Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
File: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft (raw, json)
Hash identifier: qpeDv0GPTtL4zVxbaO1b/C/N2uyEhfl6uswKWtC7op0=
Subject key identifier: C7:F2:C9:88:51:26:C0:5A:48:CD:AF:47:38:FE:11:48:8A:D2:3B:EC
Authority key identifier: 41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
Certificate issuer: /CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Certificate serial: 019D2772C9E378D9C92E611B740D819DB9E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 00:02:07 +0000
Manifest this update: Thu 26 Mar 2026 00:02:07 +0000
Manifest next update: Fri 27 Mar 2026 00:02:07 +0000
Files and hashes: 1: 16Of3nkjMP8UdSS9id5ZJPl_uic.roa (hash: 3kAPeMDB74ONzDFPUBPrWjZx5ADHmGueRoPekMbbEgg=)
2: QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl (hash: PqjHGJFqXE91KKkkWY1ReII6qG95koBEjVH0mSX2PDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:c9:e3:78:d9:c9:2e:61:1b:74:0d:81:9d:b9:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=418df868f7d9e98d4fd41e6da597a283c9141b44
Validity
Not Before: Mar 26 00:02:07 2026 GMT
Not After : Mar 27 00:02:07 2026 GMT
Subject: CN=c7f2c9885126c05a48cdaf4738fe11488ad23bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:bd:25:28:8e:23:ec:0d:2e:64:57:53:40:af:
8e:40:51:ee:4a:5f:5b:40:b3:43:03:3b:e8:0e:15:
8f:a7:5a:55:42:73:94:df:9e:e6:db:66:da:3e:f0:
20:85:5f:15:8a:cb:e4:0f:a9:60:01:44:55:2d:92:
ec:47:56:ca:a7:f5:05:51:3b:89:de:52:0f:d3:62:
7a:05:5a:d5:2c:30:eb:e4:a4:e3:a1:3d:af:e8:2a:
78:07:1a:b8:97:4c:f1:6e:f3:c0:1d:b7:65:70:12:
79:ea:ac:4c:24:3d:1d:26:84:55:9e:ff:c9:f3:d4:
9d:d3:a8:d4:e9:98:ad:dd:e8:6f:3f:66:d2:30:a4:
99:5c:e3:c6:b0:7e:0e:a7:b0:d6:f7:fa:b7:7b:ee:
2e:ad:36:d4:bb:89:d2:df:4c:26:d5:07:62:70:9e:
b6:a1:11:46:b7:77:16:32:75:7c:6e:de:f7:1b:21:
7d:ea:4c:5c:c8:3a:a3:b0:fc:1b:a4:2a:6f:9f:55:
40:a8:de:21:d6:b1:fd:2a:10:e7:ed:f7:12:06:71:
6f:5a:f2:a3:74:83:b0:d6:53:81:48:5b:1c:61:25:
3f:d9:2b:cb:5d:45:2a:24:d0:5e:30:06:32:6f:56:
3c:fc:01:22:53:b3:13:20:28:8e:74:28:5c:2a:0c:
ac:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F2:C9:88:51:26:C0:5A:48:CD:AF:47:38:FE:11:48:8A:D2:3B:EC
X509v3 Authority Key Identifier:
keyid:41:8D:F8:68:F7:D9:E9:8D:4F:D4:1E:6D:A5:97:A2:83:C9:14:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c6f86d-f795-419f-ad31-ee9c3452cbaf/1/QY34aPfZ6Y1P1B5tpZeig8kUG0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:fc:2f:cf:1d:94:ca:e1:33:7d:85:27:63:38:19:14:af:6d:
