Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
File: QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft (raw, json)
Hash identifier: uLh8GdpO6yOx6EKOsTOEnUKBMDfvonHcZZYJLIDJkso=
Subject key identifier: 95:88:4C:6C:6C:43:34:CB:6F:19:4A:60:8F:71:83:67:76:83:AA:91
Authority key identifier: 41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
Certificate issuer: /CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Certificate serial: 019D38665A2D14204ED8F7ACD3BBEEAD4E79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
Manifest number: 181F
Signing time: Sun 29 Mar 2026 07:02:04 +0000
Manifest this update: Sun 29 Mar 2026 07:02:04 +0000
Manifest next update: Mon 30 Mar 2026 07:02:04 +0000
Files and hashes: 1: QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl (hash: 1/ncRFkRUDLq4B5UT+MnXyfXbpZJFR7NoKVuoKtpJDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:5a:2d:14:20:4e:d8:f7:ac:d3:bb:ee:ad:4e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Validity
Not Before: Mar 29 07:02:04 2026 GMT
Not After : Mar 30 07:02:04 2026 GMT
Subject: CN=95884c6c6c4334cb6f194a608f7183677683aa91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:49:3a:f7:4c:f3:74:fb:5f:07:9d:53:63:5d:
b1:82:4e:2d:92:a4:30:d8:47:11:9c:54:0a:9b:16:
f2:50:1a:4c:87:ac:65:13:fb:8c:9d:fb:bf:9d:1a:
f2:bf:f1:15:8d:29:73:b9:05:ad:df:bf:90:31:55:
a6:9f:40:77:b4:7f:51:7f:fb:36:a5:10:f2:f5:02:
94:98:08:21:35:23:95:11:ac:ee:09:d1:a3:ad:8c:
72:4d:77:e1:83:a2:c9:74:c2:86:3d:12:b5:7a:88:
77:4a:9b:06:82:cc:42:13:47:3b:33:cb:af:df:ff:
63:9c:9b:83:3a:7f:8f:76:ad:93:30:a8:c7:24:b8:
1d:f9:47:d6:13:f5:ca:78:6e:17:bf:cf:1e:14:1f:
ea:2f:45:62:40:a0:ad:ed:a8:90:44:e8:a6:f5:32:
3a:27:c9:26:0b:38:63:02:22:3d:c4:9f:a9:67:a3:
33:4e:e7:99:cd:e6:f4:33:31:34:f9:1e:31:3c:76:
89:53:ac:84:76:a0:fa:4f:27:8c:fa:ca:fd:bf:30:
b8:37:5b:52:6e:ae:fd:3a:6f:ec:45:4c:ee:7a:12:
43:29:0d:b4:73:c2:bf:7d:76:a3:52:10:4c:cb:80:
ac:17:50:dc:58:a2:13:ae:29:a6:1e:d0:76:17:f1:
85:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:88:4C:6C:6C:43:34:CB:6F:19:4A:60:8F:71:83:67:76:83:AA:91
X509v3 Authority Key Identifier:
keyid:41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:dc:e1:93:f0:5a:4d:9e:26:a6:38:7b:20:85:37:14:73:e2:
ec:ce:2f:3b:4b:c8:f6:18:5c:6f:a5:61:7b:3b:e0:74:30:55:
60:d9:0e:ae:3e:fc:35:28:3c:7f:14:49:47:fd:08:fe:57:80:
21:27:85:6f:5a:60:22:7d:16:01:eb:56:b8:a8:7d:dd:1a:a6:
3f:3b:b7:da:e4:2a:52:f8:5b:a6:e9:6a:7f:be:1e:ef:e1:3f:
b7:8f:5b:d5:1a:64:78:7e:d9:77:90:83:8b:b3:a4:6e:b2:a6:
29:5b:1f:6d:c7:ea:af:5f:fe:02:c6:db:0c:15:38:31:6f:d1:
64:80:c9:15:3b:72:b4:5c:9b:52:0b:a8:88:38:e9:86:95:f3:
8f:66:3a:79:4e:51:d7:b1:e0:3b:76:bd:2f:4b:d3:ac:16:27:
29:b2:67:6c:2f:6a:86:95:04:9b:93:5f:b4:87:84:47:d9:be:
3a:21:c0:f5:50:2f:0d:26:ba:c0:08:83:21:2e:e1:dc:b4:f6:
9a:78:81:ac:7d:eb:c8:4a:e9:69:55:99:49:69:0d:4f:bf:4d:
c4:91:56:84:c4:d9:8b:20:7d:2c:d6:03:ab:3f:db:72:ea:de:
99:47:57:34:09:3a:b2:36:75:b1:87:3b:3a:e4:c3:b7:5c:eb:
a0:bf:08:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZlotFCBO2Pes07vurU55MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxNzg1Y2I1ZmM2YjQwZmRmMTRmNzJhNmQyNWY0MTQzYzE3
YzMxN2MwHhcNMjYwMzI5MDcwMjA0WhcNMjYwMzMwMDcwMjA0WjAzMTEwLwYDVQQD
Eyg5NTg4NGM2YzZjNDMzNGNiNmYxOTRhNjA4ZjcxODM2Nzc2ODNhYTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ek690zzdPtfB51TY12xgk4tkqQw
2EcRnFQKmxbyUBpMh6xlE/uMnfu/nRryv/EVjSlzuQWt37+QMVWmn0B3tH9Rf/s2
pRDy9QKUmAghNSOVEazuCdGjrYxyTXfhg6LJdMKGPRK1eoh3SpsGgsxCE0c7M8uv
3/9jnJuDOn+Pdq2TMKjHJLgd+UfWE/XKeG4Xv88eFB/qL0ViQKCt7aiQROim9TI6
J8kmCzhjAiI9xJ+pZ6MzTueZzeb0MzE0+R4xPHaJU6yEdqD6TyeM+sr9vzC4N1tS
bq79Om/sRUzuehJDKQ20c8K/fXajUhBMy4CsF1DcWKITrimmHtB2F/GFUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJWITGxsQzTLbxlKYI9xg2d2g6qRMB8GA1UdIwQY
MBaAFEF4XLX8a0D98U9yptJfQUPBfDF8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9hZTM4NDAtN2RkYS00ODJlLWEyNGUt
ZTQ2ZWM1YjliMDZjLzEvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9hZTM4NDAtN2RkYS00ODJlLWEyNGUtZTQ2ZWM1YjliMDZj
LzEvUVhoY3RmeHJRUDN4VDNLbTBsOUJROEY4TVh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVNzhk/Ba
TZ4mpjh7IIU3FHPi7M4vO0vI9hhcb6VhezvgdDBVYNkOrj78NSg8fxRJR/0I/leA
ISeFb1pgIn0WAetWuKh93RqmPzu32uQqUvhbpulqf74e7+E/t49b1RpkeH7Zd5CD
i7OkbrKmKVsfbcfqr1/+AsbbDBU4MW/RZIDJFTtytFybUguoiDjphpXzj2Y6eU5R
17HgO3a9L0vTrBYnKbJnbC9qhpUEm5NftIeER9m+OiHA9VAvDSa6wAiDIS7h3LT2
mniBrH3ryErpaVWZSWkNT79NxJFWhMTZiyB9LNYDqz/bcuremUdXNAk6sjZ1sYc7
OuTDt1zroL8IAg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:01:27 2026 by rpki-client