Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
File: qbdbZNXaF9cLur2BGjmmAt2vljo.mft (raw, json)
Hash identifier: +XzwbBRES12FYADeG/zKAqHgjcuszTtlOw4AK4dvx1k=
Subject key identifier: 27:BE:5C:BE:24:38:2F:AA:72:BC:11:59:28:BE:78:08:3A:CD:9A:A9
Authority key identifier: A9:B7:5B:64:D5:DA:17:D7:0B:BA:BD:81:1A:39:A6:02:DD:AF:96:3A
Certificate issuer: /CN=a9b75b64d5da17d70bbabd811a39a602ddaf963a
Certificate serial: 019D985035C9039D02526ABB542E4EE15AD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
Manifest number: 18CE
Signing time: Thu 16 Apr 2026 22:01:26 +0000
Manifest this update: Thu 16 Apr 2026 22:01:26 +0000
Manifest next update: Fri 17 Apr 2026 22:01:26 +0000
Files and hashes: 1: 1NvxVfbgzX3B2umfhkugjM1Ndt8.roa (hash: eJgXwibre0wnDjBDy8eibyL2XVfQ9w6WUfIwOfEC1/g=)
2: 24lvsSxh7MUVQcE3eg7_Djq-Tso.asa (hash: Hjss/TGOcmwG6GtuhM5X9Ph0gtLBzHScnu3DTiqPa9c=)
3: 36K8uvuxLLbczf1YXC_ASJxPbng.asa (hash: 870+pBNRKYWmY6ePML/QQK6e/MrQo9VBr7qVr3BXzBw=)
4: FWYopd6TlSta9pASbYNvraqyvNM.asa (hash: I8ABTTre9KM0IJfOp7PT39kOwRj4TE5ZVbXeJW/G+gk=)
5: WejJJbiVIVBvqcAo9H2Ft-eq30w.roa (hash: JdWw00hlc+ApcItp8TIS28rgQX0UUCuS32HYbDrb1Yk=)
6: jaSX7XYiEHoA7tLRMZ4FmzvpH8Q.roa (hash: M7LvfJJsOKZWEYP7z3dZkFRXXMBuWl1FzF5qPTUm5UU=)
7: opuCCMcW2_WxPhJsfHpsveIPJOk.roa (hash: Ln2QBI28PVqcs7LQQVU47oAWi74sYxDyz9uXHVwYm+Q=)
8: qO7fP4JYDSwOkwNU79mWRjM64pA.roa (hash: BxE3oHxaS3QLL7K/vl+6ZKbsDqNKFO/W+KaSLMWTYFI=)
9: qbdbZNXaF9cLur2BGjmmAt2vljo.crl (hash: U9jBT+x7N9BHHsFPQnYGDFFR2j6S9IigKvCaib1UafQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:35:c9:03:9d:02:52:6a:bb:54:2e:4e:e1:5a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9b75b64d5da17d70bbabd811a39a602ddaf963a
Validity
Not Before: Apr 16 22:01:26 2026 GMT
Not After : Apr 17 22:01:26 2026 GMT
Subject: CN=27be5cbe24382faa72bc115928be78083acd9aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ed:c1:5a:5f:5d:1a:4b:62:90:58:d3:ae:f8:
86:43:2b:af:8a:2c:0c:c1:97:6d:42:65:32:23:1c:
4e:45:ce:a8:45:75:f5:05:da:2f:ef:0a:1d:42:4d:
fc:e2:a8:56:df:d0:2f:82:3d:e8:c8:13:a3:78:f0:
59:39:fb:0d:02:33:c2:23:49:38:a4:d0:ef:30:37:
eb:2a:cb:c8:f9:e7:bb:be:1a:44:47:66:1d:94:6e:
e9:ca:b7:d4:ae:c6:0d:0f:aa:9a:95:56:78:f6:0a:
3e:83:24:e0:fa:1f:b6:9c:48:c6:bc:45:d1:91:62:
d2:55:0b:0d:a8:99:34:bf:7a:d8:57:8a:1d:b3:26:
33:ff:44:52:c7:08:e1:64:19:82:e5:86:0a:cb:f8:
2e:01:cb:00:90:cf:20:d8:b0:61:7f:e7:b1:f1:b4:
95:f5:4c:66:10:24:4d:fa:84:3c:c0:6d:bf:cb:1e:
84:15:03:bd:b5:c3:7a:9c:f1:c3:9a:d6:32:39:fb:
0d:4d:96:a6:11:2e:ca:ba:98:fa:4d:10:21:7a:29:
a8:41:2a:28:5b:c1:b1:6e:2e:46:35:13:75:4e:fc:
be:54:6d:b4:b9:0c:d2:c4:47:89:cb:fc:07:17:6b:
ba:c9:8d:78:eb:56:62:b4:4e:f7:3d:66:78:ce:48:
e6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:BE:5C:BE:24:38:2F:AA:72:BC:11:59:28:BE:78:08:3A:CD:9A:A9
X509v3 Authority Key Identifier:
