Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
File: QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft (raw, json)
Hash identifier: SriQy/bW+qgv7jn2BDKcyJ3GWKnINSQd611cAWvV8No=
Subject key identifier: 23:C2:D7:9C:B3:0C:56:79:24:44:55:AD:22:BB:7E:D6:B0:32:47:60
Authority key identifier: 40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A
Certificate issuer: /CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a
Certificate serial: 019D29298A5D2B4403F06C9CE41EEBE59750
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
Manifest number: 0C95
Signing time: Thu 26 Mar 2026 08:01:21 +0000
Manifest this update: Thu 26 Mar 2026 08:01:21 +0000
Manifest next update: Fri 27 Mar 2026 08:01:21 +0000
Files and hashes: 1: QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl (hash: 4/GGo6ZNg+VCYGdaQgQiHMi03NHhPr1N/wzArdK+2Bw=)
2: YVo8LjxK7TZOHy2e0UtRMc12yMo.roa (hash: y1sW6xShCe5Zkqn/itmgk+RBNdntx91KOyuie9DOHaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:8a:5d:2b:44:03:f0:6c:9c:e4:1e:eb:e5:97:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a
Validity
Not Before: Mar 26 08:01:21 2026 GMT
Not After : Mar 27 08:01:21 2026 GMT
Subject: CN=23c2d79cb30c5679244455ad22bb7ed6b0324760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ba:e2:5f:11:cf:2e:fe:d7:cb:0b:4d:9b:d0:
4d:b7:22:19:95:d9:c0:c2:fa:67:66:1f:9e:4d:d1:
af:4d:e2:5d:18:db:ce:34:33:65:b2:65:6b:cc:15:
ec:d4:f1:b4:f3:d0:80:0d:78:95:70:c2:c5:8f:bb:
63:15:2c:5c:ca:7a:44:33:b8:7b:1a:a3:5e:50:34:
70:b0:2e:38:e5:04:58:33:40:78:7b:a9:65:cf:3b:
07:3c:4e:a4:b0:ce:43:6a:90:19:a8:91:9d:1b:46:
8c:39:2f:4a:3e:32:7f:7f:d3:b2:20:1a:e9:fa:2a:
0f:bd:d2:cd:3b:3f:5d:f7:0c:78:97:7e:0a:26:91:
46:7b:4b:13:f8:98:9f:8d:0e:d3:b8:d9:d9:e0:f9:
04:99:ba:f4:99:c6:65:9c:59:fb:84:ab:49:03:a4:
6c:85:15:72:26:b4:24:9e:8d:33:93:ff:dc:a6:d6:
ef:e0:15:96:1f:6b:6b:9d:56:d2:f4:67:e1:36:fe:
28:7f:39:a8:e9:80:d9:ab:5e:de:fb:32:d4:a6:49:
a8:ba:5d:5b:d6:88:a9:5d:89:d6:8b:77:24:da:5e:
53:91:e7:a0:fa:3e:ce:77:a2:32:ef:74:88:44:cc:
77:d1:e8:7e:4c:b2:de:94:72:10:de:cd:f7:f4:66:
60:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C2:D7:9C:B3:0C:56:79:24:44:55:AD:22:BB:7E:D6:B0:32:47:60
X509v3 Authority Key Identifier:
keyid:40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:b0:89:bf:7b:bd:3a:94:02:cf:c4:66:10:3d:d5:2b:59:fe:
3e:01:0d:b6:83:93:73:fc:23:01:29:81:ab:4b:5d:91:5b:e7:
fc:2f:44:40:5b:43:29:00:0d:0f:6b:ba:a8:57:dc:1a:fb:94:
2a:d7:03:43:50:5a:ec:b9:7d:6c:53:a2:8a:f3:34:a9:cf:00:
f9:c6:c5:cb:9d:81:b9:11:82:a3:2d:83:4a:48:01:9a:89:1b:
07:e9:65:f8:7e:35:b9:f4:80:e7:8e:02:4e:c7:eb:e7:46:84:
a6:03:11:9a:b7:3e:64:1c:3d:b0:44:7d:af:fa:d0:96:83:9a:
7a:d3:0c:0b:de:6a:3b:2a:f4:6f:40:2b:e5:05:d3:79:90:27:
38:6f:60:43:65:0b:21:4f:5c:1d:99:46:e3:bf:29:23:92:c8:
f0:93:0c:52:b5:b7:33:db:ad:16:d0:8e:48:ae:4c:cb:3c:d9:
6e:5d:7b:1d:00:76:ce:46:b1:5f:e1:59:11:2d:a7:ff:e7:8b:
61:72:73:fe:03:27:8d:e9:bd:70:a9:08:a8:a0:c3:e3:94:a5:
20:ef:0a:f4:44:0e:99:b6:54:3b:6e:91:97:eb:d5:69:cf:0a:
87:2c:5f:a4:a2:35:9e:f1:7c:19:85:91:17:78:0c:17:76:1c:
92:7b:c6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:54:17 2026 by rpki-client