Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
File: DQMTeXANNd0Akr0GHGA-bLJWGnU.mft (raw, json)
Hash identifier: acFa6vaE1HPrPUqk7prQJ4Q6hhgk2VE8myCHBq7VA80=
Subject key identifier: 38:6F:C0:69:2C:E1:C7:9D:19:E8:3D:20:1C:42:DC:CE:6B:5D:85:58
Authority key identifier: 0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
Certificate issuer: /CN=0d031379700d35dd0092bd061c603e6cb2561a75
Certificate serial: 019D382E329E0582F02A8197F78B29B22671
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
Manifest number: 031D
Signing time: Sun 29 Mar 2026 06:00:44 +0000
Manifest this update: Sun 29 Mar 2026 06:00:44 +0000
Manifest next update: Mon 30 Mar 2026 06:00:44 +0000
Files and hashes: 1: 0pkuqzvhduSck3Ha7xOc7WG-8JA.roa (hash: o9t9fokSPRDcMcuSn/HePatJg9nqZBhL9E5qotJE2cw=)
2: DQMTeXANNd0Akr0GHGA-bLJWGnU.crl (hash: I2TImYqwsERR8o9B6FMeNDNYq8QEqpoN4s7X8puWTWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:32:9e:05:82:f0:2a:81:97:f7:8b:29:b2:26:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d031379700d35dd0092bd061c603e6cb2561a75
Validity
Not Before: Mar 29 06:00:44 2026 GMT
Not After : Mar 30 06:00:44 2026 GMT
Subject: CN=386fc0692ce1c79d19e83d201c42dcce6b5d8558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cb:67:fa:9b:f3:52:c3:85:1b:f3:25:53:b4:
c5:1c:73:af:83:99:7e:14:4c:e6:72:8a:6b:61:e7:
e2:b4:9d:a2:2e:47:d5:af:7f:26:92:2a:53:62:5f:
32:56:36:cc:0c:49:14:eb:63:9a:3b:1a:62:a4:5e:
94:29:63:e7:60:1a:74:68:eb:fe:c2:63:3c:72:de:
4e:2e:f8:42:31:a5:56:73:b9:a7:90:5d:d2:ba:cf:
2d:20:1a:4d:10:49:50:55:a8:aa:bc:20:18:6b:ad:
28:ab:0e:e1:cc:ab:65:d2:d6:7f:d6:8f:32:91:d2:
82:18:f8:47:15:5d:53:6f:19:d0:95:f0:81:f6:df:
79:e3:31:b6:1a:c0:6d:30:e4:ca:a7:6a:2e:05:7a:
05:56:7c:e7:dd:76:75:e0:65:98:01:09:db:03:a5:
38:e5:d3:5e:d6:ee:20:c2:ea:1d:5a:f0:f6:ef:84:
c2:34:b5:f5:fe:f5:41:fc:43:28:3b:8f:99:d6:0c:
52:d3:10:a2:69:7b:81:48:b9:22:4d:b6:03:d1:4d:
1c:46:74:c9:ff:08:8b:51:fe:98:91:07:fb:46:43:
33:db:7a:6e:e8:67:a5:ce:b9:3f:39:83:c0:a6:75:
bc:0c:29:3b:8b:74:e6:e4:ed:72:99:9c:17:0d:aa:
9f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:6F:C0:69:2C:E1:C7:9D:19:E8:3D:20:1C:42:DC:CE:6B:5D:85:58
X509v3 Authority Key Identifier:
keyid:0D:03:13:79:70:0D:35:DD:00:92:BD:06:1C:60:3E:6C:B2:56:1A:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQMTeXANNd0Akr0GHGA-bLJWGnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/409752-9d8c-40f5-9125-9c06737979d1/1/DQMTeXANNd0Akr0GHGA-bLJWGnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:7d:0c:84:79:47:17:41:de:df:13:88:72:92:f4:56:df:bb:
1a:10:21:d7:15:6f:45:44:40:04:b1:66:52:f1:2b:58:c1:89:
b1:3a:e7:6c:f7:44:b2:59:bb:61:27:81:fe:d8:ea:a2:cd:08:
af:9e:ab:36:3c:e3:7c:b8:79:89:4c:2a:7b:2b:8d:2a:e7:12:
7d:07:cb:ab:8c:0b:b0:f5:c3:30:c7:c3:93:d3:87:04:b3:e2:
8b:42:a9:c5:5a:d3:6a:6d:e0:c3:11:36:35:21:10:13:e7:85:
e6:ef:c0:b9:ba:ba:8c:2a:0c:5d:d5:44:c8:ab:a0:79:ed:e7:
a0:f5:71:4f:f1:d1:90:f8:cb:0f:3a:d5:02:10:6f:32:de:7c:
cc:0f:bf:95:c9:28:f2:43:ca:7e:5f:3a:ab:f0:93:45:db:57:
46:85:6a:56:12:0c:a4:44:35:37:4c:68:9e:32:e4:07:26:95:
a8:ba:1a:cd:4b:7a:cb:43:61:1e:89:9b:17:18:6d:a4:05:0b:
4e:c6:8a:51:6d:53:54:1a:9f:e5:09:e6:d4:6b:b7:2e:8c:4e:
d8:50:d0:73:53:85:77:9c:bd:0b:ae:c4:6b:65:5b:c7:1e:10:
4c:28:fa:2f:f8:fc:d5:e4:d9:06:6d:a6:2e:53:ec:67:95:27:
65:c9:27:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LjKeBYLwKoGX94spsiZxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkMDMxMzc5NzAwZDM1ZGQwMDkyYmQwNjFjNjAzZTZjYjI1
NjFhNzUwHhcNMjYwMzI5MDYwMDQ0WhcNMjYwMzMwMDYwMDQ0WjAzMTEwLwYDVQQD
EygzODZmYzA2OTJjZTFjNzlkMTllODNkMjAxYzQyZGNjZTZiNWQ4NTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08tn+pvzUsOFG/MlU7TFHHOvg5l+
FEzmcoprYefitJ2iLkfVr38mkipTYl8yVjbMDEkU62OaOxpipF6UKWPnYBp0aOv+
wmM8ct5OLvhCMaVWc7mnkF3Sus8tIBpNEElQVaiqvCAYa60oqw7hzKtl0tZ/1o8y
kdKCGPhHFV1TbxnQlfCB9t954zG2GsBtMOTKp2ouBXoFVnzn3XZ14GWYAQnbA6U4
5dNe1u4gwuodWvD274TCNLX1/vVB/EMoO4+Z1gxS0xCiaXuBSLkiTbYD0U0cRnTJ
/wiLUf6YkQf7RkMz23pu6Gelzrk/OYPApnW8DCk7i3Tm5O1ymZwXDaqfaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDhvwGks4cedGeg9IBxC3M5rXYVYMB8GA1UdIwQY
MBaAFA0DE3lwDTXdAJK9BhxgPmyyVhp1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFFNVGVYQU5OZDBBa3IwR0hHQS1iTEpXR25VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS80MDk3NTItOWQ4Yy00MGY1LTkxMjUt
OWMwNjczNzk3OWQxLzEvRFFNVGVYQU5OZDBBa3IwR0hHQS1iTEpXR25VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS80MDk3NTItOWQ4Yy00MGY1LTkxMjUtOWMwNjczNzk3OWQx
LzEvRFFNVGVYQU5OZDBBa3IwR0hHQS1iTEpXR25VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI30MhHlH
F0He3xOIcpL0Vt+7GhAh1xVvRURABLFmUvErWMGJsTrnbPdEslm7YSeB/tjqos0I
r56rNjzjfLh5iUwqeyuNKucSfQfLq4wLsPXDMMfDk9OHBLPii0KpxVrTam3gwxE2
NSEQE+eF5u/Aubq6jCoMXdVEyKugee3noPVxT/HRkPjLDzrVAhBvMt58zA+/lcko
8kPKfl86q/CTRdtXRoVqVhIMpEQ1N0xonjLkByaVqLoazUt6y0NhHombFxhtpAUL
TsaKUW1TVBqf5Qnm1Gu3LoxO2FDQc1OFd5y9C67Ea2Vbxx4QTCj6L/j81eTZBm2m
LlPsZ5UnZcknJw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:50 2026 by rpki-client