Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
File: QA4H15n7NVyVICXz0nsA6bTuNO0.mft (raw, json)
Hash identifier: pBAdIFSqfne89CZdwRJqYfhSF9sDLIVYRncKQ+N/MmU=
Subject key identifier: 32:E9:D9:CF:B7:5A:E5:1C:0C:22:3B:FD:E1:32:0B:43:25:62:28:44
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 019D2BBCB67EE844AEA9CFD1A4AB8DEBE21A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
Manifest number: 0AF2
Signing time: Thu 26 Mar 2026 20:01:20 +0000
Manifest this update: Thu 26 Mar 2026 20:01:20 +0000
Manifest next update: Fri 27 Mar 2026 20:01:20 +0000
Files and hashes: 1: QA4H15n7NVyVICXz0nsA6bTuNO0.crl (hash: D5VsNegdZQGrMkeLf1dv/uus+7zSaqAEcLBvuBuIqA4=)
2: YFsmm4apHvY6ZL8EsMyBPmZGQ-E.roa (hash: QK8FK49xDAR7s4a20/0YVNHlxDPHbZSZvfiRmsUbSrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bc:b6:7e:e8:44:ae:a9:cf:d1:a4:ab:8d:eb:e2:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: Mar 26 20:01:20 2026 GMT
Not After : Mar 27 20:01:20 2026 GMT
Subject: CN=32e9d9cfb75ae51c0c223bfde1320b4325622844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:68:20:66:41:5b:28:44:42:66:65:e5:08:a2:
40:4d:31:f4:17:04:a7:6f:70:5f:d0:f0:5c:5b:93:
d9:bf:ec:79:4a:75:ba:9b:9b:d2:c2:d1:e5:f9:77:
ff:46:4d:47:8e:2d:66:cb:ef:99:78:fc:5e:ed:e5:
d4:40:3e:52:de:a9:22:67:d2:2d:57:24:12:19:ad:
67:9b:52:e2:f4:12:8f:95:34:c4:86:21:41:94:cf:
ed:86:04:c2:35:21:82:43:2d:10:2a:9d:04:96:6c:
d1:6f:ee:b5:0a:e4:71:6b:fd:26:c8:03:f4:6d:ba:
24:5e:95:74:61:a2:92:4a:f0:31:a1:11:c9:69:82:
eb:42:93:47:73:6c:4a:9c:8a:ef:b1:b1:dd:1d:d3:
d3:fb:8b:d1:14:d9:8d:88:7f:2c:21:da:7f:d8:9a:
00:61:27:2b:e0:63:a2:f7:9c:42:07:71:81:44:43:
e5:f5:e7:37:05:cf:e8:2f:d2:f4:7c:85:8e:9d:79:
25:0e:04:c9:dc:dd:04:4c:4c:0c:f4:c9:68:67:d5:
94:62:c5:1b:7e:ff:72:36:73:b4:2d:a8:98:ec:65:
0a:cf:4f:c3:0e:ee:6f:31:4b:d1:8b:b5:77:94:ab:
9b:cb:72:9f:0c:88:30:b1:4a:56:c1:80:f6:47:61:
b6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E9:D9:CF:B7:5A:E5:1C:0C:22:3B:FD:E1:32:0B:43:25:62:28:44
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:bf:fc:47:47:d0:8e:86:9b:f0:c2:7d:5d:bb:79:4f:ec:e4:
9d:78:97:26:ed:b2:28:61:78:38:d7:93:6c:09:da:25:bd:53:
2e:c3:d9:9c:35:2c:58:ed:3b:54:35:8a:5a:3c:b7:fa:59:8d:
74:f1:3e:f1:0b:73:0c:67:36:de:a8:a9:51:42:ab:50:02:c3:
8c:39:17:c6:1e:7b:7f:3e:c9:3e:2b:12:58:72:4b:22:0d:74:
12:e8:e8:67:16:63:53:f3:f9:3c:e2:b3:43:73:96:0a:54:6a:
4f:f9:ee:c7:b6:86:c6:02:a1:b0:9c:11:8e:f7:1f:99:3d:5d:
13:a2:c4:d2:b8:fa:8a:e7:20:01:bf:d7:e9:0b:68:bb:37:16:
3f:93:cb:73:45:da:90:d3:51:0a:39:e9:4b:5d:f2:93:be:5b:
d5:85:b9:65:05:c2:6e:17:b0:81:78:44:b9:53:1f:2f:b4:cf:
de:46:47:7e:4e:fe:06:33:9e:0c:ea:ba:14:5d:4e:18:56:08:
e9:57:2e:68:30:fa:31:cf:09:f3:8d:d3:8a:08:45:c2:76:7a:
05:24:5e:2b:ab:7d:02:a4:e4:89:4c:8c:f2:1e:49:5a:3f:de:
ba:9c:56:28:78:21:41:12:b1:89:73:86:b7:7d:01:89:40:50:
43:5b:86:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:00:42 2026 by rpki-client