Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
File: QLnKyTUxHngDS0BzgwqBo897Rdk.mft (raw, json)
Hash identifier: RDtaGtHEn2gyiXmSjDsPOHnalPxiVGpeqCmzrQNH9z8=
Subject key identifier: 18:F6:09:42:52:68:0A:3D:0C:27:05:78:18:CD:2D:C7:B5:EB:1E:CC
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 019D27DFB2AAF37ABE3411F4500B95B29D03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 02:01:04 +0000
Manifest this update: Thu 26 Mar 2026 02:01:04 +0000
Manifest next update: Fri 27 Mar 2026 02:01:04 +0000
Files and hashes: 1: QLnKyTUxHngDS0BzgwqBo897Rdk.crl (hash: UQhB284Yjd1fO9p5yNOYVejlSDt+CKwFM+mC1HpCEbk=)
2: gJ8nPMUk8uqyvHQ2yxhP8LCANg8.roa (hash: tw3KTzXZuTpEyGkQRNx7vE9ajBD/fn1qkQVFYAfTOZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:b2:aa:f3:7a:be:34:11:f4:50:0b:95:b2:9d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Mar 26 02:01:04 2026 GMT
Not After : Mar 27 02:01:04 2026 GMT
Subject: CN=18f6094252680a3d0c27057818cd2dc7b5eb1ecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a8:b0:25:61:41:5d:50:af:14:ab:9e:bc:5c:
0b:4e:35:cd:28:64:4a:6d:b1:87:9b:3a:5f:1a:78:
2e:d5:19:a1:3f:8a:f6:ad:6c:58:53:c2:e8:21:18:
b9:d1:c4:3a:ad:d6:5e:60:a0:4f:40:ed:ed:44:19:
15:ac:ff:55:c9:1b:35:db:b2:54:7e:5c:8a:82:ad:
2f:83:4f:02:f1:cb:bb:03:8e:c6:4f:e2:6c:88:15:
33:7a:c8:fc:b9:45:7d:96:5f:cd:8a:57:27:d6:d0:
01:71:16:f2:65:53:39:40:8c:09:cb:23:42:08:fa:
e7:24:60:91:fe:1a:19:02:a6:f8:f2:5a:47:80:95:
16:12:be:d6:2f:d0:98:52:dd:88:b3:2d:8f:cb:6d:
2b:b4:bf:bb:43:ee:6f:d8:d5:28:25:8c:18:5b:3d:
11:90:cf:e8:15:75:7e:29:b0:53:65:df:88:01:4a:
c2:2f:71:6e:c7:54:6f:33:ec:74:0d:e1:b2:41:46:
af:03:be:c1:57:c0:22:a3:2a:e4:ef:87:3f:7e:eb:
82:c3:0e:0c:18:61:97:d0:06:d0:8d:69:70:44:5d:
d9:8c:88:58:dd:57:a0:87:f6:c2:f9:2d:55:dc:2d:
95:6b:d8:a4:0d:ce:c5:18:60:83:23:6b:82:0d:6e:
49:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F6:09:42:52:68:0A:3D:0C:27:05:78:18:CD:2D:C7:B5:EB:1E:CC
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:0f:c8:46:d6:cf:63:72:91:aa:76:95:22:3f:a0:38:af:83:
b5:1c:07:1c:6d:f9:97:23:0d:d6:ff:d4:fc:b7:73:c0:e2:17:
e0:04:61:c2:6b:32:bb:c8:14:c3:a4:04:8f:65:5a:a3:b1:e8:
2b:3b:c5:c7:0e:20:27:6e:f1:08:8d:1e:77:29:cf:38:03:06:
c6:be:6b:65:02:d7:fd:4b:f3:8f:2c:0e:a2:b1:b8:dd:e5:16:
85:be:2e:8c:23:c3:ec:7c:67:bf:09:3a:31:31:6f:0c:2e:ee:
1f:2a:a2:03:45:87:a0:b5:e0:e4:79:c1:54:9e:5c:47:ce:9f:
10:dd:8b:8b:b4:2e:e8:07:94:c1:11:da:ab:35:1a:6e:22:83:
e8:32:bd:39:4b:e9:91:56:74:cc:ba:fc:cf:c4:51:5e:0d:af:
c7:9f:3a:ff:1b:7c:e1:5f:a6:b1:58:9f:e8:fe:a7:9d:7a:ee:
ff:d4:ce:f7:a2:46:b7:fd:26:a3:11:bd:35:9b:df:6a:e9:37:
09:12:95:5e:60:50:d9:d3:92:e0:8a:fe:67:a4:43:8f:82:0d:
96:13:9a:93:ae:58:14:93:53:ce:53:1c:55:c8:98:81:2b:f5:
fb:57:b6:06:70:89:bb:41:09:86:37:37:a5:87:c4:db:31:34:
cf:35:b3:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:56:45 2026 by rpki-client