Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
File: QsMDcZht9dVk7mcHRxe2agL_VxI.mft (raw, json)
Hash identifier: vMOe7HouZfD0AIFGM5vDPrXPruHExue3vB1mpDWML50=
Subject key identifier: 34:DE:FD:A1:7C:80:F7:FE:FF:D5:B9:E2:D3:08:4D:9B:7B:33:5A:D1
Authority key identifier: 42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
Certificate issuer: /CN=42c30371986df5d564ee67074717b66a02ff5712
Certificate serial: 019CAAC6B489A9DF875D9ED46CEBF9BD5B9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
Manifest number: 1737
Signing time: Sun 01 Mar 2026 19:01:14 +0000
Manifest this update: Sun 01 Mar 2026 19:01:14 +0000
Manifest next update: Mon 02 Mar 2026 19:01:14 +0000
Files and hashes: 1: QsMDcZht9dVk7mcHRxe2agL_VxI.crl (hash: whnhb02YebmJt+VBtb9j7iZmXUMXNjELSvU7PrkGowo=)
2: kIdKfcVB8xoU-jL0GS61sHZEdFc.roa (hash: 0PfvIN3m+RMyfBShY3gPVZh53Z/48yCnaRs0eMSULZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:b4:89:a9:df:87:5d:9e:d4:6c:eb:f9:bd:5b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c30371986df5d564ee67074717b66a02ff5712
Validity
Not Before: Mar 1 19:01:14 2026 GMT
Not After : Mar 2 19:01:14 2026 GMT
Subject: CN=34defda17c80f7feffd5b9e2d3084d9b7b335ad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a0:e8:9f:67:b9:60:71:48:ae:f5:50:b9:50:
e3:55:05:2d:e9:20:e8:10:87:26:28:57:f9:6d:cb:
d8:3e:a8:aa:73:dc:7d:36:db:fa:ee:2c:38:44:18:
5a:c3:1a:98:f6:61:fb:d7:ac:78:0b:be:f9:19:35:
4d:99:a3:a1:45:dc:d0:92:ba:e7:cb:69:86:9c:7f:
5d:d8:fc:4d:a5:01:c1:2a:17:11:a5:ec:ba:9f:26:
9a:64:46:19:c0:20:31:32:f2:5e:ff:cb:a9:99:37:
40:fd:14:82:dc:47:1e:ea:e9:67:d0:da:94:4f:43:
e9:9b:f7:6e:de:24:81:ef:6e:ea:0d:62:c4:ec:d6:
7f:04:fc:16:d2:11:d2:e4:a0:87:c9:8d:9b:90:7e:
44:4f:f8:cf:b1:af:b2:30:1c:29:ce:02:ef:db:0f:
bf:50:7d:a3:ce:72:fc:bd:fe:76:c6:46:3a:3a:42:
93:38:29:0b:74:c2:a2:d3:73:d4:f9:da:5a:bb:5f:
e6:b4:21:2d:f9:dc:73:ed:73:79:a0:c8:2e:34:64:
aa:53:10:cd:8d:61:17:df:96:de:13:88:7f:31:a6:
80:7d:1a:d6:54:bc:3d:82:38:05:b3:a5:6d:1e:97:
af:46:3c:55:c2:45:0e:94:41:77:ce:b9:cc:fa:e4:
20:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DE:FD:A1:7C:80:F7:FE:FF:D5:B9:E2:D3:08:4D:9B:7B:33:5A:D1
X509v3 Authority Key Identifier:
keyid:42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:1b:10:90:72:fd:0f:b3:59:64:9f:e6:fe:f6:26:d5:3c:47:
05:91:50:6e:14:11:99:27:71:97:e8:f5:5c:6f:2a:fe:3f:60:
