Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
File: QpBWwzjRbJLN_aHlXQk2givFDNI.mft (raw, json)
Hash identifier: SvF4vT64iaGtLl7OUpVqZVYEchjAEilt9oxGiYPSUJM=
Subject key identifier: AA:09:3D:C4:42:C7:27:5B:DC:97:32:67:4A:F6:01:F1:37:32:33:F2
Authority key identifier: 42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2
Certificate issuer: /CN=429056c338d16c92cdfda1e55d0936822bc50cd2
Certificate serial: 019D3909ED92D595C14D43C8E41CF1961F6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
Manifest number: 0724
Signing time: Sun 29 Mar 2026 10:00:45 +0000
Manifest this update: Sun 29 Mar 2026 10:00:45 +0000
Manifest next update: Mon 30 Mar 2026 10:00:45 +0000
Files and hashes: 1: QpBWwzjRbJLN_aHlXQk2givFDNI.crl (hash: ip54gBGGAv0XRhX0JxqdZ7ySO5yqVYkoxipPJZuRh/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:ed:92:d5:95:c1:4d:43:c8:e4:1c:f1:96:1f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429056c338d16c92cdfda1e55d0936822bc50cd2
Validity
Not Before: Mar 29 10:00:45 2026 GMT
Not After : Mar 30 10:00:45 2026 GMT
Subject: CN=aa093dc442c7275bdc9732674af601f1373233f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c2:d2:df:0c:cb:1c:7d:fd:ea:f1:41:39:56:
af:dc:b5:34:44:07:2c:ab:11:c0:74:07:41:59:37:
85:7f:cc:53:c3:41:b9:c1:79:83:70:9e:2a:0e:9e:
5f:3e:04:ad:3b:73:6a:96:6d:40:b3:a3:86:58:3f:
c5:5b:af:6c:d5:26:dc:24:66:a4:fa:4f:33:3e:3a:
02:3a:e4:e9:2e:22:76:4e:46:d4:62:74:54:78:2c:
72:61:6f:73:6a:ee:13:5e:d0:cf:de:18:5d:41:f5:
b0:6f:d7:fb:43:3b:1b:f5:f6:72:72:04:1c:a0:5a:
12:c2:83:40:0d:3a:7c:4d:7b:b0:60:53:6f:fa:47:
c2:17:35:3d:64:70:0a:2a:fb:ce:7b:f3:39:6b:31:
93:98:6d:ee:b7:4e:70:1e:1d:c5:03:8a:4c:3d:76:
e7:fa:ba:66:51:55:d1:2a:0e:f9:f8:47:8c:34:e7:
5e:6c:d7:db:c3:9e:56:cd:52:43:86:ce:90:7d:35:
86:54:18:79:83:25:50:52:d5:06:18:18:89:8d:45:
54:e4:88:8f:49:55:2e:aa:38:96:8a:fe:02:4a:54:
4c:a3:bc:61:6f:21:ed:13:f6:4a:6b:15:db:05:07:
9c:3a:05:33:3d:7b:60:b4:56:78:e9:8a:d6:f9:cf:
26:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:09:3D:C4:42:C7:27:5B:DC:97:32:67:4A:F6:01:F1:37:32:33:F2
X509v3 Authority Key Identifier:
keyid:42:90:56:C3:38:D1:6C:92:CD:FD:A1:E5:5D:09:36:82:2B:C5:0C:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpBWwzjRbJLN_aHlXQk2givFDNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/513b77-9e3b-4a6c-9ed5-7f21d9befc2c/1/QpBWwzjRbJLN_aHlXQk2givFDNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:5a:b6:00:68:65:5a:72:b1:7f:3c:21:bb:f6:e6:75:b6:08:
