Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
File: QLt2qpbfjrfWd3s1clLhEVUjh4U.mft (raw, json)
Hash identifier: /5dOr1iG+wuPDOexiFf5IQXRnHSuHLyU6L5ZEQLEPtA=
Subject key identifier: 2B:D9:B9:AE:01:B4:AA:D9:33:77:02:D3:6B:5E:0B:6E:2C:BD:45:7E
Authority key identifier: 40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85
Certificate issuer: /CN=40bb76aa96df8eb7d6777b357252e11155238785
Certificate serial: 019D371B64FC7D93CFBA3A1439E33010F70B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
Manifest number: 15E7
Signing time: Sun 29 Mar 2026 01:00:35 +0000
Manifest this update: Sun 29 Mar 2026 01:00:35 +0000
Manifest next update: Mon 30 Mar 2026 01:00:35 +0000
Files and hashes: 1: QLt2qpbfjrfWd3s1clLhEVUjh4U.crl (hash: P+XSUw9IuE0kBAeBVuTLMs45bNKbeJqFrq9F3l2Qf3Q=)
2: lXeVvSBTU7kT9plGVLjP1SeM5e8.roa (hash: d6HLCVnG+FtyHmH62hlZHwElrQ46SkYz4wdJECCi/g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:64:fc:7d:93:cf:ba:3a:14:39:e3:30:10:f7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bb76aa96df8eb7d6777b357252e11155238785
Validity
Not Before: Mar 29 01:00:35 2026 GMT
Not After : Mar 30 01:00:35 2026 GMT
Subject: CN=2bd9b9ae01b4aad9337702d36b5e0b6e2cbd457e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bc:7a:82:48:ab:bb:8b:f8:5e:93:5d:90:9c:
af:b9:62:e1:e9:09:05:61:38:56:30:5c:34:89:0f:
5c:ed:5e:21:d6:1d:b8:4f:da:d5:fc:6b:9c:1d:ca:
d9:a6:e6:61:fe:d8:cf:af:d7:b7:4c:46:ed:67:1a:
98:4c:9d:a3:ea:ce:7f:5d:7b:6b:97:0a:99:90:98:
46:d0:46:5f:c3:cc:30:c0:44:16:37:a9:35:f5:43:
79:b5:77:9e:f5:b5:e8:c9:86:16:5f:82:06:ab:e7:
2d:a8:04:bd:91:0b:13:5c:44:a3:58:d0:75:cc:99:
cc:df:ca:32:82:2b:07:a8:0e:93:16:0f:ee:88:b2:
ea:2d:92:ab:eb:b8:34:8a:48:93:77:4b:e4:42:13:
a5:61:73:50:1f:35:24:0c:17:b0:e3:1d:0b:c2:3e:
0d:6c:55:f3:b2:9c:be:81:97:5f:ca:cd:64:dc:73:
40:b7:30:d9:6d:b5:32:2e:f2:90:0d:eb:75:8b:6d:
ae:5c:fb:83:38:1e:46:76:13:66:4d:76:fb:aa:00:
51:85:a0:51:13:68:6d:f4:39:fc:6e:57:0f:5c:d5:
86:17:e9:62:3a:86:53:ec:d2:0a:d6:39:2e:5a:9e:
06:f9:0d:99:5e:c2:d0:ed:a0:05:ac:0d:02:a9:e6:
d5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D9:B9:AE:01:B4:AA:D9:33:77:02:D3:6B:5E:0B:6E:2C:BD:45:7E
X509v3 Authority Key Identifier:
keyid:40:BB:76:AA:96:DF:8E:B7:D6:77:7B:35:72:52:E1:11:55:23:87:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLt2qpbfjrfWd3s1clLhEVUjh4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e31d68-cb63-4bd1-99b9-35ee7a739fd9/1/QLt2qpbfjrfWd3s1clLhEVUjh4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:8e:ef:16:9d:92:da:7c:8c:6c:53:0a:7b:1d:f2:08:0a:40:
b2:8a:89:74:a2:13:8c:2b:57:78:01:f7:c6:6a:44:b9:43:c7:
05:b1:d2:05:d7:3d:2e:bb:07:ff:d9:f1:ad:d3:02:63:83:60:
e9:f0:a8:54:8f:7b:36:d3:91:79:67:50:23:5d:97:61:c6:26:
9c:99:fa:bd:f0:94:73:31:82:72:df:f6:5f:f7:87:1b:05:fb:
52:4c:12:96:67:65:9d:69:82:6f:a1:6c:4d:82:c0:07:d3:b0:
68:e7:86:2d:63:73:f9:4d:20:2d:1d:7b:6c:54:fe:fe:4d:c8:
b8:da:09:6f:6f:a1:ea:4c:f5:6b:6a:9c:df:40:af:37:71:6b:
5c:7c:c9:3e:0d:d5:2b:0a:49:a7:b9:b5:7d:ce:6e:cc:5c:94:
68:d4:f3:48:04:be:0b:03:68:0f:00:b1:21:ec:2a:60:30:cf:
56:09:fb:98:14:24:cb:d0:3e:54:1d:a8:1c:d3:c8:ed:b4:ac:
13:fd:81:91:73:a6:9b:75:7e:a4:7d:41:7e:36:62:91:a5:b9:
11:94:de:5d:c0:14:f8:5f:25:fe:51:ae:38:f0:76:60:7b:84:
e3:d0:8e:70:e1:92:1c:bb:9c:a3:b4:2f:46:f7:4d:37:be:69:
96:39:6d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:23 2026 by rpki-client