Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
File: QGYnM7yHPRPh-fZujf91yCDV0vc.mft (raw, json)
Hash identifier: mlxxquArCweGvY5aJeu3m8kBq0a3VrPMqiafYXqmOHU=
Subject key identifier: 94:93:81:9C:D0:44:40:DE:71:93:6B:0F:63:89:A0:24:03:DF:41:95
Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Certificate serial: 019CECDD80442E40118F327D97E4CE0A0927
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
Manifest number: 106D
Signing time: Sat 14 Mar 2026 15:01:05 +0000
Manifest this update: Sat 14 Mar 2026 15:01:05 +0000
Manifest next update: Sun 15 Mar 2026 15:01:05 +0000
Files and hashes: 1: 41UHcYawFZ6dwCf_FfKVxB6pAyA.roa (hash: mxz0vZfXkFbrjS45D2R+Mi2lF9MSSxAbkahXO8KfBYc=)
2: QGYnM7yHPRPh-fZujf91yCDV0vc.crl (hash: k1kA5rOLozCHHdcAvxCHjekvoObjTwdPexIpY9UP2P0=)
3: mEv1kE1lMotDr8sLFZWQmH30hS8.asa (hash: m7PDerWM5bgHRSI7c7j1m1H/GiwRpECGmTbUoXbAV4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 15:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ec:dd:80:44:2e:40:11:8f:32:7d:97:e4:ce:0a:09:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Validity
Not Before: Mar 14 15:01:05 2026 GMT
Not After : Mar 15 15:01:05 2026 GMT
Subject: CN=9493819cd04440de71936b0f6389a02403df4195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:75:58:22:4d:ce:5f:47:91:ac:62:2d:d0:c5:
b2:eb:b0:44:82:17:33:2f:8c:fb:91:c1:a5:36:a8:
7f:d8:43:a2:33:a3:cd:39:db:58:0a:df:42:40:25:
12:26:50:ce:c6:08:ce:ae:ea:b7:14:33:cd:8c:18:
28:cf:79:34:cd:9c:be:fe:28:ef:84:16:e0:46:d3:
ee:c4:3b:3c:57:43:74:e5:4f:1f:9a:27:cf:4f:9c:
09:13:df:6b:4c:cf:54:8b:8e:87:6f:1a:ef:c6:74:
db:05:8b:d6:72:77:e0:54:34:3a:b1:75:fe:c2:87:
c1:2a:dd:bb:04:1c:35:b5:09:be:c2:21:fa:aa:39:
31:4e:21:62:cd:e7:5d:71:f1:a5:b0:0c:c5:5e:9d:
07:ff:b7:0c:85:aa:f3:f7:a3:19:5e:ab:d3:81:cc:
27:5e:e7:20:53:fb:84:44:a5:98:c1:1f:cf:04:ef:
06:ef:88:74:88:11:7f:ef:67:29:8e:04:ee:81:0a:
b8:bb:35:e0:bd:f3:62:1e:c4:4a:d9:23:c5:7e:d8:
de:28:37:2e:77:33:d4:b3:a5:d6:0d:10:f6:33:c0:
79:5e:9c:0c:57:67:61:c2:0b:16:ad:98:0f:29:53:
fe:93:90:47:2a:91:21:02:41:13:27:92:51:7b:84:
0f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:93:81:9C:D0:44:40:DE:71:93:6B:0F:63:89:A0:24:03:DF:41:95
X509v3 Authority Key Identifier:
keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:af:50:9c:8d:f5:1e:fc:1e:f0:94:5f:27:20:9f:64:05:51:
c1:e9:0e:5d:41:7a:32:de:ac:c8:d9:e6:b7:c2:36:3c:54:08:
42:e3:25:91:bd:ac:01:45:70:d3:69:8a:c3:93:38:0b:13:83:
3d:83:b2:91:70:80:56:89:15:10:1a:35:95:ed:7f:85:4f:7c:
fd:84:a2:f6:ec:d5:d9:6c:1b:15:8e:c2:2e:e9:5f:c4:e1:4a:
fc:dd:a6:81:c0:5b:1c:d7:aa:95:63:72:ac:97:2c:98:55:25:
2f:62:e8:33:75:fc:8b:4f:a9:02:66:fd:a9:92:05:ba:94:a6:
34:b3:0f:d7:53:2a:4e:d6:b5:39:a2:fd:97:74:66:cc:2a:d1:
5d:25:b4:06:17:f3:88:47:ba:9a:a4:2e:2d:b0:e3:05:d4:6b:
30:fa:e7:0a:94:1d:67:6c:b9:3d:46:a2:6c:50:52:9f:97:22:
42:23:3d:9c:c1:4e:b5:0d:1e:2e:9b:18:87:44:95:38:cc:26:
1a:a7:8d:ac:b7:df:e7:0b:4e:21:0f:a0:81:e4:4d:38:81:2f:
6b:6b:2a:7d:99:fe:95:91:d8:71:53:d8:b4:97:f5:9b:52:ec:
96:b8:4d:53:95:48:32:b4:29:1c:c2:4d:e2:14:84:70:a1:e8:
05:c2:69:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 23:33:08 2026 by rpki-client