Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft
File: QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft (raw, json)
Hash identifier: d5G0CTOz/dAEUWEmowk9UqVQAk3NXZCSex4aArX9OIc=
Subject key identifier: A8:C3:DA:0C:A7:CA:3B:7F:3F:44:FC:6E:C6:13:29:06:58:12:9D:6D
Authority key identifier: 40:E6:34:BD:C3:0C:0C:4B:5F:79:45:F3:D0:41:E2:35:05:BC:D1:59
Certificate issuer: /CN=40e634bdc30c0c4b5f7945f3d041e23505bcd159
Certificate serial: 019D3789155F44D6DEA93ACCE93AD1065A5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft
Manifest number: 01F2
Signing time: Sun 29 Mar 2026 03:00:23 +0000
Manifest this update: Sun 29 Mar 2026 03:00:23 +0000
Manifest next update: Mon 30 Mar 2026 03:00:23 +0000
Files and hashes: 1: Otng_ezlHXU4kxRwo4HMGqBulxQ.roa (hash: ZzUAW/zmUDDboHtiC8pCPo3qWbKB9FgFtOseaATnUSk=)
2: QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl (hash: RPG6x/0L8mvXvXodOybOFw6gqzsr7p+uvKg66cqHh1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:15:5f:44:d6:de:a9:3a:cc:e9:3a:d1:06:5a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e634bdc30c0c4b5f7945f3d041e23505bcd159
Validity
Not Before: Mar 29 03:00:23 2026 GMT
Not After : Mar 30 03:00:23 2026 GMT
Subject: CN=a8c3da0ca7ca3b7f3f44fc6ec613290658129d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:46:86:8e:55:8b:9a:2c:d9:a9:fd:22:b3:68:
ef:c5:99:97:99:26:99:9e:c0:4a:fb:9a:08:7e:b5:
c1:fb:5b:24:54:d0:8e:59:af:a5:7f:87:f5:64:1f:
9d:89:e3:73:af:d3:68:6f:a5:0c:57:e2:40:24:e8:
4a:4e:25:b1:cb:4b:f1:31:6f:63:d1:a9:7a:65:a1:
a0:86:d1:b5:22:31:63:fa:60:3f:15:2f:23:ad:6f:
36:6c:c6:3f:46:2a:75:b8:84:12:1a:9d:1c:47:25:
7b:ee:66:4a:f4:ca:f3:1a:12:4f:2b:ec:68:62:77:
90:c6:f6:c4:c7:43:45:27:b2:5b:2e:e3:69:b3:08:
f2:54:4f:96:c9:9b:99:d4:14:4c:a2:72:1a:51:d7:
0e:33:79:3f:5f:b6:5b:d8:6b:d8:8c:50:57:9f:4f:
ce:e9:ee:d0:a5:ff:bc:3d:02:12:e6:78:22:ac:47:
3a:91:4d:cd:60:68:d1:8f:90:5f:4a:d8:96:b4:f6:
02:c2:bb:06:b8:79:53:ff:ce:0f:39:b1:2c:ed:28:
9a:c6:b3:04:8c:fd:66:a6:af:8c:46:ef:ca:3b:e8:
02:3d:78:b8:00:ee:93:a1:d5:63:2b:11:18:a7:4e:
0a:07:10:9b:90:31:d9:10:e8:d8:14:bb:32:d6:7a:
e2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C3:DA:0C:A7:CA:3B:7F:3F:44:FC:6E:C6:13:29:06:58:12:9D:6D
X509v3 Authority Key Identifier:
keyid:40:E6:34:BD:C3:0C:0C:4B:5F:79:45:F3:D0:41:E2:35:05:BC:D1:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOY0vcMMDEtfeUXz0EHiNQW80Vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c33731-3c52-4c85-9789-bd27afad9c3d/1/QOY0vcMMDEtfeUXz0EHiNQW80Vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:bd:93:77:c9:ac:10:1e:b0:42:a7:e5:43:f8:b4:4a:c8:2b:
ef:4b:3b:f9:80:57:7f:e1:65:dd:cf:45:f5:21:2e:dc:59:be:
92:58:e2:04:9f:72:0d:f9:f5:a9:82:50:04:3a:57:f6:08:3f:
19:ec:59:01:3b:61:3d:b8:c1:ca:86:34:0c:7b:05:bd:96:1e:
60:1e:2b:b3:54:49:93:98:f2:7a:b1:97:21:bd:a3:d0:9b:d3:
56:5a:20:8f:20:40:03:b4:1a:fd:ea:dd:92:88:3a:e2:99:51:
1c:ea:2b:a9:a6:9b:b2:37:49:80:31:6b:66:92:4a:52:cd:88:
58:a8:d2:c1:2f:3b:6a:a1:4e:54:9c:c1:13:53:51:15:87:8e:
22:ef:33:02:e8:d1:e8:e2:96:8c:0a:4f:26:c2:9b:6c:f5:7b:
6c:ce:ce:e3:88:57:1c:ac:85:13:a8:21:95:a5:11:22:86:49:
ef:6b:4c:3b:dd:da:2c:f0:cd:25:06:9e:02:d9:f5:a6:b8:f5:
2f:51:80:60:e5:ab:46:e4:3b:85:7e:cf:4a:2d:78:f5:64:87:
c0:60:9d:fd:36:bc:36:75:43:25:b8:ff:0c:2d:a0:5f:cc:0e:
db:08:0a:93:e0:15:79:44:2c:25:a4:72:c8:2c:20:ab:f8:12:
d6:62:0e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:37 2026 by rpki-client