:33:49:aa:24:9d:72:03:9e:
08:94:6d:73:39:9e:8a:24:47:b8:26:c8:39:af:13:
16:9f:aa:82:76:ab:61:63:f2:bb:4b:b1:c2:71:08:
ca:88:67:b0:b9:36:3b:81:0e:c3:d9:6a:76:14:a9:
13:08:ff:d0:6a:24:43:38:bc:9a:ae:77:27:a3:f0:
07:37:63:88:ab:a2:8a:79:74:24:20:fc:77:0e:a7:
5a:e8:a0:86:6b:9c:cc:f8:eb:d8:22:a1:ce:b2:a0:
23:47:c5:b3:e9:dd:f9:08:a7:84:24:ad:6d:8e:40:
d3:7e:1a:b2:5c:08:9c:d8:c4:71:ee:64:6b:73:a4:
65:c9:35:7b:72:31:a8:77:6c:32:ed:2f:f3:1e:5d:
51:60:e1:ed:57:36:16:7e:b6:c2:04:28:f6:2d:d9:
46:6e:fb:d3:54:6e:a2:1d:5c:94:19:2b:ae:1b:f3:
85:4f:cf:cc:a7:44:4a:b1:3f:51:d0:f0:77:b3:91:
01:00:08:eb:ca:58:b9:ee:77:62:f8:d0:8d:34:74:
92:91:6a:ae:b3:e4:e8:b8:9e:d5:4c:fa:d6:ec:39:
29:f1:a8:db:f2:98:e4:95:74:46:fd:af:4e:65:3b:
5f:7e:0a:74:ef:53:51:eb:02:f9:f9:cf:80:f6:01:
30:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:50:E7:4D:5A:23:93:EE:5B:D4:17:56:02:8F:F0:4A:C5:DE:2D:9E
X509v3 Authority Key Identifier:
keyid:43:31:4F:30:F3:A4:53:FF:49:22:1D:95:4A:D8:02:8A:30:4A:01:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QzFPMPOkU_9JIh2VStgCijBKAVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/630e94-6b71-4063-9328-558eea1f5901/1/QzFPMPOkU_9JIh2VStgCijBKAVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ea:2a:d6:37:cf:78:aa:8a:5d:cc:89:80:54:7f:90:3e:c4:
3a:35:1c:21:2d:3b:be:6f:7c:24:d3:6f:6a:1e:1f:f7:4f:84:
74:4c:d8:17:df:de:30:10:d1:de:7a:1d:80:0e:41:34:ee:f7:
c2:f4:77:ab:fa:b3:9b:0a:e1:c7:04:29:42:cb:f7:4f:98:05:
38:21:37:4c:cb:18:cb:25:12:15:7f:4c:64:d9:20:39:50:9a:
20:5a:ff:e2:7f:fc:6d:c2:c6:8b:7e:fc:92:2a:67:8e:f5:fd:
2c:c3:25:4f:aa:99:2c:55:77:d7:5b:d0:22:2b:98:53:58:23:
d1:1c:88:82:53:67:b3:5f:ca:80:87:f7:25:d7:a7:cb:4d:1d:
db:30:81:e3:a6:e7:6d:e3:d4:39:5e:37:3f:7b:a4:16:e7:7e:
63:19:60:e5:9b:20:a6:a9:0d:b1:a9:eb:9b:4e:3f:2a:ff:54:
5a:64:e1:d7:9c:e0:04:c0:6a:c5:5e:b1:e4:bd:0a:7e:d3:7d:
66:c2:3f:1f:e5:1f:cd:82:38:ca:45:6b:c5:32:42:cc:08:23:
f8:7e:7a:e9:46:33:83:25:0f:ab:3e:d9:cb:67:fc:6d:fd:12:
dd:27:04:84:88:7e:dc:fd:ef:15:34:12:49:c6:69:26:1b:78:
a3:a7:03:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040uvFBz3AeiplnwITqICWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMzE0ZjMwZjNhNDUzZmY0OTIyMWQ5NTRhZDgwMjhhMzA0
YTAxNTAwHhcNMjYwMzI5MDkwMDQwWhcNMjYwMzMwMDkwMDQwWjAzMTEwLwYDVQQD
Eyg3NDUwZTc0ZDVhMjM5M2VlNWJkNDE3NTYwMjhmZjA0YWM1ZGUyZDllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4HBMYkBtM0mqJJ1yA54IlG1zOZ6K
JEe4Jsg5rxMWn6qCdqthY/K7S7HCcQjKiGewuTY7gQ7D2Wp2FKkTCP/QaiRDOLya
rncno/AHN2OIq6KKeXQkIPx3Dqda6KCGa5zM+OvYIqHOsqAjR8Wz6d35CKeEJK1t
jkDTfhqyXAic2MRx7mRrc6RlyTV7cjGod2wy7S/zHl1RYOHtVzYWfrbCBCj2LdlG
bvvTVG6iHVyUGSuuG/OFT8/Mp0RKsT9R0PB3s5EBAAjryli57ndi+NCNNHSSkWqu
s+TouJ7VTPrW7Dkp8ajb8pjklXRG/a9OZTtffgp071NR6wL5+c+A9gEwgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHRQ501aI5PuW9QXVgKP8ErF3i2eMB8GA1UdIwQY
MBaAFEMxTzDzpFP/SSIdlUrYAoowSgFQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXpGUE1QT2tVXzlKSWgyVlN0Z0NpakJLQVZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82MzBlOTQtNmI3MS00MDYzLTkzMjgt
NTU4ZWVhMWY1OTAxLzEvUXpGUE1QT2tVXzlKSWgyVlN0Z0NpakJLQVZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC82MzBlOTQtNmI3MS00MDYzLTkzMjgtNTU4ZWVhMWY1OTAx
LzEvUXpGUE1QT2tVXzlKSWgyVlN0Z0NpakJLQVZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMOoq1jfP
eKqKXcyJgFR/kD7EOjUcIS07vm98JNNvah4f90+EdEzYF9/eMBDR3nodgA5BNO73
wvR3q/qzmwrhxwQpQsv3T5gFOCE3TMsYyyUSFX9MZNkgOVCaIFr/4n/8bcLGi378
kipnjvX9LMMlT6qZLFV311vQIiuYU1gj0RyIglNns1/KgIf3Jdeny00d2zCB46bn
bePUOV43P3ukFud+Yxlg5ZsgpqkNsanrm04/Kv9UWmTh15zgBMBqxV6x5L0KftN9
ZsI/H+UfzYI4ykVrxTJCzAgj+H566UYzgyUPqz7Zy2f8bf0S3ScEhIh+3P3vFTQS
ScZpJht4o6cDzw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:14 2026 by rpki-client