Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
File: QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft (raw, json)
Hash identifier: QPeP3+WspNq0Ol9W1BjGmBOEVkLiAL6DGJTGANfAWec=
Subject key identifier: B5:E5:5C:9F:52:0D:75:FB:B7:98:AE:A3:02:9F:1E:87:B5:1B:B0:D4
Authority key identifier: 40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
Certificate issuer: /CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Certificate serial: 019D273AD9E05E24317194B5C2358B3EABEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
Manifest number: 0EA4
Signing time: Wed 25 Mar 2026 23:01:01 +0000
Manifest this update: Wed 25 Mar 2026 23:01:01 +0000
Manifest next update: Thu 26 Mar 2026 23:01:01 +0000
Files and hashes: 1: QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl (hash: K8P179MyMG6lThIFTuiZfTD+gZD7n/JvNRMo2Bg4Y40=)
2: yaEEybz2NfCWEApyu2Dzx2yLpcI.roa (hash: j2pzI49xHsyv/Ol3MBefWz6almNV2xHEmt1n4qjR/Wk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:d9:e0:5e:24:31:71:94:b5:c2:35:8b:3e:ab:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cf69cca2c86e194754788edcd88e352ed4e11c
Validity
Not Before: Mar 25 23:01:01 2026 GMT
Not After : Mar 26 23:01:01 2026 GMT
Subject: CN=b5e55c9f520d75fbb798aea3029f1e87b51bb0d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:46:57:1e:0c:5a:3e:e0:3c:0f:16:35:04:09:
88:ad:48:2b:5f:89:cd:ef:55:20:36:f3:e0:22:b0:
81:84:f1:9e:44:dd:fb:6f:11:d8:16:a0:cc:e1:00:
10:db:c1:d6:f2:c8:a0:04:ac:4e:fb:06:b0:b1:55:
c7:5d:61:52:60:72:fd:ed:a3:ff:9d:2a:96:72:02:
57:2a:0f:52:6c:24:7c:e2:08:93:00:87:e9:2b:1a:
e2:a8:24:1d:f1:95:0c:4b:62:82:3c:a2:07:76:70:
0b:9c:90:43:67:c0:7f:9b:3a:d8:18:39:ff:e1:97:
e2:f5:66:3e:9f:c9:eb:c1:7a:56:f8:6f:ae:97:7c:
99:a5:f7:ec:42:73:87:83:cd:16:d5:23:d2:ba:fb:
93:c4:48:f0:13:4e:d7:92:0d:ba:30:92:dd:88:f2:
d4:5f:e0:22:61:a9:1e:ce:4b:fc:33:fe:e1:91:22:
e6:20:00:b9:60:93:86:d0:7a:ca:77:03:38:bf:72:
45:43:a6:84:b6:19:6c:26:6a:cc:8a:0e:13:7f:b5:
56:80:21:33:3d:d0:39:e4:49:fe:40:e3:8b:2d:ab:
16:99:e1:65:3f:78:f6:b8:7e:f6:3e:16:90:40:de:
a8:15:d9:0d:70:da:c2:c2:39:75:6e:fd:e2:02:f9:
d6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E5:5C:9F:52:0D:75:FB:B7:98:AE:A3:02:9F:1E:87:B5:1B:B0:D4
X509v3 Authority Key Identifier:
keyid:40:CF:69:CC:A2:C8:6E:19:47:54:78:8E:DC:D8:8E:35:2E:D4:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM9pzKLIbhlHVHiO3NiONS7U4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b8b606-c65a-409a-ba8d-cf1a5d8e5f6d/1/QM9pzKLIbhlHVHiO3NiONS7U4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:06:d9:8c:ad:70:24:c6:e4:fb:e1:99:29:49:43:de:6d:32:
4e:c3:9d:ec:2c:3f:ea:77:15:61:f4:de:bc:c0:32:29:4f:d5:
65:f7:50:70:97:ca:64:67:04:9b:43:83:a9:53:ec:ef:91:e2:
e5:19:77:79:83:9f:e6:20:a9:c4:a3:d0:6b:c8:73:f9:2e:76:
75:b6:bf:4f:d6:20:a6:ca:f3:8a:3c:e4:85:a3:6e:b5:1e:dc:
c1:2f:be:00:14:cf:84:f5:7f:97:90:ae:03:ad:5a:0c:48:ae:
d9:69:7a:9c:11:18:64:0c:31:f0:ce:51:15:1e:4b:d8:6e:e9:
f4:ce:3a:62:c1:1f:ab:ae:2b:d9:a0:95:be:3c:49:ec:8d:98:
53:73:d6:9c:e7:05:30:5d:54:40:a7:26:80:6b:88:d6:d1:68:
0f:c5:8f:66:ac:3b:77:aa:c6:34:d3:cf:a3:8a:da:b8:34:96:
b9:3a:20:6a:98:aa:2b:0d:1f:19:ee:85:79:fe:ce:bd:d5:92:
ac:34:d7:40:b5:33:04:97:e7:69:a9:1c:3b:6f:ed:c0:95:c1:
98:8f:a0:3b:76:7b:d5:44:bf:81:ba:02:4f:ea:b5:86:97:5f:
ec:b2:1c:a2:e0:ac:90:8e:99:cc:4b:27:d5:fe:97:e2:bc:1a:
ae:58:79:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:18 2026 by rpki-client