9e:5a:56:b5:0f:c7:97:0a:3e:e8:4a:3e:88:d4:79:71:f6:33:
54:fe:31:5a:bf:35:2a:67:e1:d4:ba:a7:6b:e4:16:0f:b7:05:
88:05:68:38:26:33:f6:e6:84:26:c6:1c:66:64:00:be:4d:8f:
fc:ea:02:4b:95:85:0f:19:74:83:aa:2d:99:03:04:41:be:84:
e1:10:59:36:8b:f7:d2:43:29:50:87:97:c9:1c:b1:e8:fb:bb:
3b:a8:9e:eb:6b:f6:71:69:16:5a:f6:be:8a:4d:42:ed:c2:b0:
b0:dc:c3:31:8d:e2:0b:97:f2:90:af:ec:f9:07:73:83:40:0d:
b4:f6:24:77:e4:84:3f:db:1d:c6:ea:80:15:8a:65:2c:bd:61:
5d:e4:36:f2:a7:79:9f:3b:d1:01:50:64:82:83:0b:8e:0a:12:
3f:e5:d7:0b:a9:12:18:05:f1:66:f9:cc:6e:73:8d:67:d5:d5:
a9:c8:33:38:3e:a9:c2:f1:ce:cf:36:17:3f:7b:95:73:7d:c1:
bc:35:38:bd:be:e3:1f:00:2c:ce:09:53:b0:31:63:a0:7b:98:
75:55:5b:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxrSJqd+HXZ7UbOv5vVucMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyYzMwMzcxOTg2ZGY1ZDU2NGVlNjcwNzQ3MTdiNjZhMDJm
ZjU3MTIwHhcNMjYwMzAxMTkwMTE0WhcNMjYwMzAyMTkwMTE0WjAzMTEwLwYDVQQD
EygzNGRlZmRhMTdjODBmN2ZlZmZkNWI5ZTJkMzA4NGQ5YjdiMzM1YWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6Don2e5YHFIrvVQuVDjVQUt6SDo
EIcmKFf5bcvYPqiqc9x9Ntv67iw4RBhawxqY9mH716x4C775GTVNmaOhRdzQkrrn
y2mGnH9d2PxNpQHBKhcRpey6nyaaZEYZwCAxMvJe/8upmTdA/RSC3Ece6uln0NqU
T0Ppm/du3iSB727qDWLE7NZ/BPwW0hHS5KCHyY2bkH5ET/jPsa+yMBwpzgLv2w+/
UH2jznL8vf52xkY6OkKTOCkLdMKi03PU+dpau1/mtCEt+dxz7XN5oMguNGSqUxDN
jWEX35beE4h/MaaAfRrWVLw9gjgFs6VtHpevRjxVwkUOlEF3zrnM+uQgwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDTe/aF8gPf+/9W54tMITZt7M1rRMB8GA1UdIwQY
MBaAFELDA3GYbfXVZO5nB0cXtmoC/1cSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXNNRGNaaHQ5ZFZrN21jSFJ4ZTJhZ0xfVnhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC84YmEwZGQtMmZiYi00YTZmLTlhMzct
YzI0NTRjZTI4ZDQ4LzEvUXNNRGNaaHQ5ZFZrN21jSFJ4ZTJhZ0xfVnhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC84YmEwZGQtMmZiYi00YTZmLTlhMzctYzI0NTRjZTI4ZDQ4
LzEvUXNNRGNaaHQ5ZFZrN21jSFJ4ZTJhZ0xfVnhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAphsQkHL9
D7NZZJ/m/vYm1TxHBZFQbhQRmSdxl+j1XG8q/j9gnlpWtQ/Hlwo+6Eo+iNR5cfYz
VP4xWr81Kmfh1Lqna+QWD7cFiAVoOCYz9uaEJsYcZmQAvk2P/OoCS5WFDxl0g6ot
mQMEQb6E4RBZNov30kMpUIeXyRyx6Pu7O6ie62v2cWkWWva+ik1C7cKwsNzDMY3i
C5fykK/s+Qdzg0ANtPYkd+SEP9sdxuqAFYplLL1hXeQ28qd5nzvRAVBkgoMLjgoS
P+XXC6kSGAXxZvnMbnONZ9XVqcgzOD6pwvHOzzYXP3uVc33BvDU4vb7jHwAszglT
sDFjoHuYdVVb9Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:50 2026 by rpki-client