ed:6b:93:2a:7c:c3:7a:9e:71:e9:86:f0:3f:8c:56:52:8e:5d:
98:05:bd:ce:29:6a:69:f7:27:2b:7e:6e:13:e5:53:6c:23:58:
22:7e:7f:06:5f:83:04:67:46:49:1f:c5:9e:9d:a9:de:d3:45:
3c:26:16:0c:73:0b:3b:ba:be:e9:bc:eb:f4:f2:c3:63:18:fe:
3a:43:f0:cb:a0:55:d1:cf:74:e3:7f:e6:c6:4e:df:4f:15:f7:
2c:b2:0c:1d:9f:f4:1c:36:53:d4:79:d2:c7:14:0f:ad:b4:b4:
ea:82:a7:29:27:5b:84:ee:45:7d:b6:57:4f:bf:73:a6:c6:d0:
12:ae:fd:e7:37:2d:13:f5:fb:cf:d3:45:34:4f:a7:50:47:76:
cc:2d:ec:df:4c:25:75:4b:da:83:22:86:68:ba:5e:ac:a5:b6:
f8:78:4e:9f:d3:2e:fd:06:e1:a3:d9:c2:24:fb:73:ff:4f:02:
df:fb:8b:78:cb:cf:05:d0:ba:25:9a:b3:00:b7:98:09:f7:a2:
87:a2:ce:73:f6:43:54:d4:24:54:ac:f4:8f:76:85:20:db:7f:
9e:ed:0c:04:17:f3:cd:6b:cc:6b:34:ac:b2:f4:ca:e1:44:e5:
b7:8f:20:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncsnjeNnJLmEbdA2BnbnhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxOGRmODY4ZjdkOWU5OGQ0ZmQ0MWU2ZGE1OTdhMjgzYzkx
NDFiNDQwHhcNMjYwMzI2MDAwMjA3WhcNMjYwMzI3MDAwMjA3WjAzMTEwLwYDVQQD
EyhjN2YyYzk4ODUxMjZjMDVhNDhjZGFmNDczOGZlMTE0ODhhZDIzYmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8L0lKI4j7A0uZFdTQK+OQFHuSl9b
QLNDAzvoDhWPp1pVQnOU357m22baPvAghV8VisvkD6lgAURVLZLsR1bKp/UFUTuJ
3lIP02J6BVrVLDDr5KTjoT2v6Cp4Bxq4l0zxbvPAHbdlcBJ56qxMJD0dJoRVnv/J
89Sd06jU6Zit3ehvP2bSMKSZXOPGsH4Op7DW9/q3e+4urTbUu4nS30wm1QdicJ62
oRFGt3cWMnV8bt73GyF96kxcyDqjsPwbpCpvn1VAqN4h1rH9KhDn7fcSBnFvWvKj
dIOw1lOBSFscYSU/2SvLXUUqJNBeMAYyb1Y8/AEiU7MTICiOdChcKgysUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMfyyYhRJsBaSM2vRzj+EUiK0jvsMB8GA1UdIwQY
MBaAFEGN+Gj32emNT9QebaWXooPJFBtEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jNmY4NmQtZjc5NS00MTlmLWFkMzEt
ZWU5YzM0NTJjYmFmLzEvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9jNmY4NmQtZjc5NS00MTlmLWFkMzEtZWU5YzM0NTJjYmFm
LzEvUVkzNGFQZlo2WTFQMUI1dHBaZWlnOGtVRzBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJfwvzx2U
yuEzfYUnYzgZFK9t7WuTKnzDep5x6YbwP4xWUo5dmAW9zilqafcnK35uE+VTbCNY
In5/Bl+DBGdGSR/Fnp2p3tNFPCYWDHMLO7q+6bzr9PLDYxj+OkPwy6BV0c9043/m
xk7fTxX3LLIMHZ/0HDZT1HnSxxQPrbS06oKnKSdbhO5FfbZXT79zpsbQEq795zct
E/X7z9NFNE+nUEd2zC3s30wldUvagyKGaLperKW2+HhOn9Mu/Qbho9nCJPtz/08C
3/uLeMvPBdC6JZqzALeYCfeih6LOc/ZDVNQkVKz0j3aFINt/nu0MBBfzzWvMazSs
svTK4UTlt48g3w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:24:19 2026 by rpki-client