Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.mft
File: QZTZ3em51VD_NJfkNoP2iA1AMyM.mft (raw, json)
Hash identifier: StBLeM6DnLbr1II4PQ+2/WDvxU9EwHiRwq8ZaKMbfhY=
Subject key identifier: 82:CD:2D:F7:04:73:2E:21:33:56:76:F0:32:1A:05:A6:2A:B6:1A:B1
Authority key identifier: 41:94:D9:DD:E9:B9:D5:50:FF:34:97:E4:36:83:F6:88:0D:40:33:23
Certificate issuer: /CN=4194d9dde9b9d550ff3497e43683f6880d403323
Certificate serial: 019D26CD827BC6C2776F96C796432706F04C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QZTZ3em51VD_NJfkNoP2iA1AMyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.mft
Manifest number: 0133
Signing time: Wed 25 Mar 2026 21:01:35 +0000
Manifest this update: Wed 25 Mar 2026 21:01:35 +0000
Manifest next update: Thu 26 Mar 2026 21:01:35 +0000
Files and hashes: 1: Mh7Uh2yrZuE879DdxuGlIe2mllQ.roa (hash: gtl/gNOgRhihO/g/958+G5u3E+/R03DdhrHrLkoU1QA=)
2: QZTZ3em51VD_NJfkNoP2iA1AMyM.crl (hash: TCRu9Jad/tj+qHZKUFJzBwi+SM7tGvfx8tVh3CFRr8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/QZTZ3em51VD_NJfkNoP2iA1AMyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:82:7b:c6:c2:77:6f:96:c7:96:43:27:06:f0:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4194d9dde9b9d550ff3497e43683f6880d403323
Validity
Not Before: Mar 25 21:01:35 2026 GMT
Not After : Mar 26 21:01:35 2026 GMT
Subject: CN=82cd2df704732e21335676f0321a05a62ab61ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c4:12:5e:c8:e0:19:2e:fc:5b:b9:e9:7d:c6:
02:0d:73:5f:4b:eb:37:37:4b:f0:93:67:70:f5:7b:
58:d2:4e:2e:f5:23:05:54:d5:43:63:8d:bb:58:4d:
ed:3f:01:28:b9:11:9c:72:88:d5:d1:ff:f9:18:c5:
dd:0a:9f:0b:46:6d:b4:33:b2:dd:63:fd:84:a2:be:
d8:df:44:9f:08:3b:77:d1:18:c9:ef:0d:fa:dc:6a:
36:91:5a:ea:a9:26:ad:8d:81:e9:d9:a3:04:99:e6:
22:9d:71:1d:64:78:31:39:79:2b:96:11:f2:c7:6f:
72:1d:19:58:a3:00:a1:c3:05:e2:f7:d9:cc:38:37:
59:eb:ae:d6:85:bf:5e:7d:db:0a:bf:8a:5a:9b:4d:
ec:a2:b4:dc:ad:b9:2a:fc:92:79:9b:bb:a6:57:1a:
1c:1e:9a:73:2c:e0:01:fe:39:42:ec:46:ec:23:99:
12:cc:f1:a7:58:f1:a9:c0:20:2e:8b:a7:da:8f:6a:
2f:48:9f:6f:96:6e:08:07:47:2e:6a:d5:6b:10:78:
16:fd:24:d2:1d:65:4f:37:72:cc:92:3b:a4:a8:66:
1c:5c:3c:00:68:de:45:0d:de:58:2b:e8:2e:f2:d5:
5a:7a:09:34:e7:5c:13:b1:17:c7:cd:91:c8:f3:33:
be:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CD:2D:F7:04:73:2E:21:33:56:76:F0:32:1A:05:A6:2A:B6:1A:B1
X509v3 Authority Key Identifier:
keyid:41:94:D9:DD:E9:B9:D5:50:FF:34:97:E4:36:83:F6:88:0D:40:33:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QZTZ3em51VD_NJfkNoP2iA1AMyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/4a6a09-3853-454b-ae09-ffa7514fad2e/1/QZTZ3em51VD_NJfkNoP2iA1AMyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:df:ba:81:d8:e6:ad:98:af:9d:18:26:fb:76:74:9f:e9:0d:
f9:28:5d:c8:61:15:13:1c:17:50:ff:34:2f:5f:68:6d:43:84:
f2:30:fd:7d:7a:ff:2e:c3:18:75:5b:16:5c:d0:c8:3d:2f:c5:
0a:08:f6:56:2d:4e:f7:24:0f:52:2d:dd:6a:ea:9a:55:e5:be:
e2:38:43:e5:0d:9f:95:bb:b0:81:de:48:4e:c4:0f:04:a5:23:
8e:62:7b:8f:d2:37:bd:b0:90:2e:4d:34:25:a2:83:6f:02:60:
12:03:d3:69:c8:52:95:31:dc:b8:28:da:e6:a3:52:e6:50:26:
24:73:fe:f3:a3:3a:ac:37:24:4b:2c:74:3c:10:e5:23:47:8a:
05:e8:2f:0f:00:1c:45:81:b0:eb:d6:72:22:44:03:55:a1:8c:
8d:a1:3b:95:41:bc:9f:ca:1b:45:5c:5f:e4:15:28:36:4f:a9:
aa:47:ae:58:ab:cf:ab:87:7e:a7:a9:34:be:1b:2d:72:e5:23:
36:79:26:e0:95:ba:f2:05:40:02:5b:45:14:53:f5:5e:14:e4:
70:ae:98:dc:ca:d0:17:c6:35:5f:a4:bd:12:6f:e1:e9:ff:0a:
1e:2d:1d:d4:90:8a:34:c2:05:ba:af:d1:c2:5a:6d:b2:c6:70:
7c:38:b7:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzYJ7xsJ3b5bHlkMnBvBMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxOTRkOWRkZTliOWQ1NTBmZjM0OTdlNDM2ODNmNjg4MGQ0
MDMzMjMwHhcNMjYwMzI1MjEwMTM1WhcNMjYwMzI2MjEwMTM1WjAzMTEwLwYDVQQD
Eyg4MmNkMmRmNzA0NzMyZTIxMzM1Njc2ZjAzMjFhMDVhNjJhYjYxYWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18QSXsjgGS78W7npfcYCDXNfS+s3
N0vwk2dw9XtY0k4u9SMFVNVDY427WE3tPwEouRGccojV0f/5GMXdCp8LRm20M7Ld
Y/2Eor7Y30SfCDt30RjJ7w363Go2kVrqqSatjYHp2aMEmeYinXEdZHgxOXkrlhHy
x29yHRlYowChwwXi99nMODdZ667Whb9efdsKv4pam03sorTcrbkq/JJ5m7umVxoc
HppzLOAB/jlC7EbsI5kSzPGnWPGpwCAui6faj2ovSJ9vlm4IB0cuatVrEHgW/STS
HWVPN3LMkjukqGYcXDwAaN5FDd5YK+gu8tVaegk051wTsRfHzZHI8zO+kwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFILNLfcEcy4hM1Z28DIaBaYqthqxMB8GA1UdIwQY
MBaAFEGU2d3pudVQ/zSX5DaD9ogNQDMjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVpUWjNlbTUxVkRfTkpma05vUDJpQTFBTXlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC80YTZhMDktMzg1My00NTRiLWFlMDkt
ZmZhNzUxNGZhZDJlLzEvUVpUWjNlbTUxVkRfTkpma05vUDJpQTFBTXlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC80YTZhMDktMzg1My00NTRiLWFlMDktZmZhNzUxNGZhZDJl
LzEvUVpUWjNlbTUxVkRfTkpma05vUDJpQTFBTXlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMN+6gdjm
rZivnRgm+3Z0n+kN+ShdyGEVExwXUP80L19obUOE8jD9fXr/LsMYdVsWXNDIPS/F
Cgj2Vi1O9yQPUi3dauqaVeW+4jhD5Q2flbuwgd5ITsQPBKUjjmJ7j9I3vbCQLk00
JaKDbwJgEgPTachSlTHcuCja5qNS5lAmJHP+86M6rDckSyx0PBDlI0eKBegvDwAc
RYGw69ZyIkQDVaGMjaE7lUG8n8obRVxf5BUoNk+pqkeuWKvPq4d+p6k0vhstcuUj
Nnkm4JW68gVAAltFFFP1XhTkcK6Y3MrQF8Y1X6S9Em/h6f8KHi0d1JCKNMIFuq/R
wlptssZwfDi3sg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:52 2026 by rpki-client