Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/97555d-e16a-4661-a590-0691e4615fd0/1/Q0GV8AOXY6Daeh2w5QlVkTgszGM.mft
File: Q0GV8AOXY6Daeh2w5QlVkTgszGM.mft (raw, json)
Hash identifier: gtLZr9cr5JUFltaEfNaY2GH1WwOZmKRoJd06YDDZ9b4=
Subject key identifier: 59:8A:F2:96:82:6D:08:7C:07:6E:6D:D7:8D:23:15:72:F9:20:32:C9
Authority key identifier: 43:41:95:F0:03:97:63:A0:DA:7A:1D:B0:E5:09:55:91:38:2C:CC:63
Certificate issuer: /CN=434195f0039763a0da7a1db0e5095591382ccc63
Certificate serial: 019D262840D9D1B465014D68AE34DF07DF3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0GV8AOXY6Daeh2w5QlVkTgszGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/97555d-e16a-4661-a590-0691e4615fd0/1/Q0GV8AOXY6Daeh2w5QlVkTgszGM.mft
Manifest number: 71
Signing time: Wed 25 Mar 2026 18:01:05 +0000
Manifest this update: Wed 25 Mar 2026 18:01:05 +0000
Manifest next update: Thu 26 Mar 2026 18:01:05 +0000
Files and hashes: 1: Q0GV8AOXY6Daeh2w5QlVkTgszGM.crl (hash: sdKQgG3w1Cn3U0R3u1Oc7+7Qqbx7tkR07VUVYQqUJQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/97555d-e16a-4661-a590-0691e4615fd0/1/Q0GV8AOXY6Daeh2w5QlVkTgszGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/97555d-e16a-4661-a590-0691e4615fd0/1/Q0GV8AOXY6Daeh2w5QlVkTgszGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q0GV8AOXY6Daeh2w5QlVkTgszGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:40:d9:d1:b4:65:01:4d:68:ae:34:df:07:df:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=434195f0039763a0da7a1db0e5095591382ccc63
Validity
Not Before: Mar 25 18:01:05 2026 GMT
Not After : Mar 26 18:01:05 2026 GMT
Subject: CN=598af296826d087c076e6dd78d231572f92032c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9e:2c:04:ae:6e:a3:22:38:34:f3:53:fd:4b:
5d:d1:df:88:9f:01:fa:6f:34:12:fd:b5:11:54:e8:
b3:61:5f:14:d9:60:7e:6d:11:94:e8:27:c6:01:e4:
d4:b4:f9:eb:ae:59:92:21:08:02:99:0a:6d:8c:7e:
07:2d:8e:13:f0:66:54:7c:76:b9:06:09:25:86:3c:
75:e9:f5:41:5e:4c:bd:4d:9b:59:3f:21:e1:29:6f:
ff:ca:e9:a7:d8:0e:fc:c1:e9:9a:88:29:d2:50:40:
fd:15:f3:67:61:d8:7f:f4:f5:c5:96:5e:f0:fa:9f:
47:03:56:71:5c:42:2a:7b:01:05:50:01:ea:5c:ba:
e7:88:ff:13:f8:d9:e0:54:af:99:cd:29:33:d4:bc:
2a:47:4e:6f:10:ac:f5:e2:38:92:ce:1a:76:ce:b4:
27:e9:6b:f4:a8:2b:2d:22:8c:9d:02:a1:b6:e7:06:
a7:00:af:13:d2:11:86:2c:03:f7:bf:11:d9:d5:10:
e1:64:b0:74:28:82:4c:ae:92:1d:ad:6e:3f:fb:24:
20:28:03:7e:30:b7:1f:19:c9:05:05:84:f1:ba:01:
40:bc:cb:e9:57:c0:0b:0e:85:b0:8a:0e:c1:c5:32:
1f:6f:b1:ad:a3:a2:bb:4d:05:c0:fd:3a:97:27:20:
03:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8A:F2:96:82:6D:08:7C:07:6E:6D:D7:8D:23:15:72:F9:20:32:C9
X509v3 Authority Key Identifier:
