Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
File: qklDGDthG-Ogd1OCUJSQBIsK1zg.mft (raw, json)
Hash identifier: A1rlz4fnB54A2l6dg/WcHn2JQWkPb4F5Yc1TYUqIVXI=
Subject key identifier: B6:DE:ED:83:9D:58:C1:F7:C5:15:E9:15:F9:D8:3A:FA:B5:20:49:CE
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 019D38D298F24522DAFABBA3AA7711B06ED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 09:00:18 +0000
Manifest this update: Sun 29 Mar 2026 09:00:18 +0000
Manifest next update: Mon 30 Mar 2026 09:00:18 +0000
Files and hashes: 1: 979-UeeMesUYtKwgSXJYqxuZCeQ.roa (hash: Gy12Ft/uLr8x9z8NPGEB7zTkTDi5D4+71v/AaSEGb9w=)
2: qklDGDthG-Ogd1OCUJSQBIsK1zg.crl (hash: CgfuoEdP6TVjKs8Psq7JkwZ6DAqWNYnllwVtffmJk64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:98:f2:45:22:da:fa:bb:a3:aa:77:11:b0:6e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Mar 29 09:00:18 2026 GMT
Not After : Mar 30 09:00:18 2026 GMT
Subject: CN=b6deed839d58c1f7c515e915f9d83afab52049ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:65:f6:a8:fd:d1:64:38:24:04:26:07:a9:
c3:aa:66:1d:51:30:18:d2:1e:5b:e3:70:a5:a5:56:
22:1e:1b:c8:78:35:35:1a:c6:10:c6:1c:03:9e:a7:
a1:9a:48:58:04:9a:b7:09:b4:79:6d:ab:3f:86:b7:
31:bf:8d:49:fc:0f:e1:d3:b3:b4:89:bd:1a:21:5d:
65:b0:0a:c9:8e:68:f4:a7:a9:21:de:23:8a:bf:3e:
de:1a:70:e3:6e:54:86:0b:f5:57:04:0f:28:3a:b9:
31:06:97:4e:02:31:a9:8c:7a:c6:77:53:00:87:48:
82:ca:15:33:12:da:6d:60:7d:9d:d2:fa:c4:da:2a:
71:01:bf:0f:62:9d:f8:f8:77:69:73:37:e3:0c:ec:
2d:a2:89:d4:f7:42:e3:3c:16:4b:2f:1d:9e:cd:5c:
00:97:63:8f:c3:95:24:9c:0d:d7:bd:a8:60:19:35:
66:38:43:c5:52:d4:8b:d4:3a:a6:e6:ab:93:1e:35:
a5:dd:ae:62:78:8f:ab:0e:1b:7a:c6:14:03:9d:f6:
6c:2f:d5:6f:3a:6b:b7:b4:dc:8b:56:c9:8a:64:22:
17:bb:13:ac:0b:e1:8d:19:84:fa:e3:17:5e:8a:dc:
f6:fa:60:83:1d:a6:ac:c5:2d:c6:4d:f2:27:12:8c:
32:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DE:ED:83:9D:58:C1:F7:C5:15:E9:15:F9:D8:3A:FA:B5:20:49:CE
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:95:e2:49:6d:28:e1:07:87:47:67:49:f5:aa:bd:2a:f6:8d:
b2:b7:c1:a7:28:c1:f6:15:79:93:53:78:0a:20:61:fc:af:83:
eb:cd:67:92:63:62:a3:5a:c3:e5:b3:ab:7c:a9:ba:be:31:6a:
dd:d3:4c:d4:28:2f:a0:ed:99:ea:b4:56:f1:07:25:98:ed:7e:
2f:9e:74:25:04:27:25:18:a8:5d:ba:49:92:d5:ae:98:0b:d2:
79:89:6b:44:ce:76:3f:f1:50:f7:21:22:39:97:97:8b:c7:eb:
2d:a9:33:e8:87:bf:f8:89:58:12:1f:56:07:72:93:c9:c6:66:
c7:4c:0b:20:e9:0d:65:c3:9b:56:13:67:9a:b4:60:ac:7c:8e:
9f:4f:99:f9:1b:3f:2b:42:aa:a0:1b:1f:65:37:a1:b3:3e:8c:
80:4f:94:96:d8:cc:b5:63:47:d5:da:87:d6:a8:04:8e:a4:c5:
30:61:ab:59:81:36:6e:1a:9e:0d:fb:b2:28:a2:06:4c:1a:e4:
b8:6e:b6:ad:3a:0c:40:8c:11:52:57:b5:b6:6a:71:1e:12:9f:
27:41:b3:fc:40:3f:d9:18:56:3d:fc:41:c8:30:5c:05:2d:8d:
17:f8:ec:3b:14:d8:84:02:b2:d3:5e:68:cc:5b:d7:80:7c:be:
8d:15:1d:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040pjyRSLa+rujqncRsG7QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNDk0MzE4M2I2MTFiZTNhMDc3NTM4MjUwOTQ5MDA0OGIw
YWQ3MzgwHhcNMjYwMzI5MDkwMDE4WhcNMjYwMzMwMDkwMDE4WjAzMTEwLwYDVQQD
EyhiNmRlZWQ4MzlkNThjMWY3YzUxNWU5MTVmOWQ4M2FmYWI1MjA0OWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxB1l9qj90WQ4JAQmB6nDqmYdUTAY
0h5b43ClpVYiHhvIeDU1GsYQxhwDnqehmkhYBJq3CbR5bas/hrcxv41J/A/h07O0
ib0aIV1lsArJjmj0p6kh3iOKvz7eGnDjblSGC/VXBA8oOrkxBpdOAjGpjHrGd1MA
h0iCyhUzEtptYH2d0vrE2ipxAb8PYp34+HdpczfjDOwtoonU90LjPBZLLx2ezVwA
l2OPw5UknA3XvahgGTVmOEPFUtSL1Dqm5quTHjWl3a5ieI+rDht6xhQDnfZsL9Vv
Omu3tNyLVsmKZCIXuxOsC+GNGYT64xdeitz2+mCDHaasxS3GTfInEowypwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLbe7YOdWMH3xRXpFfnYOvq1IEnOMB8GA1UdIwQY
MBaAFKpJQxg7YRvjoHdTglCUkASLCtc4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS83YmIwMzgtMDFiYy00ZDg1LTlmMDQt
ZDIyMjc0YmJhNzEzLzEvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS83YmIwMzgtMDFiYy00ZDg1LTlmMDQtZDIyMjc0YmJhNzEz
LzEvcWtsREdEdGhHLU9nZDFPQ1VKU1FCSXNLMXpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADZXiSW0o
4QeHR2dJ9aq9KvaNsrfBpyjB9hV5k1N4CiBh/K+D681nkmNio1rD5bOrfKm6vjFq
3dNM1CgvoO2Z6rRW8QclmO1+L550JQQnJRioXbpJktWumAvSeYlrRM52P/FQ9yEi
OZeXi8frLakz6Ie/+IlYEh9WB3KTycZmx0wLIOkNZcObVhNnmrRgrHyOn0+Z+Rs/
K0KqoBsfZTehsz6MgE+UltjMtWNH1dqH1qgEjqTFMGGrWYE2bhqeDfuyKKIGTBrk
uG62rToMQIwRUle1tmpxHhKfJ0Gz/EA/2RhWPfxByDBcBS2NF/jsOxTYhAKy015o
zFvXgHy+jRUdAA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:49 2026 by rpki-client