Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
File: QyB1WWVFCTwGpvz4-rV7GS53kKo.mft (raw, json)
Hash identifier: 1kIhlWPzPcnDbNpLhmsi2R+GqAv+6WyhGmxwKge1yuI=
Subject key identifier: 62:B9:05:AA:F9:1C:80:EC:4A:3A:77:17:DC:8C:33:34:19:A8:82:D6
Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa
Certificate serial: 019D2A04720436A687420744D192CA68F165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 12:00:27 +0000
Manifest this update: Thu 26 Mar 2026 12:00:27 +0000
Manifest next update: Fri 27 Mar 2026 12:00:27 +0000
Files and hashes: 1: 7Ajy7T_IXat5EHnX5jOdCl3BXSs.roa (hash: Rn+5opWUGoRW49OpMrdlbpM9u9h2SBCx0mFY1z5Li4g=)
2: QyB1WWVFCTwGpvz4-rV7GS53kKo.crl (hash: 3mm6IA/4Br78a4Q8sa1Bw1AkBxZQJfY5Mwpo35fc7qA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 12:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:72:04:36:a6:87:42:07:44:d1:92:ca:68:f1:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa
Validity
Not Before: Mar 26 12:00:27 2026 GMT
Not After : Mar 27 12:00:27 2026 GMT
Subject: CN=62b905aaf91c80ec4a3a7717dc8c333419a882d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:86:2d:fc:5d:dc:55:78:ad:f8:92:7a:24:79:
8b:29:03:0a:df:ac:60:7e:2e:8e:94:5c:b7:bc:ea:
33:de:bc:8d:3a:98:d2:d8:72:e3:da:63:ac:f1:9a:
6c:7a:c2:8b:47:2b:92:4f:4f:5c:8e:bd:fe:f1:ad:
63:1b:aa:d0:76:a9:d5:d5:3a:73:94:62:0a:12:b4:
6f:ea:9d:ca:02:da:9a:fb:6c:fc:3e:ef:94:ac:43:
40:f3:9b:6e:0c:95:ed:ff:93:d7:40:d8:af:da:2b:
12:9f:ff:81:4c:eb:2b:66:cb:21:e6:40:da:f0:5f:
82:fa:e2:7b:9a:9d:9b:6a:e2:a4:79:16:ed:b8:ca:
47:1c:4b:bb:cb:98:40:53:8f:53:65:39:6f:e6:23:
da:e7:09:7f:21:e1:9d:67:bc:b1:7f:4d:23:61:13:
ea:2c:04:36:a9:0c:3b:c1:02:e2:07:cc:e1:1f:b1:
13:8f:93:a0:0a:d2:cb:0a:21:e7:77:1b:6e:30:04:
09:fd:6c:d0:e0:4f:37:16:d4:af:dc:81:e5:22:e2:
5e:b6:6c:03:b6:78:21:86:5b:4d:00:f1:1c:38:7b:
fd:04:48:f7:17:07:16:fe:86:d4:79:88:da:84:5e:
e7:43:ab:d4:83:df:1e:2a:8b:18:cd:2e:a7:b8:a8:
67:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B9:05:AA:F9:1C:80:EC:4A:3A:77:17:DC:8C:33:34:19:A8:82:D6
X509v3 Authority Key Identifier:
keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:f8:f3:e1:a1:5b:a4:5c:26:a6:6b:63:97:15:1e:e6:7f:ac:
e6:b8:46:8a:9f:f5:c1:e9:61:4f:3f:c8:37:c7:98:4c:26:9b:
25:f3:77:98:df:76:8f:49:b1:03:63:0b:a4:d4:4f:90:eb:ff:
37:64:51:e5:ab:fc:da:c8:7a:f1:36:dc:e8:9c:71:02:d3:c7:
87:3a:3c:2d:d5:7d:45:1b:b3:4d:47:cd:bd:ca:85:11:d8:86:
d4:05:1d:74:9d:21:22:64:1b:6c:8a:04:01:49:69:c6:8e:a0:
51:8d:c6:c5:23:21:17:9a:b2:4b:ad:5b:5b:31:22:65:3d:03:
46:46:b5:26:42:3b:45:84:a7:83:26:00:8d:02:f1:2c:7e:d8:
63:71:7e:0a:01:26:5b:34:fc:eb:f5:28:da:89:61:b9:5c:25:
80:6f:56:d9:91:e5:ae:54:7a:27:20:e8:08:dc:8f:f7:71:49:
f5:1f:0c:2d:20:a4:41:1e:5a:f9:08:47:69:ab:95:00:bb:46:
a4:81:98:20:c3:6b:40:87:d8:b3:d4:97:81:ed:f5:e2:e2:8a:
bd:40:f7:9c:3f:bf:62:6b:d2:1b:23:dc:b7:08:21:83:64:59:
d6:b5:35:40:52:5f:cd:d9:29:53:54:90:e5:16:90:51:05:dc:
d3:09:ab:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qBHIENqaHQgdE0ZLKaPFlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzMjA3NTU5NjU0NTA5M2MwNmE2ZmNmOGZhYjU3YjE5MmU3
NzkwYWEwHhcNMjYwMzI2MTIwMDI3WhcNMjYwMzI3MTIwMDI3WjAzMTEwLwYDVQQD
Eyg2MmI5MDVhYWY5MWM4MGVjNGEzYTc3MTdkYzhjMzMzNDE5YTg4MmQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6oYt/F3cVXit+JJ6JHmLKQMK36xg
fi6OlFy3vOoz3ryNOpjS2HLj2mOs8ZpsesKLRyuST09cjr3+8a1jG6rQdqnV1Tpz
lGIKErRv6p3KAtqa+2z8Pu+UrENA85tuDJXt/5PXQNiv2isSn/+BTOsrZssh5kDa
8F+C+uJ7mp2bauKkeRbtuMpHHEu7y5hAU49TZTlv5iPa5wl/IeGdZ7yxf00jYRPq
LAQ2qQw7wQLiB8zhH7ETj5OgCtLLCiHndxtuMAQJ/WzQ4E83FtSv3IHlIuJetmwD
tnghhltNAPEcOHv9BEj3FwcW/obUeYjahF7nQ6vUg98eKosYzS6nuKhndQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGK5Bar5HIDsSjp3F9yMMzQZqILWMB8GA1UdIwQY
MBaAFEMgdVllRQk8Bqb8+Pq1exkud5CqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUt
OTI3OThkYWNhZjc1LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUtOTI3OThkYWNhZjc1
LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAevjz4aFb
pFwmpmtjlxUe5n+s5rhGip/1welhTz/IN8eYTCabJfN3mN92j0mxA2MLpNRPkOv/
N2RR5av82sh68Tbc6JxxAtPHhzo8LdV9RRuzTUfNvcqFEdiG1AUddJ0hImQbbIoE
AUlpxo6gUY3GxSMhF5qyS61bWzEiZT0DRka1JkI7RYSngyYAjQLxLH7YY3F+CgEm
WzT86/Uo2olhuVwlgG9W2ZHlrlR6JyDoCNyP93FJ9R8MLSCkQR5a+QhHaauVALtG
pIGYIMNrQIfYs9SXge314uKKvUD3nD+/YmvSGyPctwghg2RZ1rU1QFJfzdkpU1SQ
5RaQUQXc0wmrng==
-----END CERTIFICATE-----
Generated at Thu Mar 26 20:36:50 2026 by rpki-client