bc:60:a8:ee:1e:b5:f7:ed:10:58:5d:81:42:c0:28:7b:44:f1:
b3:c0:4a:2d:98:f1:81:6b:5d:aa:b6:c2:3c:d0:c0:e4:44:69:
c5:25:88:7a:65:75:6c:ab:73:5f:af:0f:3a:ca:f8:ac:7d:91:
b0:d8:78:07:08:f2:04:27:1d:8b:b1:20:2d:a0:4f:06:f2:c0:
58:9e:48:ff:68:2a:84:4c:15:8f:35:56:66:db:fc:36:23:97:
23:34:14:88:23:a9:4c:9b:f0:52:d5:21:24:1a:fa:f7:b7:2d:
30:49:75:5d:09:7c:95:f3:45:b7:f2:ef:29:d0:8c:85:7c:7c:
32:b2:45:cc:e0:20:66:6d:f0:d7:98:52:5b:6b:5a:cd:77:b1:
f1:83:da:eb:6a:ac:7e:a0:10:23:df:14:d6:56:c6:33:e4:51:
0f:8e:f5:5f:48:3a:03:3f:91:c1:8e:56:ad:22:8a:25:a1:ba:
2c:b0:56:85:ee:6d:05:e9:e2:50:b7:ca:64:d4:63:22:07:f1:
ea:97:2d:b8:33:5a:8e:5a:6f:3f:0b:e6:71:b8:09:d4:7a:05:
84:c4:68:c7:29:6f:72:4c:4d:eb:40:51:45:aa:b3:a6:8b:49:
9a:a1:55:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Ce2S1ZXBTUPI5Bzxlh9tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyOTA1NmMzMzhkMTZjOTJjZGZkYTFlNTVkMDkzNjgyMmJj
NTBjZDIwHhcNMjYwMzI5MTAwMDQ1WhcNMjYwMzMwMTAwMDQ1WjAzMTEwLwYDVQQD
EyhhYTA5M2RjNDQyYzcyNzViZGM5NzMyNjc0YWY2MDFmMTM3MzIzM2YyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18LS3wzLHH396vFBOVav3LU0RAcs
qxHAdAdBWTeFf8xTw0G5wXmDcJ4qDp5fPgStO3Nqlm1As6OGWD/FW69s1SbcJGak
+k8zPjoCOuTpLiJ2TkbUYnRUeCxyYW9zau4TXtDP3hhdQfWwb9f7Qzsb9fZycgQc
oFoSwoNADTp8TXuwYFNv+kfCFzU9ZHAKKvvOe/M5azGTmG3ut05wHh3FA4pMPXbn
+rpmUVXRKg75+EeMNOdebNfbw55WzVJDhs6QfTWGVBh5gyVQUtUGGBiJjUVU5IiP
SVUuqjiWiv4CSlRMo7xhbyHtE/ZKaxXbBQecOgUzPXtgtFZ46YrW+c8mkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKoJPcRCxydb3JcyZ0r2AfE3MjPyMB8GA1UdIwQY
MBaAFEKQVsM40WySzf2h5V0JNoIrxQzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy81MTNiNzctOWUzYi00YTZjLTllZDUt
N2YyMWQ5YmVmYzJjLzEvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy81MTNiNzctOWUzYi00YTZjLTllZDUtN2YyMWQ5YmVmYzJj
LzEvUXBCV3d6alJiSkxOX2FIbFhRazJnaXZGRE5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMVq2AGhl
WnKxfzwhu/bmdbYIvGCo7h619+0QWF2BQsAoe0Txs8BKLZjxgWtdqrbCPNDA5ERp
xSWIemV1bKtzX68POsr4rH2RsNh4BwjyBCcdi7EgLaBPBvLAWJ5I/2gqhEwVjzVW
Ztv8NiOXIzQUiCOpTJvwUtUhJBr697ctMEl1XQl8lfNFt/LvKdCMhXx8MrJFzOAg
Zm3w15hSW2tazXex8YPa62qsfqAQI98U1lbGM+RRD471X0g6Az+RwY5WrSKKJaG6
LLBWhe5tBeniULfKZNRjIgfx6pctuDNajlpvPwvmcbgJ1HoFhMRoxylvckxN60BR
RaqzpotJmqFVFQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:52 2026 by rpki-client