Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/63cbaf-8e00-4670-9d77-0dd7b6bc7b70/1/QLDQKKMXDjvlD4sSUNk4PpQtInw.mft
File: QLDQKKMXDjvlD4sSUNk4PpQtInw.mft (raw, json)
Hash identifier: aL3mRtiqR+V96A+irx/RDU5evJhhYVqjPbAyZECwdY4=
Subject key identifier: 65:A8:45:95:32:76:07:63:07:A4:4B:4A:EE:42:D2:62:82:40:51:BE
Authority key identifier: 40:B0:D0:28:A3:17:0E:3B:E5:0F:8B:12:50:D9:38:3E:94:2D:22:7C
Certificate issuer: /CN=40b0d028a3170e3be50f8b1250d9383e942d227c
Certificate serial: 019D389BF3D6B9BA6DBBB042BCF8409980D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLDQKKMXDjvlD4sSUNk4PpQtInw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/63cbaf-8e00-4670-9d77-0dd7b6bc7b70/1/QLDQKKMXDjvlD4sSUNk4PpQtInw.mft
Manifest number: 7C
Signing time: Sun 29 Mar 2026 08:00:37 +0000
Manifest this update: Sun 29 Mar 2026 08:00:37 +0000
Manifest next update: Mon 30 Mar 2026 08:00:37 +0000
Files and hashes: 1: BDHXDDXoCsj30WuW_nb_s2twzHk.roa (hash: JogoexYjjvEqZGnjzL9vV6cn3mL5CgVYSfWL0GVZIvM=)
2: QLDQKKMXDjvlD4sSUNk4PpQtInw.crl (hash: w9O1kqohZlKu7XgExTAZLJfFxgDiaY7SXKgkqSfRBbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/63cbaf-8e00-4670-9d77-0dd7b6bc7b70/1/QLDQKKMXDjvlD4sSUNk4PpQtInw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/63cbaf-8e00-4670-9d77-0dd7b6bc7b70/1/QLDQKKMXDjvlD4sSUNk4PpQtInw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLDQKKMXDjvlD4sSUNk4PpQtInw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:f3:d6:b9:ba:6d:bb:b0:42:bc:f8:40:99:80:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b0d028a3170e3be50f8b1250d9383e942d227c
Validity
Not Before: Mar 29 08:00:37 2026 GMT
Not After : Mar 30 08:00:37 2026 GMT
Subject: CN=65a845953276076307a44b4aee42d262824051be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:7d:b4:75:21:59:fb:b4:96:cb:f0:2c:80:a8:
ec:52:c0:02:af:17:90:7b:f1:03:ed:e3:bb:e6:88:
91:a7:e9:29:b6:c2:79:ae:f6:f3:90:4b:bb:a3:02:
be:01:0d:d8:e1:5b:4f:cc:3e:63:7a:84:20:4d:a3:
bd:bd:a6:b3:45:d8:11:25:68:a0:1d:8d:92:58:d1:
f3:32:12:dd:33:27:00:7c:74:92:25:8a:a0:e7:fc:
0d:34:61:f6:a5:27:a8:5b:90:a1:43:d3:ba:90:9b:
26:0f:22:a2:f4:25:99:f2:ea:18:24:16:71:ea:5f:
11:68:01:87:e9:61:94:d0:a8:cf:73:88:a9:3f:08:
3e:51:87:6b:49:69:9a:65:79:07:e5:9c:4c:4a:18:
1a:a4:e0:e4:9a:64:b2:4b:62:9b:59:cf:aa:e0:52:
02:c4:90:f1:51:07:35:89:b3:8b:2b:ab:e5:de:7c:
2c:e0:9d:7c:ed:fd:7c:0e:9d:68:b4:8c:b5:c1:09:
61:b9:7c:0d:5a:79:ff:b6:6d:6e:22:48:67:db:32:
ab:fd:19:24:dd:02:86:65:7b:03:cd:a8:cb:e4:00:
82:10:09:31:e0:12:90:4a:b3:a7:29:d9:75:d5:22:
64:89:66:21:e1:b6:99:61:8a:87:68:c3:0b:0e:ed:
97:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A8:45:95:32:76:07:63:07:A4:4B:4A:EE:42:D2:62:82:40:51:BE
X509v3 Authority Key Identifier:
keyid:40:B0:D0:28:A3:17:0E:3B:E5:0F:8B:12:50:D9:38:3E:94:2D:22:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLDQKKMXDjvlD4sSUNk4PpQtInw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/63cbaf-8e00-4670-9d77-0dd7b6bc7b70/1/QLDQKKMXDjvlD4sSUNk4PpQtInw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/63cbaf-8e00-4670-9d77-0dd7b6bc7b70/1/QLDQKKMXDjvlD4sSUNk4PpQtInw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:2c:37:d6:7b:36:9a:f0:1b:09:10:14:27:2e:d5:c4:74:cb:
0e:f6:c5:8f:f3:5f:d8:fa:16:4a:1a:6e:d2:cf:2c:a7:48:25:
66:a0:0c:14:11:b8:bb:c0:2f:fb:25:f2:35:f4:88:8b:7c:c8:
b3:a4:15:3e:55:89:94:7e:46:f3:94:27:72:38:97:89:b6:18:
88:f4:19:ff:01:94:d0:28:c3:71:91:15:4b:b1:0f:91:4d:6a:
99:13:6d:00:80:91:79:20:47:3e:6b:47:d4:6f:d5:78:e2:02:
e0:42:4c:a5:3e:a4:f7:ed:7e:eb:6a:2b:3d:e7:f6:00:79:8d:
cf:c5:36:3e:6e:41:19:43:8a:ce:a8:af:5a:d7:90:ed:f3:1d:
83:75:99:c2:a3:92:08:56:64:6f:77:78:f6:1a:24:90:6b:3b:
e0:ee:c1:04:b7:54:d0:15:df:1b:6e:2a:29:39:59:4a:e9:78:
d3:16:37:39:ad:26:04:16:76:7d:46:c8:40:7a:cd:a5:49:50:
2c:f2:c7:d3:b5:ef:7a:4c:2c:15:81:7c:fc:54:f7:50:4b:16:
6c:73:3f:a8:f0:a2:07:f9:a7:58:db:a1:4d:1a:fa:73:9b:f6:
4d:3e:95:31:77:d8:bd:44:ba:e2:da:2b:56:b2:86:98:21:84:
39:f1:05:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:32 2026 by rpki-client