Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
File: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft (raw, json)
Hash identifier: x3/aFDGtd39y9Fhh5Red51R3hrtVYigaYjpU9SG4d8E=
Subject key identifier: 81:B1:BE:1C:E4:50:65:6D:84:8A:A8:11:6C:2F:3A:6A:AB:A5:D2:12
Authority key identifier: 42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5
Certificate issuer: /CN=42f9a96952777f1074338303ecb65025c4e2b8b5
Certificate serial: 019CE2597158F3051BE7770AA493CE7FA5E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
Manifest number: 099E
Signing time: Thu 12 Mar 2026 14:00:38 +0000
Manifest this update: Thu 12 Mar 2026 14:00:38 +0000
Manifest next update: Fri 13 Mar 2026 14:00:38 +0000
Files and hashes: 1: 65LDhkWiOsePvay_daaS19w9IrU.roa (hash: RDR1Bk3idKoyL2q+z5ptGPj51Bc2Dh1ei6t9SnrsQKk=)
2: QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl (hash: q/UuXiPlpG5gV1BmOxSEUeQKr5SjRu/dGOTS5HPYGsI=)
3: ZFXp04liA97zf3zh4neEvtk3ie8.asa (hash: cIRV8SOkhq7w5WXsE++0aN0EFAl2RW4qpxwXHeP91R0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 14:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e2:59:71:58:f3:05:1b:e7:77:0a:a4:93:ce:7f:a5:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f9a96952777f1074338303ecb65025c4e2b8b5
Validity
Not Before: Mar 12 14:00:38 2026 GMT
Not After : Mar 13 14:00:38 2026 GMT
Subject: CN=81b1be1ce450656d848aa8116c2f3a6aaba5d212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:1d:b2:e6:5a:13:e0:6a:1c:68:89:51:3c:8c:
68:98:10:29:24:94:3b:ee:b9:04:e0:b8:bb:bb:cd:
6d:47:29:ae:6f:61:f0:2a:5f:f8:38:ec:ae:a3:11:
09:f8:3a:2c:b9:6b:ed:1f:f9:6a:e1:52:1d:18:02:
66:94:e6:68:0f:24:01:b0:37:78:1c:14:43:ef:9e:
fb:54:c4:f3:5a:81:b4:89:6d:a8:b8:96:dd:37:77:
5e:6a:53:53:cf:f9:ba:1b:d7:10:93:cf:8f:0f:f8:
0a:8c:f7:7d:71:a7:34:ea:be:db:91:fd:19:85:64:
9c:bf:66:e2:84:d9:b2:da:26:b1:e1:48:bb:e4:51:
14:4e:12:3a:5d:e1:12:01:ce:f1:c0:36:d7:22:06:
b0:56:86:ba:3e:3d:2a:bc:72:ae:de:88:ee:7b:63:
3e:36:f1:a8:ef:32:a3:f4:d0:ee:d7:3b:10:f9:77:
90:77:ab:12:1f:2c:dc:8b:09:fd:25:ae:f8:2f:86:
f5:35:be:a3:28:2d:a4:ca:13:48:98:04:32:f0:fd:
cd:9a:fb:4b:2b:d3:8f:da:f2:e0:5d:7d:0d:80:9b:
2b:43:6a:25:f5:dd:2b:e5:51:5b:3c:3a:53:3e:3c:
21:cb:1e:9a:31:b0:7f:d4:e4:58:8d:8e:e5:6f:41:
fd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B1:BE:1C:E4:50:65:6D:84:8A:A8:11:6C:2F:3A:6A:AB:A5:D2:12
X509v3 Authority Key Identifier:
keyid:42:F9:A9:69:52:77:7F:10:74:33:83:03:EC:B6:50:25:C4:E2:B8:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2f7bc5-a036-4219-ad8e-77fa2912994d/1/QvmpaVJ3fxB0M4MD7LZQJcTiuLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c0:b6:37:ad:9a:de:a6:02:16:d8:c4:71:b6:b9:d4:2d:97:
a8:cd:dc:1a:14:eb:ea:48:64:9b:62:10:4c:9e:49:fc:9a:dd:
91:2e:25:02:66:a7:ea:6f:5b:39:e4:7d:3b:fa:4f:d1:79:09:
39:95:f7:35:e9:e7:b9:c9:e5:a9:1c:81:af:a0:3e:6c:0c:a0:
8f:37:27:f5:f8:e6:05:e7:d6:f6:de:f0:89:d4:4a:53:59:61:
a7:b9:8a:11:6d:2c:22:ef:1a:83:34:23:09:f5:64:e0:e8:ad:
8e:27:c2:07:35:3e:6b:24:b1:7e:6b:71:c3:8f:49:02:38:b6:
f4:e2:c4:10:6d:f5:a5:d6:31:e3:a1:ef:e7:ce:e8:40:b8:3a:
23:87:53:23:fc:cf:e7:c8:29:e2:bb:cb:57:d1:b9:33:bd:5f:
24:71:d6:c3:b2:bf:2f:2b:97:b0:d4:0c:65:46:b8:54:06:2e:
4a:be:45:34:e9:d6:60:b9:cc:87:94:75:e2:ab:b8:3b:a3:72:
4d:27:e2:6b:01:ad:f1:9e:9a:9a:27:e2:10:af:9b:f4:6e:09:
e5:ee:56:92:5f:87:5d:72:88:cf:52:71:62:e8:e8:8a:98:1c:
0e:ca:02:4f:67:4c:e5:f8:b4:f3:0a:0e:b4:b3:b0:8b:bb:e1:
68:b6:9a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 21:39:34 2026 by rpki-client