Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
File: QM1aUDjV4S_hydn1yGZAdMPdCsc.mft (raw, json)
Hash identifier: fDJnQgwinMnAcaqROipN3Z5q+EE1oI8F85HlUxDVumI=
Subject key identifier: F2:BE:85:79:73:FB:70:25:89:C0:05:15:EE:97:2E:DE:0E:66:3D:04
Authority key identifier: 40:CD:5A:50:38:D5:E1:2F:E1:C9:D9:F5:C8:66:40:74:C3:DD:0A:C7
Certificate issuer: /CN=40cd5a5038d5e12fe1c9d9f5c8664074c3dd0ac7
Certificate serial: 019D25BA367A12038B90219C6745267F07DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
Manifest number: 0A33
Signing time: Wed 25 Mar 2026 16:00:53 +0000
Manifest this update: Wed 25 Mar 2026 16:00:53 +0000
Manifest next update: Thu 26 Mar 2026 16:00:53 +0000
Files and hashes: 1: 1M-oRRQHQN7WzAJ9drZIYs_Ib5w.roa (hash: NTj3YD9SP7WkKzIuO7OWJNyQJyk6W1qPJFmHH+wxA0s=)
2: QM1aUDjV4S_hydn1yGZAdMPdCsc.crl (hash: Bws8rf5e8JK14xwX2HODKu2Ok6XMB7AHCJ5UWLTxGoI=)
3: iwD6fP31_W6vGOoxTT3gqLJk_fA.roa (hash: Ome1S1/zjD0FqoPD1PIvZmNPsQ9h6oMkpIMHg8bHlAs=)
4: wSoD-Yyuw9oe0PzcTbDZo2JGCUk.roa (hash: Jy2GHX21npd0zGLUhRjI0tTL90Zy1A+Gk3cU0DE8+Os=)
5: yb0ajEg9z1jtc-eQZB_4deWv04s.roa (hash: JbsHaJRAdxnzkcLyQJbT2pfp0LO9DsZ4+5HMZ4E0Gmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:36:7a:12:03:8b:90:21:9c:67:45:26:7f:07:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cd5a5038d5e12fe1c9d9f5c8664074c3dd0ac7
Validity
Not Before: Mar 25 16:00:53 2026 GMT
Not After : Mar 26 16:00:53 2026 GMT
Subject: CN=f2be857973fb702589c00515ee972ede0e663d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:df:8e:72:0d:ad:ef:98:1f:d5:65:ae:66:42:
15:87:8a:04:7f:38:9a:52:02:48:97:4c:a5:3a:2e:
01:30:2c:ab:75:c5:02:35:bb:6e:84:63:71:1c:49:
40:f2:6f:fa:8c:4a:9c:73:90:e6:89:8c:91:a1:70:
62:ab:2e:65:27:ca:e4:d9:b6:ce:3c:1b:8c:1f:56:
b7:cf:10:29:e2:0e:84:0e:ec:85:87:19:bc:d8:75:
1f:d6:22:4c:dc:8b:4a:5b:a8:66:fe:ea:48:94:24:
ef:b3:cc:7c:3c:cd:5d:99:3d:68:2d:0e:cb:57:6c:
c1:f4:4b:a1:1d:cf:4d:09:11:40:6b:ea:00:01:a1:
70:76:f7:7b:48:4a:0b:27:e1:58:42:8a:c9:99:42:
38:94:7f:47:29:ae:1d:de:4e:00:56:80:b8:8b:8e:
7e:ba:c4:54:f9:83:e7:5f:09:72:90:13:7a:9d:d0:
69:01:69:ca:fa:52:d1:11:53:04:6f:a1:7d:70:0a:
fc:ba:c5:fd:fe:30:9c:ab:42:c4:46:f0:d0:36:62:
76:c2:b2:c9:95:74:a3:e5:04:b1:cc:c1:d6:12:34:
9d:5b:fe:d5:d9:f3:ad:57:6e:81:15:4b:83:2b:cf:
ce:3a:cc:b8:67:75:07:e5:25:f9:07:fc:db:b5:5d:
f5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BE:85:79:73:FB:70:25:89:C0:05:15:EE:97:2E:DE:0E:66:3D:04
X509v3 Authority Key Identifier:
keyid:40:CD:5A:50:38:D5:E1:2F:E1:C9:D9:F5:C8:66:40:74:C3:DD:0A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QM1aUDjV4S_hydn1yGZAdMPdCsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/cec119-4c99-4158-99f1-659c671911f1/1/QM1aUDjV4S_hydn1yGZAdMPdCsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:da:2b:98:be:e9:dc:2d:9d:d2:c4:ac:86:19:7b:07:33:e8:
46:a9:d1:70:96:06:19:ae:3b:5b:a6:c4:63:d0:dd:d5:ac:36:
ff:d0:dd:d0:84:fe:50:f7:9d:59:36:a1:52:ce:74:d9:71:52:
9d:c9:24:f8:88:e3:4a:c2:83:4f:af:a3:6e:de:97:08:56:d7:
89:84:c8:ce:b1:f1:f1:ed:cb:e9:54:c4:92:53:bb:18:da:44:
39:9b:63:3a:f6:d2:31:e6:57:24:ed:95:64:f8:96:ff:12:2d:
4b:ae:e1:02:f5:9b:96:f8:e4:1a:8f:1b:96:66:71:d4:14:31:
16:30:49:8e:6d:01:d7:5e:cc:d2:f0:19:03:03:37:e9:3c:56:
4c:e6:8f:2c:c3:54:28:ea:62:30:a7:5f:21:6e:e6:7d:2f:ea:
aa:4a:df:db:a6:0d:b6:19:2a:7f:03:b3:38:e7:6c:7e:c6:17:
b5:fd:48:ce:00:f6:d6:02:91:05:9c:e1:38:6b:e1:25:21:b0:
d2:b1:cd:6e:94:f2:9c:e0:89:8c:e1:0e:12:18:47:31:9b:ac:
b1:2b:78:76:46:47:ea:5e:ec:a9:16:c9:5a:37:87:01:f8:42:
fc:6a:d1:53:3d:89:e5:b0:49:44:11:a8:b0:fd:40:83:aa:13:
cb:89:e5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:29:55 2026 by rpki-client