Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
File: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft (raw, json)
Hash identifier: mka1M6JWwjW3gU0FsqPJKb5ZwotDAJ4WWjXKTjwoF6A=
Subject key identifier: DF:9E:1E:DA:3A:CD:D6:B4:D6:36:42:FB:9B:A8:9C:0D:BE:2F:D9:EC
Authority key identifier: 40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
Certificate issuer: /CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Certificate serial: 019D28BB8256E897352724FEB069C4B566D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 06:01:10 +0000
Manifest this update: Thu 26 Mar 2026 06:01:10 +0000
Manifest next update: Fri 27 Mar 2026 06:01:10 +0000
Files and hashes: 1: QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl (hash: zHLw2UbtSybsGF8JmKhs34N4wFcj0bQK7ecaDwDlk2g=)
2: hVrll11zraZlwu0aoJ27lTvgIvM.roa (hash: p+52m9VvNKJJpUqhG5dFcaxf3Gx9Tk084ipIrkRQ47E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:82:56:e8:97:35:27:24:fe:b0:69:c4:b5:66:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa71157e20d98036bbd693b8ecbb2b99f0f03c
Validity
Not Before: Mar 26 06:01:10 2026 GMT
Not After : Mar 27 06:01:10 2026 GMT
Subject: CN=df9e1eda3acdd6b4d63642fb9ba89c0dbe2fd9ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bd:64:0a:d3:2c:f9:d7:ed:d1:81:e7:13:77:
8f:70:f6:e3:8c:cc:0c:3d:18:2c:13:a6:e9:d4:11:
17:12:dd:a2:16:d2:27:89:0f:ee:34:7f:5f:b6:34:
89:96:89:2a:43:76:73:77:60:2d:d4:64:97:47:70:
7e:64:fd:86:27:df:c0:cc:9a:32:19:00:c2:f1:38:
c9:dc:94:c5:50:a5:ce:4a:f7:ef:8e:18:f0:ff:ca:
fb:61:da:7b:f0:ed:af:e0:0a:90:8d:24:c2:56:ca:
52:0e:f2:66:c0:68:61:2e:26:a7:0a:2e:4a:9b:31:
03:64:bc:60:b1:94:65:b7:ea:fa:38:cb:4c:8a:2e:
f1:c5:93:20:36:9d:76:58:76:a2:1f:76:6a:da:1c:
54:d4:d5:f8:bd:07:26:00:14:36:1b:05:1f:f9:cf:
a7:64:c2:19:f6:63:56:b6:c3:8e:0f:37:4b:33:01:
c4:39:8a:a4:4d:43:a2:ec:81:25:c1:13:24:f4:cf:
ae:66:63:84:a6:85:4d:c5:4a:26:d8:d0:99:ee:fb:
d4:27:60:cf:fd:e6:15:7f:04:f0:89:1b:58:83:62:
8f:8d:30:ac:7e:5a:28:75:87:09:7f:6e:a4:f4:2b:
a0:e2:c9:3e:5a:1e:6d:3e:80:6a:e8:4e:a3:7e:78:
ac:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9E:1E:DA:3A:CD:D6:B4:D6:36:42:FB:9B:A8:9C:0D:BE:2F:D9:EC
X509v3 Authority Key Identifier:
keyid:40:AA:71:15:7E:20:D9:80:36:BB:D6:93:B8:EC:BB:2B:99:F0:F0:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2e2c8e-4c2b-48e9-afd5-235aba19d9f9/1/QKpxFX4g2YA2u9aTuOy7K5nw8Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e1:bb:00:27:d9:7f:9c:8b:37:23:b4:fc:db:27:0d:7f:7c:
