Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: zGhMio8pDoOUua9BLgMPqK/BRyywDoRgx6TxTcgwYGI=
Subject key identifier: B6:96:F7:56:83:5D:3B:62:0A:A6:FC:E0:B9:5E:48:0A:0C:04:FF:17
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 019D394195E5B754C623818B1609309E3FDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:01:32 +0000
Manifest this update: Sun 29 Mar 2026 11:01:32 +0000
Manifest next update: Mon 30 Mar 2026 11:01:32 +0000
Files and hashes: 1: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: Gw8MT6uS3aHogo3YEECfL1j3Op1S+xLZq81XMPj3Vgg=)
2: gJ8nPMUk8uqyvHQ2yxhP8LCANg8.roa (hash: tw3KTzXZuTpEyGkQRNx7vE9ajBD/fn1qkQVFYAfTOZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:95:e5:b7:54:c6:23:81:8b:16:09:30:9e:3f:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Mar 29 11:01:32 2026 GMT
Not After : Mar 30 11:01:32 2026 GMT
Subject: CN=b696f756835d3b620aa6fce0b95e480a0c04ff17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0d:81:f0:c0:63:f8:ae:47:ce:24:e0:2f:83:
c4:fb:75:f7:09:44:ce:30:cb:26:36:57:39:0f:c4:
09:68:3f:6c:ad:81:88:6e:b4:eb:40:ca:d9:9b:69:
ea:81:27:c3:1e:ae:40:7c:64:e5:e7:6d:55:8d:df:
af:45:22:61:c9:d1:88:ac:25:fe:0f:10:d0:38:1f:
70:16:e3:74:94:65:79:6e:57:f9:45:a3:d1:6e:ca:
28:92:e4:80:37:8c:11:30:83:fd:bd:80:36:92:4f:
33:ae:3c:23:df:b6:b7:17:41:6c:5d:61:06:68:68:
f8:24:7b:e9:32:13:17:db:2f:2c:a6:a0:cc:a6:d6:
2d:ae:5f:81:eb:d0:f0:fa:1d:70:89:b6:5e:b2:85:
d7:a8:54:f0:b0:22:80:e5:5e:45:d4:97:13:5a:c9:
4f:43:23:7b:65:a7:a2:d0:6e:cb:27:cd:41:ae:e5:
89:df:a8:7b:0b:d4:ae:e3:74:47:dc:4c:9f:69:71:
be:b3:75:d0:5f:8a:87:5f:6f:20:2b:c8:c1:3b:4d:
02:7c:a4:9d:11:54:03:72:90:de:7d:e4:ac:3b:b3:
5c:62:fb:f8:d3:23:24:16:34:94:e3:fe:6b:8d:56:
3d:9a:9e:e9:da:f1:02:01:03:e6:7a:90:fd:3f:01:
64:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:96:F7:56:83:5D:3B:62:0A:A6:FC:E0:B9:5E:48:0A:0C:04:FF:17
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:f7:69:97:c5:85:30:b6:65:a8:59:d4:dc:59:3a:e2:c9:d3:
61:02:f3:66:b1:15:6f:ea:93:9d:0e:19:1e:72:e6:5e:84:56:
d6:82:8b:1f:a7:e7:9b:a3:56:13:2a:54:f4:f9:65:15:b5:95:
3b:55:66:ce:c1:80:a7:c7:af:0d:a2:e4:f8:96:a9:35:05:10:
34:86:fc:c7:73:31:ea:5a:3e:a6:b0:b9:bc:eb:3c:fa:09:84:
6d:9c:9c:ff:55:4c:50:7c:0e:13:7c:9d:b0:fc:6f:c5:a2:e9:
c8:91:7f:32:30:59:ea:54:25:51:dd:c3:90:2c:93:a0:a8:0e:
4e:93:67:89:37:88:a0:0e:01:c0:4f:da:25:96:3e:5b:68:da:
38:83:20:a5:68:97:bb:02:4b:79:36:51:1a:b2:28:5d:c3:46:
27:79:71:93:44:a2:4d:39:76:e5:32:f0:d2:f0:e5:5c:f4:0d:
73:91:ec:bf:00:d0:2e:a9:d6:89:d1:26:8f:e0:79:c9:8e:1d:
c9:63:2b:8e:60:2b:cc:93:16:3b:c1:08:a1:f7:fe:8e:f5:c2:
f4:bf:cd:6b:e4:90:e0:a2:8e:1f:50:c7:20:d7:a7:c6:da:a6:
33:f7:36:cd:71:f2:4c:92:d9:53:a9:8a:b8:8e:cc:ed:f6:96:
c3:ef:e6:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QZXlt1TGI4GLFgkwnj/eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYjljYWM5MzUzMTFlNzgwMzRiNDA3MzgzMGE4MWEzY2Y3
YjQ1ZDkwHhcNMjYwMzI5MTEwMTMyWhcNMjYwMzMwMTEwMTMyWjAzMTEwLwYDVQQD
EyhiNjk2Zjc1NjgzNWQzYjYyMGFhNmZjZTBiOTVlNDgwYTBjMDRmZjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjQ2B8MBj+K5HziTgL4PE+3X3CUTO
MMsmNlc5D8QJaD9srYGIbrTrQMrZm2nqgSfDHq5AfGTl521Vjd+vRSJhydGIrCX+
DxDQOB9wFuN0lGV5blf5RaPRbsookuSAN4wRMIP9vYA2kk8zrjwj37a3F0FsXWEG
aGj4JHvpMhMX2y8spqDMptYtrl+B69Dw+h1wibZesoXXqFTwsCKA5V5F1JcTWslP
QyN7Zaei0G7LJ81BruWJ36h7C9Su43RH3EyfaXG+s3XQX4qHX28gK8jBO00CfKSd
EVQDcpDefeSsO7NcYvv40yMkFjSU4/5rjVY9mp7p2vECAQPmepD9PwFkiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLaW91aDXTtiCqb84LleSAoMBP8XMB8GA1UdIwQY
MBaAFEC5ysk1MR54A0tAc4MKgaPPe0XZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yODVhYjYtMDEwOS00NGUxLWJiMmIt
NzUzNGZlMGYxYjgzLzEvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi8yODVhYjYtMDEwOS00NGUxLWJiMmItNzUzNGZlMGYxYjgz
LzEvUUxuS3lUVXhIbmdEUzBCemd3cUJvODk3UmRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYPdpl8WF
MLZlqFnU3Fk64snTYQLzZrEVb+qTnQ4ZHnLmXoRW1oKLH6fnm6NWEypU9PllFbWV
O1VmzsGAp8evDaLk+JapNQUQNIb8x3Mx6lo+prC5vOs8+gmEbZyc/1VMUHwOE3yd
sPxvxaLpyJF/MjBZ6lQlUd3DkCyToKgOTpNniTeIoA4BwE/aJZY+W2jaOIMgpWiX
uwJLeTZRGrIoXcNGJ3lxk0SiTTl25TLw0vDlXPQNc5HsvwDQLqnWidEmj+B5yY4d
yWMrjmArzJMWO8EIoff+jvXC9L/Na+SQ4KKOH1DHINenxtqmM/c2zXHyTJLZU6mK
uI7M7faWw+/m5A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:04:15 2026 by rpki-client