Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft
File: QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft (raw, json)
Hash identifier: CRgqC7MgdTssnOvdNZneVLrRhk+bmjJ8yM8Q67HuT+E=
Subject key identifier: A8:DD:9D:13:1C:F5:77:15:B3:3D:EE:00:AE:22:42:34:AC:AD:EE:8A
Authority key identifier: 40:EE:97:65:86:4B:D1:1D:4A:34:94:26:E3:72:E1:1A:94:34:8D:E2
Certificate issuer: /CN=40ee9765864bd11d4a349426e372e11a94348de2
Certificate serial: 019D38666AC725892B162CD7E335226192FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft
Manifest number: 099E
Signing time: Sun 29 Mar 2026 07:02:09 +0000
Manifest this update: Sun 29 Mar 2026 07:02:09 +0000
Manifest next update: Mon 30 Mar 2026 07:02:09 +0000
Files and hashes: 1: QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl (hash: 72SpqycjiGxplqEVFoi1uD/js9Q/ygex2oYFysJG9+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:6a:c7:25:89:2b:16:2c:d7:e3:35:22:61:92:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ee9765864bd11d4a349426e372e11a94348de2
Validity
Not Before: Mar 29 07:02:09 2026 GMT
Not After : Mar 30 07:02:09 2026 GMT
Subject: CN=a8dd9d131cf57715b33dee00ae224234acadee8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:08:7a:c1:6d:77:77:1f:f4:56:5b:ef:25:4d:
ed:8f:2e:0c:e6:25:3b:0a:b0:81:a9:d2:a3:ef:2b:
bd:27:a1:37:be:0d:6a:c1:df:f6:0f:a9:5f:7b:d1:
d9:b9:32:eb:83:7a:b2:17:6a:2a:0a:ba:bd:ca:c0:
ce:62:45:82:95:38:db:b6:c0:29:d4:58:d2:bb:c0:
9d:9a:60:ed:a6:6e:af:30:60:d9:27:99:a1:a6:55:
5e:e5:67:8b:40:2d:61:c7:91:84:13:1e:4c:a4:bc:
a6:33:d4:a0:d3:ea:78:9b:e1:d2:26:c4:4c:43:05:
1b:d7:e0:04:b0:b2:78:ca:2b:6e:e4:66:6a:96:28:
ed:34:e6:af:a4:db:11:f0:27:eb:00:0a:ff:ce:ca:
25:b9:46:8b:9c:8a:97:f1:52:5c:bf:f3:a1:21:b3:
57:e5:50:ee:99:97:21:03:8e:2d:66:51:13:85:fd:
e3:3c:6a:9d:5c:6c:c3:0b:ca:cd:e0:38:a6:49:9d:
98:b0:3c:41:ea:bc:00:ae:d2:58:b7:01:2a:23:2d:
63:04:11:e4:2c:2e:6e:38:2d:2a:0b:e8:cf:ae:6a:
b2:0b:d1:41:bf:e1:14:7a:66:50:f1:ee:5e:40:54:
2e:9c:11:ef:c4:b6:41:d2:5a:d3:f7:c4:d0:e9:22:
8c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:DD:9D:13:1C:F5:77:15:B3:3D:EE:00:AE:22:42:34:AC:AD:EE:8A
X509v3 Authority Key Identifier:
keyid:40:EE:97:65:86:4B:D1:1D:4A:34:94:26:E3:72:E1:1A:94:34:8D:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QO6XZYZL0R1KNJQm43LhGpQ0jeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/65d7b9-ccf9-4b73-b669-3533a512fcf7/1/QO6XZYZL0R1KNJQm43LhGpQ0jeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:e4:68:88:64:60:8f:e2:82:a6:7a:27:c6:96:bb:28:0a:c3:
3c:b5:28:34:15:c9:51:99:7d:2c:a2:d5:6c:0b:83:9c:51:9b:
0f:15:b1:8c:29:53:91:18:ac:2d:e6:a7:87:0d:5e:00:1e:21:
ad:b8:42:0f:5d:48:fe:a1:4b:99:df:c7:ed:86:1a:00:e2:d7:
55:76:d0:32:17:62:02:11:f9:1b:4e:74:f5:17:29:64:02:2f:
4d:cd:36:8d:79:a5:35:68:c0:c2:c2:d1:85:bc:1f:d1:36:dc:
cc:f3:1a:2f:b5:08:2d:bb:09:bd:7e:ea:a4:09:73:a2:58:13:
ae:bb:85:bf:5c:15:31:47:b2:d2:4b:31:e0:41:d0:93:62:e8:
7f:2d:54:62:76:7f:70:98:7f:21:e1:66:ad:d6:c7:da:ef:dd:
ed:22:ef:eb:84:7e:4f:9b:65:b6:9a:1f:2d:1e:42:73:b3:58:
5e:b5:e7:a1:45:85:d4:8d:0a:19:5d:cf:77:b0:73:4d:f2:93:
d3:9d:a1:03:f8:f0:1c:f2:87:b0:c8:1a:81:b0:d1:bc:46:f5:
81:73:e3:03:4f:93:03:e6:6d:c1:54:ac:cf:75:79:c1:5c:af:
d1:7c:55:e8:d2:f9:63:8b:a2:7f:e5:3c:89:b4:9e:d2:37:e8:
c6:fd:23:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:19 2026 by rpki-client