Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
File: QclkksAECK1U1zDA62KeOgtQ2A8.mft (raw, json)
Hash identifier: BYnmtYgKhbW6Q/taza/2gnbYFAuqX7DGgn+/AE2WHew=
Subject key identifier: 3C:91:D6:F9:54:45:77:4C:00:A2:F3:F3:47:EA:75:1A:5D:C2:BB:E9
Authority key identifier: 41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
Certificate issuer: /CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Certificate serial: 019D25F1A211F5B7057005DEC0508215EBD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
Manifest number: 0510
Signing time: Wed 25 Mar 2026 17:01:25 +0000
Manifest this update: Wed 25 Mar 2026 17:01:25 +0000
Manifest next update: Thu 26 Mar 2026 17:01:25 +0000
Files and hashes: 1: A06G0jKoVHkOoVsdJmlcMjUtuYg.roa (hash: /ucUBoWCtbDVXH8l3LkIjvANk7l2kl8IZAXTo8qEuVA=)
2: QclkksAECK1U1zDA62KeOgtQ2A8.crl (hash: /lO/UGhyEbFfN6siOvaBtu1xBmnxm5QoPe8CeOe5ZoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:a2:11:f5:b7:05:70:05:de:c0:50:82:15:eb:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41c96492c00408ad54d730c0eb629e3a0b50d80f
Validity
Not Before: Mar 25 17:01:25 2026 GMT
Not After : Mar 26 17:01:25 2026 GMT
Subject: CN=3c91d6f95445774c00a2f3f347ea751a5dc2bbe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:16:d9:20:0c:22:31:d6:3a:09:e7:e4:cd:b7:
ac:97:cc:92:07:b3:d5:5c:2d:4e:70:04:f9:ae:83:
ea:69:61:10:ae:31:e2:07:75:07:cb:6e:db:05:fc:
57:70:6c:cf:bb:d7:86:99:69:e5:18:c7:c2:c1:2b:
6b:3d:90:39:f8:71:f0:2f:88:b7:c3:f7:17:00:7a:
a6:24:b9:21:df:47:23:d9:a5:2e:a6:35:b7:e2:49:
e6:0b:e1:ae:26:09:93:93:02:51:7a:15:f6:fc:e1:
10:26:cb:90:7f:95:e1:2b:7b:00:ff:33:d3:31:8c:
f3:cb:c5:e7:68:16:63:8b:1f:17:58:95:ab:eb:18:
1b:71:5b:19:1c:0f:3b:2e:a0:c6:8c:07:c3:42:99:
c5:d9:82:f3:a8:97:1d:69:32:b6:9c:ae:ed:86:31:
26:6e:7b:37:53:6e:f3:e4:63:3a:f7:c6:ec:88:49:
3c:da:a7:93:53:61:5c:c4:8f:89:bb:d8:c3:0a:76:
be:02:b8:f4:b6:57:6b:37:0f:27:c4:47:92:b0:fa:
2b:38:1e:9c:21:32:0f:d1:ab:32:4a:28:af:a8:cb:
9a:9a:73:80:22:04:86:4c:00:54:ca:ae:0e:4f:e3:
63:8c:43:64:a3:db:88:93:61:0c:cb:55:96:c4:5e:
03:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:91:D6:F9:54:45:77:4C:00:A2:F3:F3:47:EA:75:1A:5D:C2:BB:E9
X509v3 Authority Key Identifier:
keyid:41:C9:64:92:C0:04:08:AD:54:D7:30:C0:EB:62:9E:3A:0B:50:D8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QclkksAECK1U1zDA62KeOgtQ2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/19d090-103b-43db-b074-a4e37c867b09/1/QclkksAECK1U1zDA62KeOgtQ2A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:aa:86:af:87:a9:9e:71:af:18:38:87:11:86:1a:cf:c8:1a:
56:c6:8c:3b:08:a7:40:fa:a5:d4:8a:84:81:c7:f8:0e:e7:0f:
14:62:61:8c:92:28:b7:90:e9:1b:53:b1:96:3c:d7:b4:30:5a:
83:ea:bb:41:99:32:19:f4:be:e2:47:a2:3e:3e:98:7e:8f:06:
2a:3a:64:1a:24:f7:5d:cc:df:7f:40:ce:ae:3c:50:5a:7b:42:
1a:ed:de:d0:81:ad:c0:7f:35:47:ab:23:56:30:e4:bf:29:3a:
17:75:14:36:fa:9a:5e:fa:bc:09:c4:af:85:83:fb:a7:75:05:
cf:91:4d:45:f9:44:b3:2c:46:d5:b5:73:db:b7:b6:c1:af:39:
31:d3:7d:ee:11:c4:46:5f:e1:5e:24:c9:b9:6d:0f:86:51:aa:
09:e6:9a:5a:ff:b9:fb:fc:4c:32:b0:66:66:f2:d8:15:c6:d9:
75:87:06:ea:4c:4c:51:40:37:a9:35:a6:2e:ff:56:4d:bb:86:
6f:f9:72:eb:66:51:48:15:6b:13:2b:4b:b3:f4:70:42:c2:2f:
82:45:16:d5:85:d9:dc:7a:f9:49:5f:73:6c:35:80:c2:f7:18:
77:8c:80:80:e6:44:05:84:a5:ba:c0:a6:b2:0c:9b:cb:6c:18:
3b:af:75:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8aIR9bcFcAXewFCCFevYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxYzk2NDkyYzAwNDA4YWQ1NGQ3MzBjMGViNjI5ZTNhMGI1
MGQ4MGYwHhcNMjYwMzI1MTcwMTI1WhcNMjYwMzI2MTcwMTI1WjAzMTEwLwYDVQQD
EygzYzkxZDZmOTU0NDU3NzRjMDBhMmYzZjM0N2VhNzUxYTVkYzJiYmU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRbZIAwiMdY6Cefkzbesl8ySB7PV
XC1OcAT5roPqaWEQrjHiB3UHy27bBfxXcGzPu9eGmWnlGMfCwStrPZA5+HHwL4i3
w/cXAHqmJLkh30cj2aUupjW34knmC+GuJgmTkwJRehX2/OEQJsuQf5XhK3sA/zPT
MYzzy8XnaBZjix8XWJWr6xgbcVsZHA87LqDGjAfDQpnF2YLzqJcdaTK2nK7thjEm
bns3U27z5GM698bsiEk82qeTU2FcxI+Ju9jDCna+Arj0tldrNw8nxEeSsPorOB6c
ITIP0asySiivqMuamnOAIgSGTABUyq4OT+NjjENko9uIk2EMy1WWxF4DVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDyR1vlURXdMAKLz80fqdRpdwrvpMB8GA1UdIwQY
MBaAFEHJZJLABAitVNcwwOtinjoLUNgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8xOWQwOTAtMTAzYi00M2RiLWIwNzQt
YTRlMzdjODY3YjA5LzEvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8xOWQwOTAtMTAzYi00M2RiLWIwNzQtYTRlMzdjODY3YjA5
LzEvUWNsa2tzQUVDSzFVMXpEQTYyS2VPZ3RRMkE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYaqGr4ep
nnGvGDiHEYYaz8gaVsaMOwinQPql1IqEgcf4DucPFGJhjJIot5DpG1OxljzXtDBa
g+q7QZkyGfS+4keiPj6Yfo8GKjpkGiT3Xczff0DOrjxQWntCGu3e0IGtwH81R6sj
VjDkvyk6F3UUNvqaXvq8CcSvhYP7p3UFz5FNRflEsyxG1bVz27e2wa85MdN97hHE
Rl/hXiTJuW0PhlGqCeaaWv+5+/xMMrBmZvLYFcbZdYcG6kxMUUA3qTWmLv9WTbuG
b/ly62ZRSBVrEytLs/RwQsIvgkUW1YXZ3Hr5SV9zbDWAwvcYd4yAgOZEBYSlusCm
sgyby2wYO691lQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:34:55 2026 by rpki-client