keyid:A9:B7:5B:64:D5:DA:17:D7:0B:BA:BD:81:1A:39:A6:02:DD:AF:96:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qbdbZNXaF9cLur2BGjmmAt2vljo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/da85e7-a452-4b1d-b5ae-9b11804ecd39/1/qbdbZNXaF9cLur2BGjmmAt2vljo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:a9:98:cc:1c:6b:e3:9a:71:22:8e:d5:5b:64:67:c1:9b:4f:
9d:f9:56:f8:3e:43:7a:1e:71:8e:3e:22:62:f0:ab:11:a5:92:
ed:7c:b4:a0:45:d4:e6:e9:e0:c1:c6:28:e8:75:5b:3d:2b:fa:
f3:59:e7:34:06:c4:58:10:72:4a:a6:5a:b1:a9:d4:9c:7f:7b:
1f:ae:87:43:cb:9d:62:65:e7:da:72:a7:9b:48:22:d4:1d:78:
95:69:a4:14:0d:56:54:9c:08:7a:2e:b3:d5:2f:a7:92:fd:17:
4b:d5:66:33:aa:35:23:5d:d9:4e:75:53:19:fe:b9:f8:ff:30:
d0:4f:9b:46:3e:79:b8:79:7e:27:d9:f1:d8:21:5e:05:a8:72:
7c:b2:8e:5b:4b:65:e0:3a:a0:c8:1c:5e:b2:d1:cf:4f:6f:2f:
c3:48:4d:dc:86:33:4d:78:05:2e:bb:56:db:25:b1:55:bd:79:
07:31:f9:10:63:27:4d:0e:29:53:31:70:a7:cb:af:12:3d:78:
5e:1a:e2:31:e8:68:d7:e4:a6:2b:61:dc:4a:e9:d0:0c:cd:4e:
1c:42:40:9e:5b:e6:d8:53:ba:b6:38:fc:53:55:ca:c3:0a:bb:
7e:19:76:de:0f:d5:0d:9e:1b:a1:8d:f5:e8:fa:49:38:ce:df:
30:1a:8a:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YUDXJA50CUmq7VC5O4VrVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5Yjc1YjY0ZDVkYTE3ZDcwYmJhYmQ4MTFhMzlhNjAyZGRh
Zjk2M2EwHhcNMjYwNDE2MjIwMTI2WhcNMjYwNDE3MjIwMTI2WjAzMTEwLwYDVQQD
EygyN2JlNWNiZTI0MzgyZmFhNzJiYzExNTkyOGJlNzgwODNhY2Q5YWE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzO3BWl9dGktikFjTrviGQyuviiwM
wZdtQmUyIxxORc6oRXX1Bdov7wodQk384qhW39Avgj3oyBOjePBZOfsNAjPCI0k4
pNDvMDfrKsvI+ee7vhpER2YdlG7pyrfUrsYND6qalVZ49go+gyTg+h+2nEjGvEXR
kWLSVQsNqJk0v3rYV4odsyYz/0RSxwjhZBmC5YYKy/guAcsAkM8g2LBhf+ex8bSV
9UxmECRN+oQ8wG2/yx6EFQO9tcN6nPHDmtYyOfsNTZamES7Kupj6TRAheimoQSoo
W8Gxbi5GNRN1Tvy+VG20uQzSxEeJy/wHF2u6yY1461ZitE73PWZ4zkjmVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCe+XL4kOC+qcrwRWSi+eAg6zZqpMB8GA1UdIwQY
MBaAFKm3W2TV2hfXC7q9gRo5pgLdr5Y6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWJkYlpOWGFGOWNMdXIyQkdqbW1BdDJ2bGpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9kYTg1ZTctYTQ1Mi00YjFkLWI1YWUt
OWIxMTgwNGVjZDM5LzEvcWJkYlpOWGFGOWNMdXIyQkdqbW1BdDJ2bGpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9kYTg1ZTctYTQ1Mi00YjFkLWI1YWUtOWIxMTgwNGVjZDM5
LzEvcWJkYlpOWGFGOWNMdXIyQkdqbW1BdDJ2bGpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYqmYzBxr
45pxIo7VW2RnwZtPnflW+D5Deh5xjj4iYvCrEaWS7Xy0oEXU5ungwcYo6HVbPSv6
81nnNAbEWBBySqZasanUnH97H66HQ8udYmXn2nKnm0gi1B14lWmkFA1WVJwIei6z
1S+nkv0XS9VmM6o1I13ZTnVTGf65+P8w0E+bRj55uHl+J9nx2CFeBahyfLKOW0tl
4DqgyBxestHPT28vw0hN3IYzTXgFLrtW2yWxVb15BzH5EGMnTQ4pUzFwp8uvEj14
XhriMeho1+SmK2HcSunQDM1OHEJAnlvm2FO6tjj8U1XKwwq7fhl23g/VDZ4boY31
6PpJOM7fMBqKCA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:37:12 2026 by rpki-client