Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
File: QB0ZYVrOK7vPoJFpCAgIdipksX4.mft (raw, json)
Hash identifier: tUzw+RIIU10XH5z0Tul9JLU4NAyc87YEs9GAknvxohE=
Subject key identifier: 99:D8:67:7C:C1:CC:B9:2E:E2:96:CB:5A:46:98:71:55:38:5A:0A:BB
Authority key identifier: 40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
Certificate issuer: /CN=401d19615ace2bbbcfa09169080808762a64b17e
Certificate serial: 019D281679C08D881488F901F5615FED5A4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
Manifest number: 0756
Signing time: Thu 26 Mar 2026 03:00:54 +0000
Manifest this update: Thu 26 Mar 2026 03:00:54 +0000
Manifest next update: Fri 27 Mar 2026 03:00:54 +0000
Files and hashes: 1: QB0ZYVrOK7vPoJFpCAgIdipksX4.crl (hash: Wjftj5+KruWMV56RBKh2jX+ltiGb6Z06Mph9rPFrapg=)
2: VI_14hIZSMxriiYvEo8zurAkwos.roa (hash: vbC8BhXmxZVktP9z4L8ZbNsqrQlwhBR+BWbQ4L1r4nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:79:c0:8d:88:14:88:f9:01:f5:61:5f:ed:5a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401d19615ace2bbbcfa09169080808762a64b17e
Validity
Not Before: Mar 26 03:00:54 2026 GMT
Not After : Mar 27 03:00:54 2026 GMT
Subject: CN=99d8677cc1ccb92ee296cb5a46987155385a0abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fe:81:01:db:70:4a:10:e2:73:0e:aa:2a:6c:
b1:cd:ee:9a:0a:76:3c:50:74:31:52:aa:c2:e8:f9:
c2:79:e1:43:17:bb:50:ac:71:5d:18:ca:49:a6:0a:
7f:d0:1e:07:ab:c5:38:04:21:9a:95:a2:dc:ed:2f:
22:c3:08:3c:1f:fd:b9:91:86:42:27:71:cb:ec:81:
9d:ce:8b:e6:3a:77:95:c5:7e:51:85:5c:01:1a:cd:
22:36:37:9e:c0:22:a7:46:a3:05:0a:cc:3e:51:b3:
dd:52:54:33:d6:68:d2:ec:ad:4c:23:28:05:ec:3f:
12:19:67:39:60:ca:9f:58:fd:88:d0:2d:80:c8:19:
08:f5:e4:c1:d2:c2:eb:d8:c2:8d:c7:15:54:04:89:
6e:f8:05:82:f8:a2:80:b0:68:11:73:5d:65:db:7f:
6b:28:7a:a5:79:c3:66:a6:08:c9:98:5e:b8:28:fa:
f2:59:1f:57:48:e5:91:c8:df:e2:5b:73:6f:62:97:
9c:17:34:cc:0f:a5:71:f3:66:ac:14:6a:b4:52:bd:
96:cd:18:b7:76:80:cd:20:f5:78:11:28:59:68:09:
59:2e:88:bb:8b:df:79:f0:8f:3a:58:9f:51:c5:20:
6a:e2:c0:98:99:15:44:76:7d:fe:6a:44:b3:c1:ec:
a3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D8:67:7C:C1:CC:B9:2E:E2:96:CB:5A:46:98:71:55:38:5A:0A:BB
X509v3 Authority Key Identifier:
keyid:40:1D:19:61:5A:CE:2B:BB:CF:A0:91:69:08:08:08:76:2A:64:B1:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QB0ZYVrOK7vPoJFpCAgIdipksX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b5da70-4210-463e-9dc6-979972a0014d/1/QB0ZYVrOK7vPoJFpCAgIdipksX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:82:44:7c:2f:a6:ea:53:d9:00:2f:9e:2f:41:d9:ae:73:62:
50:82:c7:c5:e7:b6:dc:61:e4:40:fc:8f:4f:7d:d1:e4:20:c2:
5d:31:e6:84:f8:ed:10:f0:28:50:fe:01:87:e9:61:75:fc:75:
c8:fa:f0:ce:cc:81:30:53:11:d6:70:2f:7f:f5:22:00:06:98:
02:a2:c1:9a:8b:24:a1:88:4b:a4:98:ff:d6:b0:89:77:9c:df:
55:f7:06:29:44:ff:d9:61:fd:4c:21:b4:a4:3c:85:0c:d1:ba:
45:d2:9d:6b:54:66:6b:40:f4:db:80:fd:e0:6c:f7:69:9e:55:
69:44:b0:d7:5c:82:cf:4e:0f:ff:29:b8:92:59:10:8f:64:28:
db:d1:dc:4c:d8:19:e3:19:f3:8f:3d:29:46:ac:df:0e:e0:ba:
56:2c:0c:84:1d:a1:17:eb:f3:6f:1a:02:1c:2e:0c:96:f2:8f:
e4:45:e2:2d:ff:f1:5c:04:a6:3d:15:2d:a9:f1:ff:ef:b6:26:
9c:75:3b:6c:6a:24:a6:cc:ab:5f:0f:1d:18:14:9b:0f:b7:23:
6a:b7:45:ef:24:81:41:9b:ad:a8:26:45:0b:0a:ee:87:38:7a:
ab:60:4f:1d:cb:69:64:f9:6b:15:ba:93:29:43:c0:01:1c:b7:
38:6d:e8:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oFnnAjYgUiPkB9WFf7VpLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMWQxOTYxNWFjZTJiYmJjZmEwOTE2OTA4MDgwODc2MmE2
NGIxN2UwHhcNMjYwMzI2MDMwMDU0WhcNMjYwMzI3MDMwMDU0WjAzMTEwLwYDVQQD
Eyg5OWQ4Njc3Y2MxY2NiOTJlZTI5NmNiNWE0Njk4NzE1NTM4NWEwYWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxv6BAdtwShDicw6qKmyxze6aCnY8
UHQxUqrC6PnCeeFDF7tQrHFdGMpJpgp/0B4Hq8U4BCGalaLc7S8iwwg8H/25kYZC
J3HL7IGdzovmOneVxX5RhVwBGs0iNjeewCKnRqMFCsw+UbPdUlQz1mjS7K1MIygF
7D8SGWc5YMqfWP2I0C2AyBkI9eTB0sLr2MKNxxVUBIlu+AWC+KKAsGgRc11l239r
KHqlecNmpgjJmF64KPryWR9XSOWRyN/iW3NvYpecFzTMD6Vx82asFGq0Ur2WzRi3
doDNIPV4EShZaAlZLoi7i9958I86WJ9RxSBq4sCYmRVEdn3+akSzweyj1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJnYZ3zBzLku4pbLWkaYcVU4Wgq7MB8GA1UdIwQY
MBaAFEAdGWFaziu7z6CRaQgICHYqZLF+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9iNWRhNzAtNDIxMC00NjNlLTlkYzYt
OTc5OTcyYTAwMTRkLzEvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9iNWRhNzAtNDIxMC00NjNlLTlkYzYtOTc5OTcyYTAwMTRk
LzEvUUIwWllWck9LN3ZQb0pGcENBZ0lkaXBrc1g0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyIJEfC+m
6lPZAC+eL0HZrnNiUILHxee23GHkQPyPT33R5CDCXTHmhPjtEPAoUP4Bh+lhdfx1
yPrwzsyBMFMR1nAvf/UiAAaYAqLBmoskoYhLpJj/1rCJd5zfVfcGKUT/2WH9TCG0
pDyFDNG6RdKda1Rma0D024D94Gz3aZ5VaUSw11yCz04P/ym4klkQj2Qo29HcTNgZ
4xnzjz0pRqzfDuC6ViwMhB2hF+vzbxoCHC4MlvKP5EXiLf/xXASmPRUtqfH/77Ym
nHU7bGokpsyrXw8dGBSbD7cjardF7ySBQZutqCZFCwruhzh6q2BPHctpZPlrFbqT
KUPAARy3OG3oLA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:00:50 2026 by rpki-client