Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
File: QGYnM7yHPRPh-fZujf91yCDV0vc.mft (raw, json)
Hash identifier: 6ZK291Fzd5xhMv9073RCZsPfgRcMGuxpsYqtYVR5LpE=
Subject key identifier: B7:31:B9:8D:B2:3D:42:7E:93:A1:AC:35:EA:5E:01:12:24:3C:33:39
Authority key identifier: 40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
Certificate issuer: /CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Certificate serial: 019CC0724506D5C4D1304D5E5AB738709BF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
Manifest number: 1056
Signing time: Fri 06 Mar 2026 00:00:40 +0000
Manifest this update: Fri 06 Mar 2026 00:00:40 +0000
Manifest next update: Sat 07 Mar 2026 00:00:40 +0000
Files and hashes: 1: 41UHcYawFZ6dwCf_FfKVxB6pAyA.roa (hash: mxz0vZfXkFbrjS45D2R+Mi2lF9MSSxAbkahXO8KfBYc=)
2: QGYnM7yHPRPh-fZujf91yCDV0vc.crl (hash: 426AIRiWxk4XBpPkjubEgVTSDMpqSNLs8A1i/JPUQiE=)
3: mEv1kE1lMotDr8sLFZWQmH30hS8.asa (hash: m7PDerWM5bgHRSI7c7j1m1H/GiwRpECGmTbUoXbAV4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 00:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c0:72:45:06:d5:c4:d1:30:4d:5e:5a:b7:38:70:9b:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40662733bc873d13e1f9f66e8dff75c820d5d2f7
Validity
Not Before: Mar 6 00:00:40 2026 GMT
Not After : Mar 7 00:00:40 2026 GMT
Subject: CN=b731b98db23d427e93a1ac35ea5e0112243c3339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ed:67:e4:ba:7f:c1:66:d3:f8:af:00:fe:da:
2a:a7:04:97:be:ff:54:65:a6:9a:d9:8e:63:ee:d8:
ca:29:ed:2d:b8:67:3a:7c:1d:15:06:d0:bf:b0:a4:
e9:5d:f0:a9:6c:29:f3:0d:ac:30:1f:97:f8:06:77:
ac:88:1d:67:e0:85:6e:99:bc:26:a1:de:d4:f8:fd:
06:7b:ef:20:e6:9e:90:7b:a4:75:0c:d9:32:fe:9a:
98:a5:a1:66:63:14:af:6e:04:90:9f:82:8b:73:cd:
3d:4b:09:1e:60:11:f6:3c:16:1e:ce:3d:bb:a2:b8:
68:47:b0:34:7f:33:c2:1e:3b:0c:a4:e0:ad:ba:41:
77:4b:fd:59:f9:11:44:d6:37:55:7b:d6:86:36:09:
f7:67:fc:97:ba:ef:bb:b5:29:3c:2d:1f:3d:3a:d2:
68:45:f3:f6:6e:95:d4:64:b5:98:05:20:5a:00:05:
6d:2f:b9:dd:13:d7:01:8e:3b:da:76:19:45:99:b6:
a2:8b:92:84:0a:12:0d:de:87:0b:8b:78:ac:2e:3e:
5a:c7:fb:6a:69:3f:a3:d1:07:05:5d:c9:b0:d4:b6:
24:aa:28:c4:ae:73:b5:d0:91:f0:0c:47:63:af:ab:
03:ae:e1:0a:64:93:b1:73:d4:93:26:50:2f:3c:ae:
50:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:31:B9:8D:B2:3D:42:7E:93:A1:AC:35:EA:5E:01:12:24:3C:33:39
X509v3 Authority Key Identifier:
keyid:40:66:27:33:BC:87:3D:13:E1:F9:F6:6E:8D:FF:75:C8:20:D5:D2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGYnM7yHPRPh-fZujf91yCDV0vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/d910d1-94c6-4412-8506-9cb51e51ff77/1/QGYnM7yHPRPh-fZujf91yCDV0vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:43:f7:d2:ac:87:f8:30:c0:84:c1:ea:c8:3f:5a:2d:28:94:
f8:fa:55:dd:96:2a:98:ff:1d:27:16:84:4c:b2:10:18:c0:69:
8c:dd:3d:6b:48:b0:80:4d:a3:d1:dc:f0:70:2e:6d:b4:c9:c4:
2a:92:a1:9b:05:98:2a:bd:dd:3a:90:92:37:fc:fa:78:ec:3f:
39:24:53:85:fb:98:5f:c7:e2:f8:b2:34:ab:08:3d:e5:90:47:
1e:77:e6:e4:48:ab:a9:a7:2b:90:d3:e5:0a:97:84:35:52:12:
d8:66:ee:49:2a:fc:5d:c3:75:ab:ff:b0:45:07:1e:13:74:d6:
d3:77:95:3c:59:9d:42:aa:67:98:a1:04:71:42:2b:39:d5:2d:
ce:94:f5:9f:a5:0a:82:85:ea:31:52:c5:13:e1:a7:80:86:6d:
3e:29:dd:d7:ad:9d:58:27:47:37:d6:97:c5:5a:6f:84:10:a4:
21:01:e4:bf:fd:e2:42:ee:1c:c4:bb:64:81:70:3d:1f:7c:39:
4b:37:87:7f:24:5b:9f:ee:3b:cb:b3:b3:77:25:c9:be:11:f9:
21:66:ed:16:f7:bb:d4:97:3a:9a:4c:4e:5b:d4:79:37:94:37:
5f:e3:c1:03:aa:20:82:45:8b:3a:be:a0:27:8c:5c:e9:77:b2:
0e:fc:93:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 04:01:46 2026 by rpki-client