Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
File: QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft (raw, json)
Hash identifier: APJwH9DWW9Ra1orrqef30hHl9gb07zTkpii2WPw6aNI=
Subject key identifier: 43:7B:72:CA:A6:19:E5:B4:59:96:EA:39:2A:D3:9A:D3:15:69:B9:41
Authority key identifier: 40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06
Certificate issuer: /CN=405ffc74ae92386afb7ce770f0390e90d4cde306
Certificate serial: 019E7D43AEFDA408E45DD10B07243A85AB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
Manifest number: 057F
Signing time: Sun 31 May 2026 09:00:48 +0000
Manifest this update: Sun 31 May 2026 09:00:48 +0000
Manifest next update: Mon 01 Jun 2026 09:00:48 +0000
Files and hashes: 1: QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl (hash: Motlp3TyxSFoCqJ0auyoGkkfkQazdpEHRVhwLRHr+Qc=)
2: wMAaF9FeE8vQPeGbyh-_gFZr-RQ.roa (hash: U3G2ZKAfz9i+c+9iabqEffqSxjMJIKuTC8d9C/LqbOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 09:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7d:43:ae:fd:a4:08:e4:5d:d1:0b:07:24:3a:85:ab:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=405ffc74ae92386afb7ce770f0390e90d4cde306
Validity
Not Before: May 31 09:00:48 2026 GMT
Not After : Jun 1 09:00:48 2026 GMT
Subject: CN=437b72caa619e5b45996ea392ad39ad31569b941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7a:5f:2a:70:a2:fe:79:e5:f4:64:c2:ff:ca:
1b:98:a0:b5:58:87:8c:b8:49:58:2b:a2:94:1a:a8:
8d:87:bf:08:03:d6:0e:3c:e9:b5:83:30:fe:1c:8e:
6b:25:f1:20:d5:8c:d2:97:df:46:50:a6:bd:17:99:
63:d8:4d:b1:62:c8:d2:78:62:76:ad:0b:45:90:55:
4a:e1:1d:6f:b2:d8:58:87:c9:60:a4:5d:48:5f:5a:
39:59:dc:44:ee:68:72:5d:33:c0:a4:2d:93:8f:71:
a7:0d:b5:37:0b:ec:25:0a:a3:64:c5:f1:88:99:39:
69:3e:45:ea:da:be:9d:fa:fe:9f:5f:66:56:b0:51:
ea:ab:29:40:e0:c5:b4:4e:c6:d8:49:76:1c:14:09:
7f:a4:6e:cc:91:c5:25:74:4a:29:77:1e:4b:36:c2:
ef:5b:73:95:ce:58:07:8b:56:00:f0:3f:71:4e:49:
9d:6e:3b:59:25:56:b4:79:9e:94:9a:6c:af:5c:66:
14:60:bf:9b:cf:76:4a:ff:f5:66:63:d1:73:32:6d:
6a:fa:13:65:d3:6a:4c:d2:6b:20:d0:b9:74:66:a9:
74:82:59:05:79:8c:71:10:9c:6c:2b:5f:b9:47:14:
1e:f2:da:33:dc:b3:ef:a0:8e:31:68:1e:4e:73:41:
bd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:7B:72:CA:A6:19:E5:B4:59:96:EA:39:2A:D3:9A:D3:15:69:B9:41
X509v3 Authority Key Identifier:
keyid:40:5F:FC:74:AE:92:38:6A:FB:7C:E7:70:F0:39:0E:90:D4:CD:E3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QF_8dK6SOGr7fOdw8DkOkNTN4wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b1fd7a-2e26-4a5d-802d-7246aefcd272/1/QF_8dK6SOGr7fOdw8DkOkNTN4wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:eb:57:d0:e7:eb:32:fc:b2:15:68:ec:4b:e3:13:01:80:f5:
04:6f:a5:78:fb:17:dc:e0:86:2b:4e:40:e9:ef:1e:ce:ae:59:
01:f0:27:44:af:2b:4e:06:8e:20:e8:9e:4c:97:a9:91:8c:39:
19:77:1c:07:92:73:78:29:d5:52:f7:51:48:2c:c0:2d:59:af:
5b:b4:25:aa:7f:4f:02:e7:f3:55:15:27:c7:ea:3d:5a:ab:3b:
05:1b:98:cd:3c:3b:ce:54:ff:7c:32:89:bd:a2:ab:a5:1b:9e:
b1:e8:63:b3:d9:d6:0d:75:ad:cb:b2:db:3c:e0:83:28:df:56:
32:00:97:7e:bb:41:43:d2:e4:a8:05:d5:93:3e:e2:af:26:78:
fe:02:cd:19:31:82:bb:13:46:1f:b9:a0:7b:73:ce:d5:80:f4:
c7:19:ea:91:fc:1b:a5:1d:f6:14:21:0e:d1:1d:97:03:de:17:
9f:77:a9:b9:f9:cc:34:b8:2b:d3:d5:f2:c4:9c:f5:b2:6e:5c:
b0:98:d9:c1:40:c5:f7:ba:7c:b8:7b:ec:75:a1:38:c3:73:2c:
7f:a2:a4:09:ed:9d:33:aa:f0:70:51:44:2f:84:74:0f:bd:ff:
44:f8:b5:42:66:7c:77:27:5f:1d:78:e0:a0:b3:76:29:ff:f1:
bf:c5:1f:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ59Q679pAjkXdELByQ6hatdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNWZmYzc0YWU5MjM4NmFmYjdjZTc3MGYwMzkwZTkwZDRj
ZGUzMDYwHhcNMjYwNTMxMDkwMDQ4WhcNMjYwNjAxMDkwMDQ4WjAzMTEwLwYDVQQD
Eyg0MzdiNzJjYWE2MTllNWI0NTk5NmVhMzkyYWQzOWFkMzE1NjliOTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2HpfKnCi/nnl9GTC/8obmKC1WIeM
uElYK6KUGqiNh78IA9YOPOm1gzD+HI5rJfEg1YzSl99GUKa9F5lj2E2xYsjSeGJ2
rQtFkFVK4R1vsthYh8lgpF1IX1o5WdxE7mhyXTPApC2Tj3GnDbU3C+wlCqNkxfGI
mTlpPkXq2r6d+v6fX2ZWsFHqqylA4MW0TsbYSXYcFAl/pG7MkcUldEopdx5LNsLv
W3OVzlgHi1YA8D9xTkmdbjtZJVa0eZ6UmmyvXGYUYL+bz3ZK//VmY9FzMm1q+hNl
02pM0msg0Ll0Zql0glkFeYxxEJxsK1+5RxQe8toz3LPvoI4xaB5Oc0G99QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEN7csqmGeW0WZbqOSrTmtMVablBMB8GA1UdIwQY
MBaAFEBf/HSukjhq+3zncPA5DpDUzeMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iMWZkN2EtMmUyNi00YTVkLTgwMmQt
NzI0NmFlZmNkMjcyLzEvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9iMWZkN2EtMmUyNi00YTVkLTgwMmQtNzI0NmFlZmNkMjcy
LzEvUUZfOGRLNlNPR3I3Zk9kdzhEa09rTlRONHdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU+tX0Ofr
MvyyFWjsS+MTAYD1BG+lePsX3OCGK05A6e8ezq5ZAfAnRK8rTgaOIOieTJepkYw5
GXccB5JzeCnVUvdRSCzALVmvW7Qlqn9PAufzVRUnx+o9Wqs7BRuYzTw7zlT/fDKJ
vaKrpRuesehjs9nWDXWty7LbPOCDKN9WMgCXfrtBQ9LkqAXVkz7iryZ4/gLNGTGC
uxNGH7mge3PO1YD0xxnqkfwbpR32FCEO0R2XA94Xn3epufnMNLgr09XyxJz1sm5c
sJjZwUDF97p8uHvsdaE4w3Msf6KkCe2dM6rwcFFEL4R0D73/RPi1QmZ8dydfHXjg
oLN2Kf/xv8UfcQ==
-----END CERTIFICATE-----
Generated at Sun May 31 18:56:33 2026 by rpki-client