
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json)
Hash identifier: 5Mmjwxz47ChqbhReVTiHWoD2eZeZdz2SpURLQH7/5lw=
Subject key identifier: F3:ED:70:67:89:74:F9:9F:A1:F4:06:FD:0D:56:01:05:CA:F9:33:C9
Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa
Certificate serial: 019CE66D12FE1731045967EEAD04D939DFBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
Manifest number: 1866
Signing time: Fri 13 Mar 2026 09:00:33 +0000
Manifest this update: Fri 13 Mar 2026 09:00:33 +0000
Manifest next update: Sat 14 Mar 2026 09:00:33 +0000
Files and hashes: 1: 7Ajy7T_IXat5EHnX5jOdCl3BXSs.roa (hash: Rn+5opWUGoRW49OpMrdlbpM9u9h2SBCx0mFY1z5Li4g=)
2: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: RAjVz4SbqE+vi0/vHeBNQgv7Mmfnq5pgyzdJmthoXoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:6d:12:fe:17:31:04:59:67:ee:ad:04:d9:39:df:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa
Validity
Not Before: Mar 13 09:00:33 2026 GMT
Not After : Mar 14 09:00:33 2026 GMT
Subject: CN=f3ed70678974f99fa1f406fd0d560105caf933c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:33:9a:60:25:f5:1f:48:cc:fa:a5:82:31:9b:
bc:d5:c4:10:21:4a:90:a7:d7:eb:90:a2:af:f3:d0:
3d:77:3e:2a:48:cf:b4:4a:de:8a:4c:4c:e7:21:6f:
c9:99:75:37:a0:df:72:dd:1f:45:82:7b:b3:c6:ae:
79:ca:d3:b1:ae:5d:01:ff:0a:4f:6d:ec:c5:d4:ff:
4c:83:88:f6:b9:18:37:6a:aa:ac:be:0b:81:d8:e0:
b8:41:8c:69:2c:6a:64:ff:3d:b8:ac:a4:24:86:1b:
38:da:90:85:d6:fe:b8:cd:83:b1:c4:0e:30:30:19:
f5:d0:1f:95:38:3b:c3:2a:0e:42:ac:af:70:9e:8f:
a9:59:30:f0:8a:40:4d:5c:30:e2:82:76:7a:c1:28:
86:5a:f8:d5:d4:b2:41:e0:8a:92:75:da:53:e9:50:
d3:01:3a:01:a7:b4:93:61:f6:21:2f:14:7e:c7:bc:
8e:0a:b4:80:f3:40:86:99:4d:6c:50:40:6d:b9:ca:
68:87:cf:e5:9f:6a:3d:2a:cd:a8:89:bd:95:01:31:
3c:80:68:b2:2d:b7:bb:d0:32:b8:10:a6:f0:cf:e8:
72:c1:39:c6:b4:b6:c9:be:6e:29:fb:15:b9:cc:06:
28:32:6b:f1:1b:6f:44:48:99:58:47:cd:91:1c:2d:
dc:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:ED:70:67:89:74:F9:9F:A1:F4:06:FD:0D:56:01:05:CA:F9:33:C9
X509v3 Authority Key Identifier:
keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:42:3e:7a:52:6f:c3:81:6e:2b:e8:dd:70:51:3b:df:2a:87:
46:c9:5d:28:65:54:80:fc:db:d6:c3:17:f7:76:87:3b:6c:70:
71:3d:56:ba:dd:15:37:8c:28:4e:ea:58:4c:ce:e0:33:2e:bc:
57:a8:b2:ff:d9:93:76:16:14:88:76:6d:f5:1d:1a:b4:c4:ec:
09:b9:de:a9:cd:2f:a4:2c:ae:28:52:41:e2:21:32:72:6a:52:
40:42:2f:1d:d3:56:75:62:f0:78:d7:4f:98:47:09:e3:f8:4c:
8f:30:b0:39:06:46:54:ef:c0:a0:18:14:1d:22:a2:ef:d1:44:
98:b6:ca:98:87:70:a7:d7:1c:bd:50:69:51:21:ba:02:cd:0f:
22:c6:0d:95:ee:ef:12:f3:21:04:49:1f:72:b2:63:6b:56:6c:
d2:33:ad:4c:88:41:19:e4:58:e2:f9:3c:13:56:e8:c6:7f:b9:
88:82:d7:87:4d:70:c4:0e:8d:f4:90:4f:50:43:4c:6e:c5:aa:
a2:56:6a:d2:16:3f:63:92:26:41:f4:5e:1a:91:8d:f4:86:d7:
64:bd:9b:b6:a4:34:90:0c:53:65:24:57:7b:ea:b1:dd:ba:83:
14:72:b6:69:48:5b:4e:b3:e5:41:c6:f8:74:49:eb:89:72:e6:
53:01:73:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzmbRL+FzEEWWfurQTZOd+/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMjA3NTU5NjU0NTA5M2MwNmE2ZmNmOGZhYjU3YjE5MmU3
NzkwYWEwHhcNMjYwMzEzMDkwMDMzWhcNMjYwMzE0MDkwMDMzWjAzMTEwLwYDVQQD
EyhmM2VkNzA2Nzg5NzRmOTlmYTFmNDA2ZmQwZDU2MDEwNWNhZjkzM2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTOaYCX1H0jM+qWCMZu81cQQIUqQ
p9frkKKv89A9dz4qSM+0St6KTEznIW/JmXU3oN9y3R9Fgnuzxq55ytOxrl0B/wpP
bezF1P9Mg4j2uRg3aqqsvguB2OC4QYxpLGpk/z24rKQkhhs42pCF1v64zYOxxA4w
MBn10B+VODvDKg5CrK9wno+pWTDwikBNXDDignZ6wSiGWvjV1LJB4IqSddpT6VDT
AToBp7STYfYhLxR+x7yOCrSA80CGmU1sUEBtucpoh8/ln2o9Ks2oib2VATE8gGiy
Lbe70DK4EKbwz+hywTnGtLbJvm4p+xW5zAYoMmvxG29ESJlYR82RHC3c5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPPtcGeJdPmfofQG/Q1WAQXK+TPJMB8GA1UdIwQY
MBaAFEMgdVllRQk8Bqb8+Pq1exkud5CqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUt
OTI3OThkYWNhZjc1LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUtOTI3OThkYWNhZjc1
LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALEI+elJv
w4FuK+jdcFE73yqHRsldKGVUgPzb1sMX93aHO2xwcT1Wut0VN4woTupYTM7gMy68
V6iy/9mTdhYUiHZt9R0atMTsCbneqc0vpCyuKFJB4iEycmpSQEIvHdNWdWLweNdP
mEcJ4/hMjzCwOQZGVO/AoBgUHSKi79FEmLbKmIdwp9ccvVBpUSG6As0PIsYNle7v
EvMhBEkfcrJja1Zs0jOtTIhBGeRY4vk8E1boxn+5iILXh01wxA6N9JBPUENMbsWq
olZq0hY/Y5ImQfReGpGN9IbXZL2btqQ0kAxTZSRXe+qx3bqDFHK2aUhbTrPlQcb4
dEnriXLmUwFzng==
-----END CERTIFICATE-----
Generated at Fri Mar 13 12:30:15 2026 by rpki-client