Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
File: QM_TpJvHHnSg0L9-NGyomylZehI.mft (raw, json)
Hash identifier: IU763ND2ls8bk2Khhj0fJAyin/WD79Vn0rDanOYRNdA=
Subject key identifier: F4:77:E8:73:37:97:7A:26:1B:B3:CD:20:0D:F7:A0:FC:C5:EE:D0:F8
Authority key identifier: 40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
Certificate issuer: /CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Certificate serial: 019CE4B5CC3E7571C05E7541921DE713A5AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
Manifest number: 1864
Signing time: Fri 13 Mar 2026 01:00:45 +0000
Manifest this update: Fri 13 Mar 2026 01:00:45 +0000
Manifest next update: Sat 14 Mar 2026 01:00:45 +0000
Files and hashes: 1: QM_TpJvHHnSg0L9-NGyomylZehI.crl (hash: uGs80oWWD89dMTBGfp8zR3q3rMnx/xzq48XnyTyScIM=)
2: wt3Ui80OQ2RXah5MDzF8MWqly2Q.roa (hash: J67sJRmcaTP47jMbuSDSqG6+LX3lK8JypZ67sDFFc/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:b5:cc:3e:75:71:c0:5e:75:41:92:1d:e7:13:a5:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cfd3a49bc71e74a0d0bf7e346ca89b29597a12
Validity
Not Before: Mar 13 01:00:45 2026 GMT
Not After : Mar 14 01:00:45 2026 GMT
Subject: CN=f477e87337977a261bb3cd200df7a0fcc5eed0f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d9:18:da:88:19:42:07:13:fa:49:59:30:78:
5c:60:9a:38:96:72:7d:44:13:e9:46:8d:39:0e:9a:
48:2b:43:b1:d1:1e:da:59:fd:11:12:2f:8a:0c:a8:
ca:aa:a4:6c:e0:d2:1d:1d:81:19:a0:9b:73:f2:72:
14:34:ab:ca:a1:c2:e7:15:fe:d4:fe:28:1e:ec:26:
99:91:5a:1d:1d:eb:0b:39:e7:7e:07:3e:e4:ef:bf:
ba:0b:b4:f6:4e:c3:67:14:6f:ca:a5:d2:3f:49:2a:
63:d6:6f:c3:f0:82:b9:a7:ff:6d:8f:3b:6a:79:35:
ad:ab:5e:f0:70:8e:6a:f2:25:82:20:ce:43:97:ac:
03:3a:4f:36:6d:7e:00:5b:0e:e7:03:b7:92:45:92:
f2:a3:0c:41:78:f4:c0:eb:94:1f:cb:56:b2:2a:6d:
d7:a3:f8:de:58:05:32:50:69:dd:e5:15:02:72:85:
25:b0:02:78:c7:d1:e8:1d:99:cb:86:81:4d:c4:9d:
a6:85:19:7b:e0:26:f6:76:a0:d5:36:c1:9b:46:1a:
b4:ce:b1:b8:a0:72:c5:48:8c:e2:97:5a:a4:36:bc:
58:eb:17:b3:89:bb:42:49:d4:b2:06:56:9a:30:19:
92:7b:48:c2:9b:a6:5c:b0:c2:92:a2:ec:19:c6:f8:
91:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:77:E8:73:37:97:7A:26:1B:B3:CD:20:0D:F7:A0:FC:C5:EE:D0:F8
X509v3 Authority Key Identifier:
keyid:40:CF:D3:A4:9B:C7:1E:74:A0:D0:BF:7E:34:6C:A8:9B:29:59:7A:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM_TpJvHHnSg0L9-NGyomylZehI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0b9f07-f166-4675-b185-60b6ebbb7e6f/1/QM_TpJvHHnSg0L9-NGyomylZehI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:57:38:00:11:21:ef:75:44:89:7c:26:83:cd:c3:f6:0e:3d:
