Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
File: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft (raw, json)
Hash identifier: KBRdtHLGakiflvGlDQdNHFc+DTvNU1E2i+RhvXXos4A=
Subject key identifier: 00:C5:AA:D0:D5:E1:36:98:A0:1A:8F:EE:87:4C:26:9B:5C:C5:67:E6
Authority key identifier: 42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5
Certificate issuer: /CN=42f9a96952777f1074338303ecb65025c4e2b8b5
Certificate serial: 019DCDF49D2708685372568F930BB8848947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
Manifest number: 0A18
Signing time: Mon 27 Apr 2026 08:00:53 +0000
Manifest this update: Mon 27 Apr 2026 08:00:53 +0000
Manifest next update: Tue 28 Apr 2026 08:00:53 +0000
Files and hashes: 1: 65LDhkWiOsePvay_daaS19w9IrU.roa (hash: RDR1Bk3idKoyL2q+z5ptGPj51Bc2Dh1ei6t9SnrsQKk=)
2: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl (hash: 2sTeVxV+k2/pXRRiH11zAR5MnkTGqqQS0/2ilcLlvrU=)
3: ZFXp04liA97zf3zh4neEvtk3ie8.asa (hash: cIRV8SOkhq7w5WXsE++0aN0EFAl2RW4qpxwXHeP91R0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f4:9d:27:08:68:53:72:56:8f:93:0b:b8:84:89:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f9a96952777f1074338303ecb65025c4e2b8b5
Validity
Not Before: Apr 27 08:00:53 2026 GMT
Not After : Apr 28 08:00:53 2026 GMT
Subject: CN=00c5aad0d5e13698a01a8fee874c269b5cc567e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:83:eb:d1:a6:a2:38:5a:14:7e:55:71:72:fa:
cd:a7:1d:ae:6a:2e:0b:21:e5:a6:77:c2:4d:af:f8:
7c:6b:92:0f:f8:30:80:d7:e2:30:27:be:07:2e:37:
8e:1c:2c:28:93:20:22:67:51:b6:50:38:0f:97:ab:
fb:e4:53:8c:64:da:6e:f8:3e:d3:d9:eb:95:da:a2:
d6:5b:2b:7f:fd:28:22:51:b8:30:ca:23:b2:b0:67:
68:b4:25:b8:1a:e0:ed:d3:48:c8:50:9c:d9:a6:f2:
38:09:e1:83:07:bc:ac:34:83:38:85:41:d6:83:25:
61:2b:4e:8d:9e:7b:74:d3:bb:cc:c8:1d:4f:b2:0f:
2a:e5:3d:dc:a9:22:76:d0:1d:a3:b8:5f:47:16:a7:
32:c3:8b:3d:0f:e1:17:ac:43:f3:9a:3a:02:0d:f0:
fa:67:ba:f9:ad:9c:3a:b0:4d:a7:31:68:81:18:2b:
71:e0:53:f6:09:30:a7:fb:bb:ad:a8:89:b3:3d:a7:
db:15:b3:dc:f9:00:00:f4:98:cb:47:18:8d:93:8d:
d1:df:79:8d:d7:bb:df:a7:25:e0:0e:fc:ed:72:4f:
6a:3c:e9:e0:cc:04:91:05:4c:e6:d5:69:e4:c1:e5:
9a:81:28:bd:42:df:a0:94:36:84:6c:a2:53:ea:d2:
3b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C5:AA:D0:D5:E1:36:98:A0:1A:8F:EE:87:4C:26:9B:5C:C5:67:E6
X509v3 Authority Key Identifier:
keyid:42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:f8:dd:3e:af:d0:e6:1b:e4:0e:6f:55:69:fb:df:d6:42:b7:
30:f8:73:d2:a3:e2:e0:1e:b3:dc:70:c2:ff:da:13:76:24:bc:
7a:bb:8a:99:7c:c7:ce:a8:af:fa:04:d1:01:e7:06:0a:7f:af:
61:c6:00:9c:d1:73:7d:90:82:92:88:87:dd:3d:ad:ba:63:db:
7f:e4:b9:30:4f:51:b2:9a:c8:61:6b:53:f2:a3:86:5f:65:34:
de:53:8b:74:56:e3:68:9f:f4:88:7c:f4:1d:a0:3d:4e:b0:86:
be:1c:71:4b:e4:df:d6:d2:f7:9e:a5:6c:a5:6b:92:38:83:76:
52:92:8b:8d:16:57:a7:1d:45:68:77:db:d0:db:6f:ed:0b:49:
74:f6:0f:cb:b9:6d:67:a3:98:eb:53:29:44:51:db:c3:b1:40:
cb:b9:2a:b3:d1:18:47:c6:ed:30:1b:7e:b7:56:16:c5:0f:9d:
ff:4f:33:4d:3e:61:33:88:a1:ed:ae:0a:cc:64:43:0a:26:41:
a1:bd:ff:7a:bc:70:7f:71:7f:b9:32:4f:f9:50:8e:58:ff:f3:
5e:b9:dd:96:e5:e6:b5:f5:d3:97:04:e7:4e:c4:88:7e:51:68:
8b:f3:1e:05:dc:df:1a:dd:05:ee:4f:f1:99:26:9a:7f:05:56:
34:0b:f4:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3N9J0nCGhTclaPkwu4hIlHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyZjlhOTY5NTI3NzdmMTA3NDMzODMwM2VjYjY1MDI1YzRl
MmI4YjUwHhcNMjYwNDI3MDgwMDUzWhcNMjYwNDI4MDgwMDUzWjAzMTEwLwYDVQQD
EygwMGM1YWFkMGQ1ZTEzNjk4YTAxYThmZWU4NzRjMjY5YjVjYzU2N2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoPr0aaiOFoUflVxcvrNpx2uai4L
IeWmd8JNr/h8a5IP+DCA1+IwJ74HLjeOHCwokyAiZ1G2UDgPl6v75FOMZNpu+D7T
2euV2qLWWyt//SgiUbgwyiOysGdotCW4GuDt00jIUJzZpvI4CeGDB7ysNIM4hUHW
gyVhK06Nnnt007vMyB1Psg8q5T3cqSJ20B2juF9HFqcyw4s9D+EXrEPzmjoCDfD6
Z7r5rZw6sE2nMWiBGCtx4FP2CTCn+7utqImzPafbFbPc+QAA9JjLRxiNk43R33mN
17vfpyXgDvztck9qPOngzASRBUzm1WnkweWagSi9Qt+glDaEbKJT6tI7FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFADFqtDV4TaYoBqP7odMJptcxWfmMB8GA1UdIwQY
MBaAFEL5qWlSd38QdDODA+y2UCXE4ri1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXZtcGFWSjNmeEIwTTRNRDdMWlFKY1RpdUxVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8yZjdiYzUtYTAzNi00MjE5LWFkOGUt
NzdmYTI5MTI5OTRkLzEvUXZtcGFWSjNmeEIwTTRNRDdMWlFKY1RpdUxVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8yZjdiYzUtYTAzNi00MjE5LWFkOGUtNzdmYTI5MTI5OTRk
LzEvUXZtcGFWSjNmeEIwTTRNRDdMWlFKY1RpdUxVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWfjdPq/Q
5hvkDm9Vafvf1kK3MPhz0qPi4B6z3HDC/9oTdiS8eruKmXzHzqiv+gTRAecGCn+v
YcYAnNFzfZCCkoiH3T2tumPbf+S5ME9RsprIYWtT8qOGX2U03lOLdFbjaJ/0iHz0
HaA9TrCGvhxxS+Tf1tL3nqVspWuSOIN2UpKLjRZXpx1FaHfb0Ntv7QtJdPYPy7lt
Z6OY61MpRFHbw7FAy7kqs9EYR8btMBt+t1YWxQ+d/08zTT5hM4ih7a4KzGRDCiZB
ob3/erxwf3F/uTJP+VCOWP/zXrndluXmtfXTlwTnTsSIflFoi/MeBdzfGt0F7k/x
mSaafwVWNAv0Fg==
-----END CERTIFICATE-----
Generated at Mon Apr 27 14:29:58 2026 by rpki-client