Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: fdZbUHTkADKUKBL4XxcxjL1pGNVmqKdl4Cx9lxi68qU=
Subject key identifier: A6:A8:6B:C8:B2:F8:27:D4:F7:50:1E:1F:E5:81:D6:98:1D:D5:53:E3
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 019D382E74145BC0533B2557A64F272CCF66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 06:01:01 +0000
Manifest this update: Sun 29 Mar 2026 06:01:01 +0000
Manifest next update: Mon 30 Mar 2026 06:01:01 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: OFhfdNLTt/p18pX3TKsMqedtR3eUJU6SEA19TCz6PCg=)
2: hVrll11zraZlwu0aoJ27lTvgIvM.roa (hash: p+52m9VvNKJJpUqhG5dFcaxf3Gx9Tk084ipIrkRQ47E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:74:14:5b:c0:53:3b:25:57:a6:4f:27:2c:cf:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Mar 29 06:01:01 2026 GMT
Not After : Mar 30 06:01:01 2026 GMT
Subject: CN=a6a86bc8b2f827d4f7501e1fe581d6981dd553e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b4:8c:f2:ed:56:83:00:d4:79:07:9c:cf:87:
45:fe:90:fa:4a:db:44:8b:42:ff:c1:c1:89:6e:57:
51:85:42:66:eb:e2:a4:f6:4d:41:2f:51:ac:a3:ef:
78:bf:d5:95:bc:76:ce:de:bd:c2:cd:0f:c8:c2:60:
28:f6:53:e1:82:75:37:f4:07:32:a6:69:d6:64:d1:
d9:3b:2a:d3:93:6b:02:94:0a:8f:d2:02:b6:0c:76:
3a:6a:a4:cf:33:1b:9c:e4:56:57:a6:bb:8a:d6:e3:
d6:ee:c0:1c:c3:ae:58:d1:2c:81:e1:05:3a:76:6b:
2d:a2:f7:35:0b:50:b1:71:47:bc:ad:d7:9b:1e:97:
cc:b5:5c:c1:41:8d:45:8c:77:0a:4a:5f:54:82:d8:
00:ae:f6:b0:15:72:3d:1a:5f:a9:5a:3c:9a:f7:64:
4c:40:20:fb:a1:fe:ad:38:ce:1d:16:aa:76:80:85:
8b:58:54:2f:f6:97:f1:fb:48:6c:3e:e3:55:d0:9b:
2a:c9:de:5c:e3:9a:27:cc:12:36:a8:04:de:a8:f8:
10:c0:46:01:42:2d:97:e1:e6:99:4d:87:80:0e:ab:
c7:fd:4e:f0:28:7c:6d:c2:b5:3b:a1:71:a6:59:c5:
88:80:3f:ca:ad:4f:ab:cb:a5:2e:7b:fd:9f:4e:4c:
87:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:A8:6B:C8:B2:F8:27:D4:F7:50:1E:1F:E5:81:D6:98:1D:D5:53:E3
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:22:fc:3c:0a:5e:a0:df:b0:cf:2a:4a:da:2a:bc:4e:d2:11:
d5:2c:e6:4a:4c:5f:90:72:ab:b2:cf:62:eb:81:7d:2c:91:98:
da:54:bd:e6:04:ac:9a:73:8c:b3:46:a6:26:1e:34:24:fc:25:
bc:88:6e:ac:24:15:4b:4e:cf:f1:93:e9:e9:da:4a:f4:8c:5b:
c3:c5:62:e7:f0:a2:da:3a:9f:ff:65:b1:1e:5a:34:05:c3:96:
af:17:ed:4b:42:c4:ed:5a:a2:a6:47:b3:61:ea:3b:37:b9:c6:
7c:5c:a4:5b:c2:fc:10:0f:08:1e:ed:44:53:d1:87:98:07:b9:
20:07:09:c1:1b:e2:a8:43:fa:bc:58:c4:76:7e:d1:09:57:5b:
80:38:58:ee:e5:f6:4a:43:c4:06:5f:ef:ed:58:d9:c4:33:11:
df:f2:7f:f5:33:e1:ad:5e:09:c0:3b:30:ac:7c:65:cd:5c:d6:
c3:c2:05:57:c1:f6:d3:44:e2:52:a4:f2:51:45:d0:02:53:3d:
a0:70:1f:e4:b2:16:64:07:1b:e5:51:e7:fa:6b:32:70:48:1b:
ca:e7:ce:2f:dd:c8:db:1f:57:5c:14:93:36:7f:56:ec:2d:de:
4c:01:d1:90:40:72:80:ef:2c:d0:f5:5a:f6:3f:6a:b8:0f:e4:
93:1a:5b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:53 2026 by rpki-client