Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
File: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft (raw, json)
Hash identifier: yNH68dOcZsxGOk05+A3x0o3D3mNgusWnB8No99kQwIA=
Subject key identifier: 20:6C:15:40:3E:E5:6D:C6:F7:F1:17:6F:DF:64:5F:BA:1B:97:09:6E
Authority key identifier: 40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
Certificate issuer: /CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Certificate serial: 019D390A29B3C70EDE5B53A8FC179924E206
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 10:01:00 +0000
Manifest this update: Sun 29 Mar 2026 10:01:00 +0000
Manifest next update: Mon 30 Mar 2026 10:01:00 +0000
Files and hashes: 1: QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl (hash: 7y2P/MNXPg7Q8nbGSkply4ePXqFFdxKfBNF+2gtE8gQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:29:b3:c7:0e:de:5b:53:a8:fc:17:99:24:e2:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408b0fe658eb96fb50b135f71bb92f27b92c1394
Validity
Not Before: Mar 29 10:01:00 2026 GMT
Not After : Mar 30 10:01:00 2026 GMT
Subject: CN=206c15403ee56dc6f7f1176fdf645fba1b97096e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:e2:b9:86:9f:1d:eb:8f:d0:dd:14:71:ea:
2a:b5:18:3d:4c:da:44:8b:bf:b3:54:b4:54:16:d2:
00:24:cc:00:1f:c4:3f:62:ce:ae:43:a9:f1:d3:79:
34:14:4d:da:18:97:aa:84:c8:df:11:ae:6c:82:9a:
2c:15:c1:ef:e7:89:cd:f9:a3:24:d9:87:5a:3a:8e:
a3:e4:6a:d8:1a:1d:6a:3d:06:ee:81:7d:a6:e2:38:
ea:ac:12:b0:1c:e7:c1:c9:3e:61:89:6d:7f:1d:e2:
45:4d:52:54:12:49:3e:17:41:3e:66:d9:2b:be:2e:
ea:10:85:c3:30:95:be:f1:d0:ce:c1:f0:47:00:f2:
9b:86:07:df:8b:13:73:60:13:16:e6:c0:6b:0f:b2:
72:1b:26:04:89:90:fd:42:52:5a:14:04:9b:f2:e2:
99:c4:11:73:08:c1:a3:3f:fe:1f:d5:b0:da:6d:a1:
e7:a9:e0:78:2b:91:ae:19:14:96:da:d4:e8:98:c7:
7f:8f:72:7c:72:a9:b8:73:d5:41:ac:8f:9a:ea:cb:
f9:4a:2a:f1:c5:a2:6d:09:a9:01:c4:89:e9:18:91:
2d:29:28:80:f7:69:49:89:6e:ca:38:0f:57:01:c7:
c2:39:2b:2d:2e:5c:9c:4b:f5:38:e9:18:bf:d4:64:
10:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6C:15:40:3E:E5:6D:C6:F7:F1:17:6F:DF:64:5F:BA:1B:97:09:6E
X509v3 Authority Key Identifier:
keyid:40:8B:0F:E6:58:EB:96:FB:50:B1:35:F7:1B:B9:2F:27:B9:2C:13:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5654c-9fe7-4793-8a8f-40edadeee860/1/QIsP5ljrlvtQsTX3G7kvJ7ksE5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:e1:8f:6f:61:eb:cc:3e:18:86:f9:e7:96:5a:d3:16:1f:1c:
a7:32:ca:9e:54:5a:dd:5f:5b:ad:95:00:11:7b:f1:9d:57:36:
25:98:83:5b:9c:76:ae:d4:b2:fb:88:b2:34:d8:6c:6c:5f:3b:
69:98:b6:41:b2:5b:00:68:a7:d1:b0:42:f4:ed:71:16:4e:79:
81:ed:7d:7d:1a:ac:f4:89:66:96:98:78:11:8b:1d:07:ac:ac:
b5:3d:69:4d:4f:cb:cc:e0:5a:76:b1:f8:77:60:de:22:43:8e:
11:d2:55:e0:ce:a9:cc:b4:0b:b9:52:f7:c5:d5:93:42:14:24:
24:45:c5:5b:1d:d5:f3:a5:bd:fa:63:88:d3:9f:7a:98:c0:1b:
38:0a:f5:5c:18:52:9c:05:c8:8d:4d:9e:81:16:9a:b5:31:86:
58:a9:3d:b9:99:44:2c:da:2d:8b:ce:d6:4b:b1:1b:70:63:42:
24:c5:d5:85:2c:91:22:af:26:ab:3c:a4:29:cc:8b:bc:71:52:
84:62:28:1f:46:6b:8a:ed:a1:a8:9b:d9:31:64:53:30:4d:57:
9f:00:d2:30:be:61:22:c3:c1:75:0e:62:25:2f:b9:d7:6e:93:
0f:d9:bd:23:64:64:ef:70:c1:47:8e:0d:cf:b1:6d:ae:3d:5f:
f0:9b:9c:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Cimzxw7eW1Oo/BeZJOIGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwOGIwZmU2NThlYjk2ZmI1MGIxMzVmNzFiYjkyZjI3Yjky
YzEzOTQwHhcNMjYwMzI5MTAwMTAwWhcNMjYwMzMwMTAwMTAwWjAzMTEwLwYDVQQD
EygyMDZjMTU0MDNlZTU2ZGM2ZjdmMTE3NmZkZjY0NWZiYTFiOTcwOTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusLiuYafHeuP0N0UceoqtRg9TNpE
i7+zVLRUFtIAJMwAH8Q/Ys6uQ6nx03k0FE3aGJeqhMjfEa5sgposFcHv54nN+aMk
2YdaOo6j5GrYGh1qPQbugX2m4jjqrBKwHOfByT5hiW1/HeJFTVJUEkk+F0E+Ztkr
vi7qEIXDMJW+8dDOwfBHAPKbhgffixNzYBMW5sBrD7JyGyYEiZD9QlJaFASb8uKZ
xBFzCMGjP/4f1bDabaHnqeB4K5GuGRSW2tTomMd/j3J8cqm4c9VBrI+a6sv5Sirx
xaJtCakBxInpGJEtKSiA92lJiW7KOA9XAcfCOSstLlycS/U46Ri/1GQQIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCBsFUA+5W3G9/EXb99kX7oblwluMB8GA1UdIwQY
MBaAFECLD+ZY65b7ULE19xu5Lye5LBOUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lNTY1NGMtOWZlNy00NzkzLThhOGYt
NDBlZGFkZWVlODYwLzEvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9lNTY1NGMtOWZlNy00NzkzLThhOGYtNDBlZGFkZWVlODYw
LzEvUUlzUDVsanJsdnRRc1RYM0c3a3ZKN2tzRTVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFeGPb2Hr
zD4YhvnnllrTFh8cpzLKnlRa3V9brZUAEXvxnVc2JZiDW5x2rtSy+4iyNNhsbF87
aZi2QbJbAGin0bBC9O1xFk55ge19fRqs9Ilmlph4EYsdB6ystT1pTU/LzOBadrH4
d2DeIkOOEdJV4M6pzLQLuVL3xdWTQhQkJEXFWx3V86W9+mOI0596mMAbOAr1XBhS
nAXIjU2egRaatTGGWKk9uZlELNoti87WS7EbcGNCJMXVhSyRIq8mqzykKcyLvHFS
hGIoH0Zriu2hqJvZMWRTME1XnwDSML5hIsPBdQ5iJS+5126TD9m9I2Rk73DBR44N
z7Ftrj1f8JucWg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:02:16 2026 by rpki-client