Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/ce8943-0ea4-46a3-95fc-ad7a02f1946a/1/QfpvoAiYrTXuZ_taWhkQXbbB0es.mft
File: QfpvoAiYrTXuZ_taWhkQXbbB0es.mft (raw, json)
Hash identifier: rqn8iI7mr1jNCscIME8e5zzg6vuBy0d6d6BDS1eM2o4=
Subject key identifier: FE:33:5A:48:33:80:D3:B9:3A:AD:16:79:A5:8D:77:B1:B2:95:A5:F0
Authority key identifier: 41:FA:6F:A0:08:98:AD:35:EE:67:FB:5A:5A:19:10:5D:B6:C1:D1:EB
Certificate issuer: /CN=41fa6fa00898ad35ee67fb5a5a19105db6c1d1eb
Certificate serial: 019D25F1EBB4EF9F5EA9676E95DF9F7D2FBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfpvoAiYrTXuZ_taWhkQXbbB0es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/ce8943-0ea4-46a3-95fc-ad7a02f1946a/1/QfpvoAiYrTXuZ_taWhkQXbbB0es.mft
Manifest number: 71
Signing time: Wed 25 Mar 2026 17:01:44 +0000
Manifest this update: Wed 25 Mar 2026 17:01:44 +0000
Manifest next update: Thu 26 Mar 2026 17:01:44 +0000
Files and hashes: 1: QfpvoAiYrTXuZ_taWhkQXbbB0es.crl (hash: RuK0WqKHgj6+30sxsYeOsGkNa7oA6ZQzIOMA5MC68V8=)
2: wH_MfDJl_h2tECJc3oCb2Qz0pi4.roa (hash: 8pIUEql8CBNNXltIona5AYLJWg9u6/3eIQY5XVZR3ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/ce8943-0ea4-46a3-95fc-ad7a02f1946a/1/QfpvoAiYrTXuZ_taWhkQXbbB0es.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/ce8943-0ea4-46a3-95fc-ad7a02f1946a/1/QfpvoAiYrTXuZ_taWhkQXbbB0es.mft
rsync://rpki.ripe.net/repository/DEFAULT/QfpvoAiYrTXuZ_taWhkQXbbB0es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:eb:b4:ef:9f:5e:a9:67:6e:95:df:9f:7d:2f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fa6fa00898ad35ee67fb5a5a19105db6c1d1eb
Validity
Not Before: Mar 25 17:01:44 2026 GMT
Not After : Mar 26 17:01:44 2026 GMT
Subject: CN=fe335a483380d3b93aad1679a58d77b1b295a5f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:12:82:8e:9e:af:7b:71:4c:b2:62:9f:9d:1d:
14:10:1d:7d:49:32:3c:92:a5:c5:67:66:59:c0:6a:
0d:9b:88:74:9c:68:06:79:9e:a8:e8:af:b9:40:c8:
f7:0c:f7:d0:95:d1:cb:cb:cc:7a:84:dd:ca:74:d9:
a4:92:b8:5c:67:42:10:94:64:5a:d0:ae:ce:82:03:
aa:18:09:e3:80:c0:dc:81:16:7a:fd:2f:2c:93:7a:
b7:07:82:47:85:1d:0f:b9:26:e8:ed:20:0a:79:01:
39:be:f7:36:b1:d4:5c:6a:a5:15:5b:8b:05:6b:93:
02:ae:8d:35:41:db:e8:9c:29:0e:8c:ac:2e:78:ef:
05:c1:46:85:64:56:6e:57:99:92:58:f9:77:30:c1:
2c:51:08:a5:b2:55:14:7b:be:32:ff:d0:a0:ea:90:
a5:d6:68:bd:a9:75:07:24:4c:59:df:29:ef:cf:a1:
c7:46:25:49:b1:d0:ce:4e:9f:c8:c8:46:bd:a5:56:
f5:82:fd:ef:34:20:9f:a9:ad:43:f4:1c:b0:dd:8b:
b5:0e:2d:74:54:53:2c:4e:ea:db:61:58:08:e1:44:
ac:b9:23:cb:65:0f:2d:16:70:d3:db:43:78:df:63:
3f:09:2d:68:47:9d:01:77:9a:ab:5b:74:a1:07:88:
0e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:33:5A:48:33:80:D3:B9:3A:AD:16:79:A5:8D:77:B1:B2:95:A5:F0
X509v3 Authority Key Identifier:
keyid:41:FA:6F:A0:08:98:AD:35:EE:67:FB:5A:5A:19:10:5D:B6:C1:D1:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfpvoAiYrTXuZ_taWhkQXbbB0es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ce8943-0ea4-46a3-95fc-ad7a02f1946a/1/QfpvoAiYrTXuZ_taWhkQXbbB0es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ce8943-0ea4-46a3-95fc-ad7a02f1946a/1/QfpvoAiYrTXuZ_taWhkQXbbB0es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:cd:15:5c:e1:53:12:98:f8:3e:61:81:f8:63:d4:13:b2:e3:
2e:88:aa:b4:75:50:d0:88:be:a8:59:5d:b6:86:78:d2:83:6f:
73:f9:28:d9:b2:c6:cc:82:87:35:e9:26:27:c2:25:8d:05:ea:
53:c1:3e:13:1a:fd:5a:4e:61:7a:c8:66:d5:31:11:e2:e8:12:
62:f8:88:49:a9:82:80:f8:1f:60:2d:44:9c:e7:53:99:fa:0e:
44:b5:de:d5:c9:c3:8d:01:78:cd:10:f0:35:59:c3:1d:42:6d:
1f:f1:d9:59:38:fa:82:d0:48:34:d6:d6:f0:cd:e2:4c:5a:76:
1a:fa:6e:62:33:80:e7:13:23:55:54:0e:1e:5e:28:65:49:46:
bd:a4:10:c7:e3:6f:f1:f4:ea:d1:29:43:b4:f1:8e:93:e2:29:
d9:1f:bc:42:f4:95:f5:fc:bb:d0:78:1b:12:9e:42:86:53:f7:
e5:e8:47:b2:d9:29:87:8c:ba:77:0f:8f:49:22:72:d7:a4:01:
a6:cd:c3:6b:c1:61:86:88:f6:19:cf:a7:d7:8d:a4:f3:fc:90:
01:12:e2:11:49:c9:a6:ab:3d:49:17:2b:67:e2:5e:83:f8:2d:
b8:4d:9d:a5:49:e5:64:36:77:52:7d:df:94:7d:da:a5:56:10:
12:f6:8c:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8eu0759eqWduld+ffS+/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxZmE2ZmEwMDg5OGFkMzVlZTY3ZmI1YTVhMTkxMDVkYjZj
MWQxZWIwHhcNMjYwMzI1MTcwMTQ0WhcNMjYwMzI2MTcwMTQ0WjAzMTEwLwYDVQQD
EyhmZTMzNWE0ODMzODBkM2I5M2FhZDE2NzlhNThkNzdiMWIyOTVhNWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBKCjp6ve3FMsmKfnR0UEB19STI8
kqXFZ2ZZwGoNm4h0nGgGeZ6o6K+5QMj3DPfQldHLy8x6hN3KdNmkkrhcZ0IQlGRa
0K7OggOqGAnjgMDcgRZ6/S8sk3q3B4JHhR0PuSbo7SAKeQE5vvc2sdRcaqUVW4sF
a5MCro01QdvonCkOjKwueO8FwUaFZFZuV5mSWPl3MMEsUQilslUUe74y/9Cg6pCl
1mi9qXUHJExZ3ynvz6HHRiVJsdDOTp/IyEa9pVb1gv3vNCCfqa1D9Byw3Yu1Di10
VFMsTurbYVgI4USsuSPLZQ8tFnDT20N432M/CS1oR50Bd5qrW3ShB4gOuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP4zWkgzgNO5Oq0WeaWNd7GylaXwMB8GA1UdIwQY
MBaAFEH6b6AImK017mf7WloZEF22wdHrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWZwdm9BaVlyVFh1Wl90YVdoa1FYYmJCMGVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9jZTg5NDMtMGVhNC00NmEzLTk1ZmMt
YWQ3YTAyZjE5NDZhLzEvUWZwdm9BaVlyVFh1Wl90YVdoa1FYYmJCMGVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS9jZTg5NDMtMGVhNC00NmEzLTk1ZmMtYWQ3YTAyZjE5NDZh
LzEvUWZwdm9BaVlyVFh1Wl90YVdoa1FYYmJCMGVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATs0VXOFT
Epj4PmGB+GPUE7LjLoiqtHVQ0Ii+qFldtoZ40oNvc/ko2bLGzIKHNekmJ8IljQXq
U8E+Exr9Wk5heshm1TER4ugSYviISamCgPgfYC1EnOdTmfoORLXe1cnDjQF4zRDw
NVnDHUJtH/HZWTj6gtBINNbW8M3iTFp2GvpuYjOA5xMjVVQOHl4oZUlGvaQQx+Nv
8fTq0SlDtPGOk+Ip2R+8QvSV9fy70HgbEp5ChlP35ehHstkph4y6dw+PSSJy16QB
ps3Da8Fhhoj2Gc+n142k8/yQARLiEUnJpqs9SRcrZ+Jeg/gtuE2dpUnlZDZ3Un3f
lH3apVYQEvaMqA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 03:22:50 2026 by rpki-client