keyid:43:41:95:F0:03:97:63:A0:DA:7A:1D:B0:E5:09:55:91:38:2C:CC:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0GV8AOXY6Daeh2w5QlVkTgszGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/97555d-e16a-4661-a590-0691e4615fd0/1/Q0GV8AOXY6Daeh2w5QlVkTgszGM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/97555d-e16a-4661-a590-0691e4615fd0/1/Q0GV8AOXY6Daeh2w5QlVkTgszGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:ec:3d:ec:26:8c:fe:c0:5c:ed:98:16:24:0e:5a:ef:ec:36:
96:04:22:fc:ce:0b:b9:f9:87:01:5b:c1:8a:42:97:4b:31:4d:
f6:ac:80:75:62:56:7b:ab:5d:e1:d1:22:5f:3b:78:40:61:54:
99:3f:ab:3c:51:be:06:b8:84:35:5f:6e:c9:ea:14:6d:e0:af:
81:0b:2c:22:78:f9:e5:08:ab:01:b5:53:46:b9:83:c7:ce:de:
34:ad:db:b7:a1:df:d7:33:82:ae:99:e1:fd:c3:43:88:39:12:
19:ba:a6:2a:a5:47:64:fa:ea:68:de:e4:81:19:9c:82:ea:f7:
16:c6:52:fe:bf:de:b8:d1:1b:dc:c5:84:03:2b:b4:63:d0:1a:
c8:e4:79:99:2e:56:04:d4:3a:f0:af:58:69:5d:35:3a:e5:5c:
eb:50:b3:28:e8:b2:e2:e1:82:fb:f9:71:bf:e7:1b:95:35:e1:
59:ff:65:02:dc:d5:3a:53:55:39:a7:b7:aa:ec:48:08:ad:4f:
c7:26:bc:f9:25:e5:68:ab:0b:ab:3b:96:cc:f0:22:bd:ca:51:
4b:8a:58:47:ef:23:5e:79:e9:77:ab:c6:a7:0e:a1:c0:96:e1:
fe:d8:ec:8f:1e:05:7e:a7:a1:08:eb:28:f6:9f:7b:d9:f0:48:
6d:82:a9:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mKEDZ0bRlAU1orjTfB988MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzNDE5NWYwMDM5NzYzYTBkYTdhMWRiMGU1MDk1NTkxMzgy
Y2NjNjMwHhcNMjYwMzI1MTgwMTA1WhcNMjYwMzI2MTgwMTA1WjAzMTEwLwYDVQQD
Eyg1OThhZjI5NjgyNmQwODdjMDc2ZTZkZDc4ZDIzMTU3MmY5MjAzMmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn54sBK5uoyI4NPNT/Utd0d+InwH6
bzQS/bURVOizYV8U2WB+bRGU6CfGAeTUtPnrrlmSIQgCmQptjH4HLY4T8GZUfHa5
Bgklhjx16fVBXky9TZtZPyHhKW//yumn2A78wemaiCnSUED9FfNnYdh/9PXFll7w
+p9HA1ZxXEIqewEFUAHqXLrniP8T+NngVK+ZzSkz1LwqR05vEKz14jiSzhp2zrQn
6Wv0qCstIoydAqG25wanAK8T0hGGLAP3vxHZ1RDhZLB0KIJMrpIdrW4/+yQgKAN+
MLcfGckFBYTxugFAvMvpV8ALDoWwig7BxTIfb7Gto6K7TQXA/TqXJyADyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFmK8paCbQh8B25t140jFXL5IDLJMB8GA1UdIwQY
MBaAFENBlfADl2Og2nodsOUJVZE4LMxjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTBHVjhBT1hZNkRhZWgydzVRbFZrVGdzekdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85NzU1NWQtZTE2YS00NjYxLWE1OTAt
MDY5MWU0NjE1ZmQwLzEvUTBHVjhBT1hZNkRhZWgydzVRbFZrVGdzekdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy85NzU1NWQtZTE2YS00NjYxLWE1OTAtMDY5MWU0NjE1ZmQw
LzEvUTBHVjhBT1hZNkRhZWgydzVRbFZrVGdzekdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACOw97CaM
/sBc7ZgWJA5a7+w2lgQi/M4LufmHAVvBikKXSzFN9qyAdWJWe6td4dEiXzt4QGFU
mT+rPFG+BriENV9uyeoUbeCvgQssInj55QirAbVTRrmDx87eNK3bt6Hf1zOCrpnh
/cNDiDkSGbqmKqVHZPrqaN7kgRmcgur3FsZS/r/euNEb3MWEAyu0Y9AayOR5mS5W
BNQ68K9YaV01OuVc61CzKOiy4uGC+/lxv+cblTXhWf9lAtzVOlNVOae3quxICK1P
xya8+SXlaKsLqzuWzPAivcpRS4pYR+8jXnnpd6vGpw6hwJbh/tjsjx4FfqehCOso
9p972fBIbYKpgA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:28:33 2026 by rpki-client