Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json)
Hash identifier: J0m0ro4UHGOgBXKbUq7gkT5KLZKB0gMBFLDLVAMkDT4=
Subject key identifier: D1:C9:E9:B2:FE:B7:43:4B:B6:2B:BA:DD:84:EC:30:DC:19:99:6B:18
Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e
Certificate serial: 019D37892D89E9F52C388B43A9402BD0FE3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
Manifest number: 075E
Signing time: Sun 29 Mar 2026 03:00:29 +0000
Manifest this update: Sun 29 Mar 2026 03:00:29 +0000
Manifest next update: Mon 30 Mar 2026 03:00:29 +0000
Files and hashes: 1: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: RKBS4nkJ1QXOqGv9OZlQEtNZ+pnlXSN60QVlWrF1Wa8=)
2: VI_14hIZSMxriiYvEo8zurAkwos.roa (hash: vbC8BhXmxZVktP9z4L8ZbNsqrQlwhBR+BWbQ4L1r4nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:2d:89:e9:f5:2c:38:8b:43:a9:40:2b:d0:fe:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e
Validity
Not Before: Mar 29 03:00:29 2026 GMT
Not After : Mar 30 03:00:29 2026 GMT
Subject: CN=d1c9e9b2feb7434bb62bbadd84ec30dc19996b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d6:06:ba:53:e2:4c:e0:f6:98:86:4a:d7:b8:
61:bb:34:ce:9d:da:27:25:82:84:bd:e3:67:a3:96:
a1:d6:28:48:ab:d9:c2:c1:b7:e1:41:c4:b5:40:7c:
0a:22:d2:be:6a:86:57:0e:84:f5:8b:38:b6:fa:84:
4f:53:34:e9:79:7d:20:bf:d6:84:7b:d3:48:17:8b:
63:08:8a:6b:3f:b9:9a:d0:0b:19:c6:1e:10:44:b7:
de:ba:8d:62:55:8e:0d:58:35:d9:1d:55:6d:78:4c:
1c:db:9e:68:f9:34:34:35:69:a6:1b:ad:5d:6b:29:
1d:61:de:02:81:e9:3d:9f:a1:b4:ac:57:aa:f5:8a:
ed:0c:6a:e8:39:0f:3f:8c:80:0e:44:53:90:23:ac:
74:84:1e:54:73:c6:1f:82:0b:ab:b9:c4:3d:fc:73:
e5:d7:7e:ab:67:c0:8e:8b:9b:fe:83:00:41:37:3e:
05:e3:a7:0c:3c:93:d9:16:1b:3b:f9:ec:6a:77:ff:
c1:8e:03:86:82:82:1e:43:48:bb:0a:d0:4b:3a:f0:
38:87:93:1e:f4:2e:1b:b6:92:21:41:2f:b0:0a:ec:
4c:c3:15:76:d6:3c:d2:e3:85:e1:6b:55:f6:69:ff:
0b:57:8b:96:5a:11:7d:4b:3c:0b:65:e0:94:56:84:
e9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C9:E9:B2:FE:B7:43:4B:B6:2B:BA:DD:84:EC:30:DC:19:99:6B:18
X509v3 Authority Key Identifier:
keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:ec:c9:85:cc:aa:90:29:86:85:a4:61:54:ed:b0:f3:28:a1:
2f:fe:44:81:55:89:3d:8f:a5:0a:53:75:17:8a:63:c5:89:3a:
4f:f2:09:c6:55:cd:fa:fd:a5:d3:bf:b0:8a:75:25:09:2e:d8:
bf:85:63:a6:78:34:09:a5:ca:51:61:07:63:f9:0c:0f:cb:eb:
ec:12:29:d4:39:70:35:5d:9b:33:13:c6:f2:ee:72:56:5d:52:
5a:5b:7a:64:21:e1:77:f6:d3:b0:4c:f8:f5:b2:c1:fc:b8:16:
b9:f7:e6:e7:0e:1c:61:0f:1c:c9:a4:aa:3f:8d:e5:7a:0a:4e:
0c:4f:93:e9:18:de:e1:39:38:b3:21:13:74:bb:f3:3b:cb:85:
55:35:8d:fb:21:3d:12:42:fd:9d:fb:e5:e0:5e:97:92:b6:30:
a7:e5:00:fe:97:0f:04:09:7a:81:d0:9f:b5:a0:3c:e7:da:80:
de:24:9c:64:b9:2d:23:01:15:47:da:bc:38:c7:ee:f7:40:cb:
9d:92:34:9b:91:46:a6:69:89:aa:e5:7d:33:71:e8:db:52:4a:
1b:00:65:99:56:53:97:34:3c:98:6d:6e:77:e2:25:3b:df:e2:
cc:c7:fb:ee:45:20:45:b0:f4:38:41:8d:51:08:62:01:3e:f5:
cb:89:ce:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:13 2026 by rpki-client