30:1b:c5:cd:00:6b:05:84:38:d7:f3:4e:84:4c:68:b1:61:f5:
79:f0:68:d8:70:76:de:67:03:8a:9a:30:88:f6:55:07:0c:82:
13:78:30:81:cc:e3:9b:07:b3:56:13:df:ae:0f:19:d2:3d:84:
03:8f:76:ab:e2:be:3b:f7:f4:e0:11:3d:e7:70:40:b3:ff:29:
6e:94:b1:b7:8f:50:60:17:43:c2:2b:c1:c0:c1:71:08:cb:ff:
d2:97:10:55:11:7e:62:d2:cf:b6:9b:01:3b:3a:09:11:04:f6:
ee:60:1d:ba:47:ee:9f:ce:bb:90:8c:37:e0:d7:cc:b1:33:ec:
c9:d5:b6:07:1b:93:ad:ab:ae:88:1e:1b:9f:35:84:3d:5d:b9:
85:5d:3c:a2:c0:55:75:3a:79:f2:1e:d6:76:50:d4:5c:0d:56:
24:13:83:a9:6d:57:99:e1:ea:0a:c9:35:58:f2:79:07:5c:7d:
84:45:f7:91:cf:8e:78:83:1f:d8:d9:2a:e9:d9:62:97:de:bd:
2d:22:09:75:6a:e0:04:a7:f0:ee:b2:0b:34:ea:4e:08:a2:80:
d0:ce:0c:d8:7f:8a:51:cf:98:46:d2:1b:fc:cc:84:57:ff:72:
8f:02:b8:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzktcw+dXHAXnVBkh3nE6WtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwY2ZkM2E0OWJjNzFlNzRhMGQwYmY3ZTM0NmNhODliMjk1
OTdhMTIwHhcNMjYwMzEzMDEwMDQ1WhcNMjYwMzE0MDEwMDQ1WjAzMTEwLwYDVQQD
EyhmNDc3ZTg3MzM3OTc3YTI2MWJiM2NkMjAwZGY3YTBmY2M1ZWVkMGY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptkY2ogZQgcT+klZMHhcYJo4lnJ9
RBPpRo05DppIK0Ox0R7aWf0REi+KDKjKqqRs4NIdHYEZoJtz8nIUNKvKocLnFf7U
/ige7CaZkVodHesLOed+Bz7k77+6C7T2TsNnFG/KpdI/SSpj1m/D8IK5p/9tjztq
eTWtq17wcI5q8iWCIM5Dl6wDOk82bX4AWw7nA7eSRZLyowxBePTA65Qfy1ayKm3X
o/jeWAUyUGnd5RUCcoUlsAJ4x9HoHZnLhoFNxJ2mhRl74Cb2dqDVNsGbRhq0zrG4
oHLFSIzil1qkNrxY6xezibtCSdSyBlaaMBmSe0jCm6ZcsMKSouwZxviR4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPR36HM3l3omG7PNIA33oPzF7tD4MB8GA1UdIwQY
MBaAFEDP06Sbxx50oNC/fjRsqJspWXoSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wYjlmMDctZjE2Ni00Njc1LWIxODUt
NjBiNmViYmI3ZTZmLzEvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wYjlmMDctZjE2Ni00Njc1LWIxODUtNjBiNmViYmI3ZTZm
LzEvUU1fVHBKdkhIblNnMEw5LU5HeW9teWxaZWhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjlc4ABEh
73VEiXwmg83D9g49MBvFzQBrBYQ41/NOhExosWH1efBo2HB23mcDipowiPZVBwyC
E3gwgczjmwezVhPfrg8Z0j2EA492q+K+O/f04BE953BAs/8pbpSxt49QYBdDwivB
wMFxCMv/0pcQVRF+YtLPtpsBOzoJEQT27mAdukfun867kIw34NfMsTPsydW2BxuT
rauuiB4bnzWEPV25hV08osBVdTp58h7WdlDUXA1WJBODqW1XmeHqCsk1WPJ5B1x9
hEX3kc+OeIMf2Nkq6dlil969LSIJdWrgBKfw7rILNOpOCKKA0M4M2H+KUc+YRtIb
/MyEV/9yjwK4bw==
-----END CERTIFICATE-----
Generated at Fri Mar 13 03:48:22 2026 by rpki-client