Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
File: QhuumJiY2UAkJKra-7R8Om1MJbM.mft (raw, json)
Hash identifier: 95+MVZ4aqj0RmwngRS6YCvjRckqhLJuc5BCgiLwXCz0=
Subject key identifier: 68:9E:75:81:E6:31:BC:CC:1C:F0:54:A8:B7:BD:35:D2:27:05:D9:00
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 019D3608B17D94324F4ACB3A086B5290CB66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
Manifest number: 1899
Signing time: Sat 28 Mar 2026 20:00:32 +0000
Manifest this update: Sat 28 Mar 2026 20:00:32 +0000
Manifest next update: Sun 29 Mar 2026 20:00:32 +0000
Files and hashes: 1: 5u7ZZD9lOFoFzJauPRF9LoR4JqU.roa (hash: 6383aOZyG4GruUyJbTAEn/2+zHT/N7r0tO3vmVgZ0+Q=)
2: QhuumJiY2UAkJKra-7R8Om1MJbM.crl (hash: j7rYGacLs8hJoF9bg/1q2vfzua6zTbnqdnWEa2efA+E=)
3: QxEip3wlOXriAz7nnAs_AC0I9NA.asa (hash: iXtb4Nzk+e2nFY3GJNhD9F09a2bTSvaIp01d/mdO65Y=)
4: nSYkP6ZYsP2PGbTEn1voEjCMK7M.roa (hash: MNQbu//jCX54OfF7YJFip/dm1osxFxhLcTi2nI/vQws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:08:b1:7d:94:32:4f:4a:cb:3a:08:6b:52:90:cb:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Mar 28 20:00:32 2026 GMT
Not After : Mar 29 20:00:32 2026 GMT
Subject: CN=689e7581e631bccc1cf054a8b7bd35d22705d900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:09:8b:49:49:37:da:be:bf:05:37:07:f9:f5:
0f:cb:99:47:d0:a8:99:35:b5:17:c5:e6:f3:72:4a:
f6:83:3c:bc:d9:95:86:f3:37:c3:30:2e:4d:c9:db:
d6:64:18:87:af:bd:41:c7:88:a3:c6:6b:ec:91:70:
11:0a:b0:ee:df:13:ef:ad:2d:9c:e7:aa:e6:e8:3d:
c0:c2:dc:22:43:fa:6a:0b:ce:7d:22:e7:2b:c2:94:
83:7d:e9:1e:37:cb:a3:54:57:ac:a5:3a:6f:4c:9d:
31:e8:88:40:ba:c3:2a:be:26:b5:52:e7:e4:37:d3:
85:f4:3c:70:61:33:86:1d:46:bd:0b:6d:d9:e1:14:
e7:bc:b2:63:86:73:47:d2:a0:c8:34:71:18:17:db:
d6:4e:95:82:44:33:46:4d:0f:16:5c:56:25:64:32:
e7:e4:14:03:8b:8a:35:9b:71:5f:d2:32:d0:43:36:
b7:2b:4f:18:74:37:3c:01:c6:11:38:52:18:3a:16:
f6:e0:d4:7f:7b:b4:3b:c3:34:0a:e4:a5:02:29:31:
7f:b7:61:4b:32:b3:da:55:46:2a:69:44:ba:1c:e4:
24:0f:58:4b:63:6b:ca:a9:54:d6:f8:f6:9d:33:31:
bb:ea:a3:49:0e:9a:12:46:bf:c5:a4:3c:0c:27:68:
86:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:9E:75:81:E6:31:BC:CC:1C:F0:54:A8:B7:BD:35:D2:27:05:D9:00
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:5f:4f:2b:96:cb:5b:49:d4:80:52:ea:95:d2:59:a6:7b:c9:
5c:bd:0d:7e:63:54:49:ee:7c:34:68:e6:9e:30:d9:45:00:f0:
60:25:de:80:99:63:3c:e4:a4:69:ae:74:4d:8e:57:c5:02:f3:
b5:60:78:ef:2c:3c:6c:e6:48:e9:d8:5b:cc:b3:ef:6e:a8:23:
35:93:da:22:16:25:e6:57:d9:39:67:45:a2:e7:a3:3d:99:89:
5b:89:8e:e4:fa:40:f7:cc:e0:5f:4e:c9:fd:c9:f3:f3:a5:54:
24:b7:90:06:7c:71:b9:f9:83:77:56:60:3e:af:d7:cb:ea:bf:
5f:b2:cc:45:06:1b:87:2b:f9:63:7a:44:10:49:dc:3f:8e:0e:
d2:00:54:13:d2:8d:4c:28:2c:9c:6b:f6:e1:d4:fd:30:99:9a:
10:62:8c:5c:de:69:05:69:2b:56:a1:0b:53:56:f0:71:1e:19:
79:a2:8e:b6:dc:95:b3:38:43:4a:f0:51:87:c9:e2:15:aa:72:
ea:94:4f:e2:c4:d2:4f:bd:ee:48:b1:13:55:0f:49:95:e8:66:
1d:33:fe:9c:12:7e:9f:27:04:a0:d9:af:32:d7:ed:09:9c:c3:
10:6c:18:e4:8c:0a:49:97:c2:c2:9b:d6:19:9e:ba:be:cf:54:
47:1f:40:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ02CLF9lDJPSss6CGtSkMtmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWJhZTk4OTg5OGQ5NDAyNDI0YWFkYWZiYjQ3YzNhNmQ0
YzI1YjMwHhcNMjYwMzI4MjAwMDMyWhcNMjYwMzI5MjAwMDMyWjAzMTEwLwYDVQQD
Eyg2ODllNzU4MWU2MzFiY2NjMWNmMDU0YThiN2JkMzVkMjI3MDVkOTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwmLSUk32r6/BTcH+fUPy5lH0KiZ
NbUXxebzckr2gzy82ZWG8zfDMC5NydvWZBiHr71Bx4ijxmvskXARCrDu3xPvrS2c
56rm6D3AwtwiQ/pqC859IucrwpSDfekeN8ujVFespTpvTJ0x6IhAusMqvia1Uufk
N9OF9DxwYTOGHUa9C23Z4RTnvLJjhnNH0qDINHEYF9vWTpWCRDNGTQ8WXFYlZDLn
5BQDi4o1m3Ff0jLQQza3K08YdDc8AcYROFIYOhb24NR/e7Q7wzQK5KUCKTF/t2FL
MrPaVUYqaUS6HOQkD1hLY2vKqVTW+PadMzG76qNJDpoSRr/FpDwMJ2iG9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGiedYHmMbzMHPBUqLe9NdInBdkAMB8GA1UdIwQY
MBaAFEIbrpiYmNlAJCSq2vu0fDptTCWzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUt
NjdlZmNiM2Q4NmZlLzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9iMzRjYjAtMmY3MS00ZjU5LWJkNWUtNjdlZmNiM2Q4NmZl
LzEvUWh1dW1KaVkyVUFrSktyYS03UjhPbTFNSmJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADV9PK5bL
W0nUgFLqldJZpnvJXL0NfmNUSe58NGjmnjDZRQDwYCXegJljPOSkaa50TY5XxQLz
tWB47yw8bOZI6dhbzLPvbqgjNZPaIhYl5lfZOWdFouejPZmJW4mO5PpA98zgX07J
/cnz86VUJLeQBnxxufmDd1ZgPq/Xy+q/X7LMRQYbhyv5Y3pEEEncP44O0gBUE9KN
TCgsnGv24dT9MJmaEGKMXN5pBWkrVqELU1bwcR4ZeaKOttyVszhDSvBRh8niFapy
6pRP4sTST73uSLETVQ9JlehmHTP+nBJ+nycEoNmvMtftCZzDEGwY5IwKSZfCwpvW
GZ66vs9URx9AUg==
-----END CERTIFICATE-----
Generated at Sat Mar 28 21:46:27 2026 by rpki-client