f0:3f:32:65:c7:30:f3:4c:f1:45:25:b6:20:60:a9:11:cf:9e:
92:c9:5e:82:1d:6d:76:b3:ef:76:0d:ef:49:fc:0c:fd:3a:88:
9e:aa:f5:4a:32:43:16:09:30:72:8b:19:97:81:c7:3c:76:43:
5f:a0:82:b2:36:01:4e:e8:24:de:88:ef:af:38:cb:fb:6c:6a:
b1:d7:72:ac:3a:46:69:19:ea:9f:16:34:11:a3:cc:41:60:4f:
b4:2b:d5:48:e5:f1:a7:5d:12:bb:f4:cc:0b:ad:5c:2f:41:dc:
61:61:fa:c9:63:cb:53:ce:7d:b4:74:9c:a4:08:2b:ec:55:f6:
11:e2:73:f3:43:b7:af:ce:90:9e:3f:89:c5:1e:ad:b8:9a:47:
58:0f:22:8b:27:02:86:1c:3a:41:f8:c0:18:79:da:53:c2:8b:
00:8f:e7:6e:4c:35:a5:b6:e3:44:96:04:4d:e6:f1:8d:47:40:
83:af:2b:e0:92:c1:00:a2:c1:2b:cc:5a:84:77:cc:3b:ab:f4:
2c:b1:55:33:90:32:eb:5f:12:59:6f:20:9d:5b:1e:ad:10:89:
6c:ab:3a:43:31:83:16:3f:93:29:39:73:57:6e:5a:02:8e:af:
60:7b:7f:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ou4JW6Jc1JyT+sGnEtWbRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYWE3MTE1N2UyMGQ5ODAzNmJiZDY5M2I4ZWNiYjJiOTlm
MGYwM2MwHhcNMjYwMzI2MDYwMTEwWhcNMjYwMzI3MDYwMTEwWjAzMTEwLwYDVQQD
EyhkZjllMWVkYTNhY2RkNmI0ZDYzNjQyZmI5YmE4OWMwZGJlMmZkOWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq71kCtMs+dft0YHnE3ePcPbjjMwM
PRgsE6bp1BEXEt2iFtIniQ/uNH9ftjSJlokqQ3Zzd2At1GSXR3B+ZP2GJ9/AzJoy
GQDC8TjJ3JTFUKXOSvfvjhjw/8r7Ydp78O2v4AqQjSTCVspSDvJmwGhhLianCi5K
mzEDZLxgsZRlt+r6OMtMii7xxZMgNp12WHaiH3Zq2hxU1NX4vQcmABQ2GwUf+c+n
ZMIZ9mNWtsOODzdLMwHEOYqkTUOi7IElwRMk9M+uZmOEpoVNxUom2NCZ7vvUJ2DP
/eYVfwTwiRtYg2KPjTCsfloodYcJf26k9Cug4sk+Wh5tPoBq6E6jfnisOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN+eHto6zda01jZC+5uonA2+L9nsMB8GA1UdIwQY
MBaAFECqcRV+INmANrvWk7jsuyuZ8PA8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUt
MjM1YWJhMTlkOWY5LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yZTJjOGUtNGMyYi00OGU5LWFmZDUtMjM1YWJhMTlkOWY5
LzEvUUtweEZYNGcyWUEydTlhVHVPeTdLNW53OER3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXuG7ACfZ
f5yLNyO0/NsnDX988D8yZccw80zxRSW2IGCpEc+ekslegh1tdrPvdg3vSfwM/TqI
nqr1SjJDFgkwcosZl4HHPHZDX6CCsjYBTugk3ojvrzjL+2xqsddyrDpGaRnqnxY0
EaPMQWBPtCvVSOXxp10Su/TMC61cL0HcYWH6yWPLU859tHScpAgr7FX2EeJz80O3
r86Qnj+JxR6tuJpHWA8iiycChhw6QfjAGHnaU8KLAI/nbkw1pbbjRJYETebxjUdA
g68r4JLBAKLBK8xahHfMO6v0LLFVM5Ay618SWW8gnVserRCJbKs6QzGDFj+TKTlz
V25aAo6vYHt/aQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:53:00 2026 by rpki-client